Cyber Defense Senior Specialist - 3rd Shift - Wednesday through Saturday

Description

This 3rd Shift opportunity is a senior individual contributor in the Cyber Defense (CD) Security Operations Center (SOC), responsible for performing security monitoring, intrusion analysis, incident handling, data loss prevention, privileged user monitoring, security incident management, malware detection/eradication, and recognizing hacker/incident response tactics, techniques, and procedures.

You will have responsibility for one or more of the security systems aligned with their specific function, either directly or indirectly; and will be a technical authority for critical operational decisions having significant impact to the organization with authority extending beyond the team to include both technology and business line areas in security-related decisions.

The individual will be:

• Performing ongoing monitoring and threat analysis, analyzing logs, netflow data, and packet capture
• Identifying potential IT security incidents and calling out information to appropriate IR senior staff
• Assessing threat and vulnerability information from all sources (both internal and external) and promptly applying applicable mitigation techniques
• Developing meaningful metrics to reflect the true posture of the environment allowing the organization to make educated decisions based on risk
• Using information from cyber security tools and processes, assessing potential security and business impacts while presenting recommendations to management
• Representing Cyber Defense as needed on security-related or risk-related initiatives or working groups where technical skills and security expertise are required.
• Proactively protecting, monitoring, investigating and resolving threats to secure user environment and company assets
• Providing direction and guidance to more junior staff on a team of security and technical professionals

This role is a 3rd shift, Tuesday evening through Saturday morning (4 days per week) opportunity in our Rhode Island Security Operation Center with the hours of 11:00PM – 9:00AM.  This is not a remote / virtual opportunity.

Experience and Skills:

• 3 or more years of security industry experience preferably in a SOC environment
• Experience with the following highly desirable:
  • Security Information and Event Management Tools (QRadar, Archsight, etc.)
  • Intrusion Prevention Tools
  • Database Security Tools (Guardium)
  • Data Loss Prevention Tools (Symantec, Websense, etc.)
  • Firewalls (Cisco, Palo Alto, Check Point etc.)
  • Application Security Tools
  • Vulnerability tools
  • Cyber Security Incident Response
  • Network Intrusion Detection Systems (SourceFire, McAfee, etc.)
  • Host Intrusion Detection Systems
  • Security Analytics (Solera, NetWitness etc.)
• Demonstrated spoken and written communication skills with the ability to communicate technical concepts to non-technical audiences
• Experience adapting and demonstrating flexibility while working in a dynamic environment

Education and Certifications

• Bachelor’s Degree or equivalent combination of experience

Hours & Work Schedule

Hours per Week:  40

Work Schedule:  Tuesday through Saturday, 11:00PM – 9:00AM

#LI-Sourcer3

Some job boards have started using jobseeker-reported data to estimate salary ranges for roles. If you apply and qualify for this role, a recruiter will discuss accurate pay guidance.

Equal Employment Opportunity

At Citizens we value diversity, equity and inclusion, and treat everyone with respect and professionalism. Employment decisions are based solely on experience, performance, and ability. Citizens, its parent, subsidiaries, and related companies (Citizens) provide equal employment and advancement opportunities to all colleagues and applicants for employment without regard to age, ancestry, color, citizenship, physical or mental disability, perceived disability or history or record of a disability, ethnicity, gender, gender identity or expression (including transgender individuals who are transitioning, have transitioned, or are perceived to be transitioning to the gender with which they identify), genetic information, genetic characteristic, marital or domestic partner status, victim of domestic violence, family status/parenthood, medical condition, military or veteran status, national origin, pregnancy/childbirth/lactation, colleague’s or a dependent’s reproductive health decision making, race, religion, sex, sexual orientation, or any other category protected by federal, state and/or local laws.

Equal Employment and Opportunity Employer

Citizens is a brand name of Citizens Bank, N.A. and each of its respective affiliates.