Information Systems Security Analyst 3, Team Lead

Hills Bank and Trust Company

Iowa City, IA Technology
SCOPE:
Reporting to the Senior Vice President, Information Systems, this role provides day-to-day administration and analysis of the bank’s information security capabilities, including (but not limited to) network security, access controls, threat analysis, risk trending, incident response, forensics and reporting. The role also provides direction and leadership for level 1 and 2 Security Analysts, supporting a collaborative, learning environment that encourages technical and professional growth focused on addressing ever-changing security challenges. Additionally responsible for helping to define improvements to the security capabilities to meet the current and future information security needs of the bank.

ACCOUNTABILITIES:
  • Monitor security events daily, performing investigations and working with appropriate team members, business teams and technology teams to develop solutions that address security and requirements
  • Investigate, analyze, coordinate and report on all security events, incidents and intrusions; track incidents through analysis, diagnosis, correction and resolution; provide event resolution reports and recommendation for future mitigation of similar events
  • Tier 2-3 escalation point of contact for security-related issues reported through the Service Desk, level 1 and 2 Security Analysts, and other IS team members
  • Research, recommend, and implement security policies, process and technical solutions under the guidance of the SVP, Information Systems
  • Monitor and report on firewall, email, web proxy, and other security platforms and systems
  • Manage and administer endpoint protection technologies
  • Manage and administer mobile devices security and compliance policies
  • Audit and verify user and file permissions as part of a regular process
  • Actively monitor security and vulnerability alerts and lead team analysis and response
  • Administer and maintain end user accounts, permissions, and access rights (e.g. Active Directory, PeopleSoft).
  • Maintain operational support of vulnerability assessment tools, perform vulnerability assessments and penetration testing to identify exposures and risks, and report findings to management and the affected business areas
  • Assist in responses to internal and external audits, penetration tests and vulnerability assessments
  • Work in conjunction with project teams regarding security considerations as projects are defined and implemented
  • Perform periodic compliance reviews, risk assessments and control testing
  • Perform a range of security administration functions
  • Other duties as assigned

EDUCATION AND SPECIAL REQUIREMENTS:
  • Bachelor's Degree in relevant field of study required (or a combination of education, relevant work experience and industry certification)
  • Minimum 6 years IT experience required, with 3 years of IT security focus
  • Must have background in administering information security programs including risk assessments, forensic research, designing security architectures, developing policies, gathering metrics, and reporting status. 
  • CISSP (Certified Information Systems Security Professional), CCSP (Cisco Certified Security Professional, MCSA: Security / MCSE: Security (Microsoft Certified Systems Administrator / Engineer), CISA (Certified Information Systems Auditor), CISM (Certified Information Systems Manager), or similar information security certification preferred
  • Proficiency in operating systems (Windows, Mac, Linux/Unix, mobile), network theory/design, penetration testing, endpoint security monitoring, coding and scripting, reverse engineering of malware, enterprise risk methodologies
  • Experience with scripting languages (e.g. Powershell, VB, C#) preferred
  • Previous experience with end point protection tools (e.g. Antivirus, Antispam) preferred
  • Previous experience with IPS, network monitoring tools, and FW rule sets preferred
  • Previous experience with Web Filtering products preferred
  • Excellent troubleshooting skills

Job ID: 68447

Posted 13 days ago

Share This Job