IT Security Analyst II
Wellby Financial · Webster, TX · 6 days ago
Information TechnologyFull-time
Principal Duties And Responsibilities
- Monitors security information and event management (SIEM) tools to detect and respond to security incidents, indicators of compromise, and breaches.
- Analyzes security incidents, indicators of compromise, and breaches, to determine their impact, origin, and resolution.
- Collaborates with IT teams and vendors to address and mitigate identified security threats.
- Conducts vulnerability assessments, penetration tests, and system hardening assessments to identify and address security weaknesses on an ongoing basis.
- Maintains security patches and updates to ensure system integrity.
- Coordinates with IT teams and vendors to ensure secure configuration and deployment of systems and applications.
- Analyzes security requirements for new systems, applications, and vendors.
- Recommends additional security measures and controls.
- Identifies hardware and software that are nearing the end of support.
- Promotes a culture of security awareness through training, education, and ongoing communication.
- Reviews violations of security processes and procedures.
- Keeps abreast of security best practices, new or improved security technologies, and cyber-threat intelligence and attack vectors.
- Maintains sensitive, confidential, or high-security data access.
- Participates in cyber-based risk assessments, audits, tests, and assessments to ensure the proper functioning of data processing activities and security measures.
- Enforces security policies and procedures.
- Maintains compliance with applicable security-related compliance frameworks.
- Works effectively in a team atmosphere to perform duties and achieve daily operational goals.
- Maintains productivity standards in accordance with Wellby’s confidentiality policies and organizational values.
- Responsible for all information concerning the Bank Secrecy Act, including: Reporting all suspicious activity to the BSA Officer. Attending required annual BSA training.
Knowledge, Skills, And Abilities (KSA)
- Knowledge of Wellby’s organizational functions and general operating policies and procedures.
- Knowledge of systems/computer field, including application design, hardware, software, and capabilities and limitations.
- Knowledge of network security resources such as intrusion prevention, network access control, port security, and network isolation techniques.
- Knowledge of endpoint threat detection and prevention technologies.
- Knowledge and understanding with SIEM platforms.
- Knowledge and understanding of data loss prevention and data governance tools.
- Knowledge and understanding of open-source penetration tools and threat-hunting platforms.
- Knowledge and understanding of TCP/IP, networking, routing, ACLs, and network devices.
- Knowledge of common programming languages is encouraged.
- Ability to work in a fast-paced team environment with exceptional member service skills.
- Ability to communicate clearly and concisely, orally and in writing.
- Ability to motivate others and to work in a large cross-functional team dynamic.
- Ability to efficiently understand and follow oral and written instructions, perform routine duties without close supervision, and establish and maintain effective working relationships with other team members.
- Ability to coordinate several concurrent activities simultaneously.
- Ability to explain technical information in understandable language to non-technical team members.
- Ability to develop, interpret and apply program regulations.
Complexity & Scope of Work
- The team member performs a number of routine and generally related tasks without supervisory direction.
- The team member may make decisions regarding unusual circumstances on occasion.
- Tasks may occasionally have to be coordinated, integrated, and/or prioritized.
- Courses of action are determined by established procedures and/or the Director of Cybersecurity.
- The team member’s work is reviewed periodically for accuracy, completion, and compliance with Wellby’s policies and procedures.
- The team member uses independent judgment in making decisions.
Physical Demands & Work Environment
- The physical demands and work environment characteristics described here represent those that a team member must meet to perform the essential functions of this position successfully.
- Daily movements include sitting, standing, reaching, and grasping; operating computers and other office equipment; moving about the office; and attending possible onsite and offsite meetings.
- The ability to exchange information, in person, in writing, and via telephone.
- Some degree of stress results from contact with management and other team members.
- The ability to observe details at close range (within a few feet of the observer).
- The ability to occasionally lift items weighing up to 15 pounds across the office and load them onto shelves for various needs.
- The noise level in the work environment is usually moderate.
- The work involves the typical risks and discomforts associated with an office environment but is usually in an adequately cooled, heated, lighted, and ventilated area.