First Busey Corp
Overview
Senior IT Security Analyst is responsible for managing activities relating to monitoring and responding to security events. The analyst monitors application, host, and network threats, including external threat actors and rogue insiders. As a trusted member of the Information Security team and industry community, the analyst works closely with internal technical teams, business units, and external entities aligned with the business, including private intelligence-sharing groups, law enforcement, and government agencies. The analyst conducts in-depth research, documents threats, understands the risk to the business, and shares information with those who need to know. Analysts are expected to continually adapt to stay ahead of cyber attackers and stay up to date on the latest methods attackers use to infiltrate computer systems. This is a role for someone who is passionate about security and rigor to protect the business.
Duties & Responsibilities
Develop, manage, and maintain threat intelligence and threat hunting program and processes Regularly research and identify emerging threats, TTPs in public and closed forums, assess risk, and implement/validate controls as necessary Assist with Security Operations activities, including triage of alarms/alerts and performing technical security assessments Participate in a call tree for outsourced Security Operations Center to assist with triage and remediation of critical and high-rated alerts escalated during and after business hours Research and recommend solutions to fulfill regulatory compliance with FFIEC guidelines, Sarbanes-Oxley, Gramm-Leach-Bliley and other applicable regulations Perform periodic review of IT procedures and security of all systems to maintain integrity of company and customer data Document and verify IT-related changes in accordance with company security policies and procedures Research and recommend hardware and software solutions to augment or enhance existing security measures Stay current in IT security events and trends Investigate and report security violations and incidents and ensure proper protection and corrective actions are taken when vulnerabilities are discovered Conduct scheduled reviews of key application security settings Develop metrics and scorecards to measure risk to the organization and the effectiveness and efficiency of SOC associates Assist in process development and improvements to maximize departmental efficiency and program effectiveness Support audit and incident processes as required Monitor and support internal SIEM systems, reports, and searches Monitor and support internal phishing email report systems and reports Partner and establish relationships to work with cross-functional teams within the business Develop strong liaison relationships with key internal business and technology teams Coach Level I & II on security domains and program processes VP Security may determine a Team Lead designation for Level III role based on need Participate in security work streams for various enterprise projects and initiatives Determine and communicate security risk postures to partners and leaders as appropriate
Education & Experience
Knowledge Of
Strong experience with threat information sharing and threat hunting to proactively identify potential or existing threats in medium to large environments Proficient with SIEM tools, threat intelligence platforms, and SOAR solutions to centralize and manage incident and remediation workflow Knowledge of networking concepts and securing traffic across LAN, WAN, and Internet infrastructure Proficiency in Windows, Linux, and MacOS to research and analyze threats and respond to incidents Experience in incident handling and investigation including formal chain-of-custody methods, forensic tools, and best practices Knowledge of adversary tactics, techniques, and procedures (TTPs), MITRE ATT&CK, and CVSS Scripting ability in Python, Bash, Perl, RegEx, or PowerShell Familiarity with cloud architectures, security standards, and best practices Strong oral and written communication skills Strong organizational skills and attention to detail Excellent interpersonal skills
Ability To
Analyze incident logs, attack vectors, and understand vulnerabilities and exploits Take independent action within established options and develop new procedures as needed Analyze assignments based on a wide knowledge of many factors where advanced concepts are required Self-starter requiring minimal supervision Highly organized and efficient Demonstrated strategic and tactical thinking Stay current with the evolving threat landscape Perform duties and make decisions under frequent time pressures
Education And Training
(Preferred) Bachelor’s degree in Computer Science, MIS or related field or equivalent work experience On-the-job training in security operations, threat intel and hunting, system administration, incident response, or equivalent Security+, CySA+, GCIH, CSA, CCSP or similar certification; or willingness to pursue certification within the first six months of hire At least 5 years’ experience in SOC environments, threat intelligence/hunting, or security systems administration Requires knowledge of Microsoft Office and other productivity tools
Benefits And Compensation
Salary offered is based on factors including job duties, required qualifications and relevant experience, and local market trends. The role may be eligible for bonus or incentives based on company and individual performance. Base Pay Range: $86,000 - $123,000/year Busey provides a competitive Total Rewards package including 401(k) match, profit sharing, employee stock purchase plan, paid time off, medical, dental, vision, company-paid life insurance and long-term disability, supplemental voluntary life insurance, short-term and long-term disability, wellness incentives and an employee assistance program. Eligible associates may use pre-tax health savings accounts and flexible spending accounts. Visit Busey Total Rewards for more information.
Equal Opportunity
Busey values a diverse and inclusive workplace and strives to recruit, develop and retain individuals with exceptional talent. A diverse team is essential to delivering service excellence. Busey is an Equal Opportunity Employer including Disability/Vets. Visit Busey.com/Careers to learn more about Busey’s EEO.
Unsolicited Resumes
Busey Bank and its subsidiaries do not accept liability for fees for resumes from recruiters or employment agencies unless a binding written recruitment agreement exists. Busey may consider any candidate submitted by an Agency with an Agreement and reserves the right to hire those candidates without financial obligation to the Agency.
#J-18808-Ljbffr
Senior IT Security Analyst is responsible for managing activities relating to monitoring and responding to security events. The analyst monitors application, host, and network threats, including external threat actors and rogue insiders. As a trusted member of the Information Security team and industry community, the analyst works closely with internal technical teams, business units, and external entities aligned with the business, including private intelligence-sharing groups, law enforcement, and government agencies. The analyst conducts in-depth research, documents threats, understands the risk to the business, and shares information with those who need to know. Analysts are expected to continually adapt to stay ahead of cyber attackers and stay up to date on the latest methods attackers use to infiltrate computer systems. This is a role for someone who is passionate about security and rigor to protect the business.
Duties & Responsibilities
Develop, manage, and maintain threat intelligence and threat hunting program and processes Regularly research and identify emerging threats, TTPs in public and closed forums, assess risk, and implement/validate controls as necessary Assist with Security Operations activities, including triage of alarms/alerts and performing technical security assessments Participate in a call tree for outsourced Security Operations Center to assist with triage and remediation of critical and high-rated alerts escalated during and after business hours Research and recommend solutions to fulfill regulatory compliance with FFIEC guidelines, Sarbanes-Oxley, Gramm-Leach-Bliley and other applicable regulations Perform periodic review of IT procedures and security of all systems to maintain integrity of company and customer data Document and verify IT-related changes in accordance with company security policies and procedures Research and recommend hardware and software solutions to augment or enhance existing security measures Stay current in IT security events and trends Investigate and report security violations and incidents and ensure proper protection and corrective actions are taken when vulnerabilities are discovered Conduct scheduled reviews of key application security settings Develop metrics and scorecards to measure risk to the organization and the effectiveness and efficiency of SOC associates Assist in process development and improvements to maximize departmental efficiency and program effectiveness Support audit and incident processes as required Monitor and support internal SIEM systems, reports, and searches Monitor and support internal phishing email report systems and reports Partner and establish relationships to work with cross-functional teams within the business Develop strong liaison relationships with key internal business and technology teams Coach Level I & II on security domains and program processes VP Security may determine a Team Lead designation for Level III role based on need Participate in security work streams for various enterprise projects and initiatives Determine and communicate security risk postures to partners and leaders as appropriate
Education & Experience
Knowledge Of
Strong experience with threat information sharing and threat hunting to proactively identify potential or existing threats in medium to large environments Proficient with SIEM tools, threat intelligence platforms, and SOAR solutions to centralize and manage incident and remediation workflow Knowledge of networking concepts and securing traffic across LAN, WAN, and Internet infrastructure Proficiency in Windows, Linux, and MacOS to research and analyze threats and respond to incidents Experience in incident handling and investigation including formal chain-of-custody methods, forensic tools, and best practices Knowledge of adversary tactics, techniques, and procedures (TTPs), MITRE ATT&CK, and CVSS Scripting ability in Python, Bash, Perl, RegEx, or PowerShell Familiarity with cloud architectures, security standards, and best practices Strong oral and written communication skills Strong organizational skills and attention to detail Excellent interpersonal skills
Ability To
Analyze incident logs, attack vectors, and understand vulnerabilities and exploits Take independent action within established options and develop new procedures as needed Analyze assignments based on a wide knowledge of many factors where advanced concepts are required Self-starter requiring minimal supervision Highly organized and efficient Demonstrated strategic and tactical thinking Stay current with the evolving threat landscape Perform duties and make decisions under frequent time pressures
Education And Training
(Preferred) Bachelor’s degree in Computer Science, MIS or related field or equivalent work experience On-the-job training in security operations, threat intel and hunting, system administration, incident response, or equivalent Security+, CySA+, GCIH, CSA, CCSP or similar certification; or willingness to pursue certification within the first six months of hire At least 5 years’ experience in SOC environments, threat intelligence/hunting, or security systems administration Requires knowledge of Microsoft Office and other productivity tools
Benefits And Compensation
Salary offered is based on factors including job duties, required qualifications and relevant experience, and local market trends. The role may be eligible for bonus or incentives based on company and individual performance. Base Pay Range: $86,000 - $123,000/year Busey provides a competitive Total Rewards package including 401(k) match, profit sharing, employee stock purchase plan, paid time off, medical, dental, vision, company-paid life insurance and long-term disability, supplemental voluntary life insurance, short-term and long-term disability, wellness incentives and an employee assistance program. Eligible associates may use pre-tax health savings accounts and flexible spending accounts. Visit Busey Total Rewards for more information.
Equal Opportunity
Busey values a diverse and inclusive workplace and strives to recruit, develop and retain individuals with exceptional talent. A diverse team is essential to delivering service excellence. Busey is an Equal Opportunity Employer including Disability/Vets. Visit Busey.com/Careers to learn more about Busey’s EEO.
Unsolicited Resumes
Busey Bank and its subsidiaries do not accept liability for fees for resumes from recruiters or employment agencies unless a binding written recruitment agreement exists. Busey may consider any candidate submitted by an Agency with an Agreement and reserves the right to hire those candidates without financial obligation to the Agency.
#J-18808-Ljbffr