Vulnerability Management Engineer (Splunk)

JOB DESCRIPTION

Responsible for the maintenance of security solutions within the Cybersecurity Office. Supports the business, security, and technical staff by assisting with the deployment of security controls and processes. Maintains and supports security tools. Escalates security incidents in order for appropriate action to be taken. Delivers timely and high quality work products to meet expectations. Aids in the implementation of security solutions to meet business needs. Escalates and assists in enhancement opportunities to meet bank and industry policies, standards, and guidance.

Essential Job Functions

• Assists with the creation and/or review of processes.
• Communicates and coordinates with technology and business functional groups to specify hardware, software and network connectivity for production and test environments.
• Conducts forensic investigations and/or ensures systems specifications, security controls and appropriate logging and monitoring align with business needs.
• Assists with support of existing systems and/or business requests.
• Provide reports as assigned on key trends, performance and risk indicators affecting the group’s processes, tools, and responsibilities for management and key stakeholders.
• Provides support on assigned tools and processes.
• Provides support as an information security subject matter expert to department or business units for small/less complex business applications or system processes.

Other Job Duties

• Performs other duties as assigned.

Requirements

QUALIFICATIONS

Required Experience

• Requires advanced knowledge of job area typically obtained through advanced education combined with experience.
• May have practical knowledge of project management.
• Requires 5 years minimum prior relevant experience.

Skills

• 1-3 years of preferred information security experience (experience in and understanding of all security domains).
• Experience in a regulated industry highly desirable; financial services preferred.
• Knowledge of Information Security Tool deployment and operations.
• Knowledge of enterprise architecture.
• Ability to design mixed-technology solutions.
• Ability to conduct ROI and gap analysis for potential and existing products.
• Ability to work with little guidance.
• Strong written and verbal communication skills.
• Solid problem solving and analytical skills.
• Must be resourceful, creative, innovative, results driven and adaptable.
• Cybersecurity Engineer- Forensics.
• Responsible for and/or managing the identification, collection, and analysis of electronic data, with the goal of preserving any evidence in its most original form while performing a structured investigation that is legally defensible.
• In concert with the banks HR, Legal, Corporate Security and Information Security Departments.
• Performs eDiscovery tasks as required in support of requests from Legal and HR in the support of litigation for and against the Bank.
• Conducts examination of logs, hard drives, network traffic, and other data to support targeted investigations.
• Cybersecurity Engineer- EVC (Event Center).
• Responsible for supporting security solutions within the Cybersecurity Office.
• Assists the business, security and technical subject matter experts to deploy security controls and processes.
• Manage the tool lifecycle by maintaining and supporting security tools.
• Escalates and reports security incidents to partners in order for appropriate action to be taken.
• Deliver timely and high quality work products to meet client’s expectations.
• Defines, analyzes, evaluates, and aids in the implementation of security solutions to meet business needs.
• Reviews, monitors, recommends and reports enhancement opportunities to meet bank and industry policies, standards, and guidance.
• Cybersecurity Engineer -Business Consultants.
• Partners, communicates and consults with business and key stakeholders to relay technical security concepts in a clear and concise manner.
• Deliver timely and high quality work products to meet client’s expectations.
• Defines, analyzes, evaluates, and aids in the implementation of security solutions to meet business needs.
• Reviews, monitors, recommends and reports enhancement opportunities to meet bank and industry policies, standards, and guidance.

Benefits