Citizens BankPittsburgh, PA
As an Insider Threat Program Security Engineer working in the Data Protection and Insider Threat Program, you will be responsible for supporting, developing and enhancing the insider threat program.In this role, you will engage with business units across the organization, providing essential metrics and documentation, and implementing tools and analytic methods to mitigate insider risks.Primary responsibilities include:Assess existing Insider Threat capabilities, identify gaps and develop technical and non-technical indicatorsConduct risk-based tests and trials to effectively mitigate insider risksPartner with other groups within the organization to document processes, identify controls, determine control adequacy and identify control monitoring opportunities and areas for improvement/enhancementCollect, analyze, and interpret qualitative and quantitative data from multiple sources to improve the ability to prevent, detect, and respond to insider risksMonitor and analyze logs and alerts from a variety of different technologies, including IDS/IPS, firewall, proxies, and anti-virus across multiple platformsDiscern patterns of complex threat actor behavior, and communicate an understanding of current and developing Cyber threats to key stakeholdersLocation is not a barrier for this role and while our preference would be to have a chosen candidate with onsite capabilities in one of our corporate headquarters – we are open to remote employment within the United States for an experienced candidate.QualificationsRequired Skills/Experience:5 or more years of experience in information security. Understanding of information security concepts, best practices and regulations related to insider threatUnderstanding of enterprise security and networking technology and how the technology relates to the prevention, detection, and response of insider threatsAdvanced understanding of the Microsoft ®Office suite (e.g., Outlook, Word, Excel, PowerPoint, etc)Excellent verbal and written communication skillsAbility to execute work independently and as a team member with good interpersonal skills – using tact, patience and courtesy.Understanding of SQL and DatabasesWorking knowledge of SplunkPreferred Skills/Experience:Experience managing SQL Databases within an enterprise applicationExperience with object oriented programming [Python, Java]Experience in the Financial Services IndustryExperience performing security event and incident detection and handling in a large corporate environment, gathering and analysis of threat intelligence, and computer network surveillance/monitoringExperience configuring and using user and/or entity behavior analytics (UBA/UEBA) productsAdvanced knowledge and experience using Splunk to execute complex search queries and generate reportsEducation, Certifications and/or Other Professional Credentials:Bachelor’s degree or greater in Information Security, Computer Science or a related field preferred Certifications: Associate of (ISC)^2, CISSP, or similar.Hours and Work ScheduleHours per Week: 40Work Schedule: Monday through FridayWhy Work for UsAt Citizens, you'll find a customer-centric culture built around helping our customers and giving back to our local communities.
When you join our team, you are part of a supportive and collaborative workforce, with access to training and tools to accelerate your potential and maximize your career growth.Equal Employment OpportunityIt is the policy of Citizens Bank to provide equal employment and advancement opportunities to all colleagues and applicants for employment without regard to race, color, ethnicity, religion, gender, pregnancy/childbirth, age, national origin, sexual orientation, gender identity or expression, disability or perceived disability, genetic information, citizenship, veteran or military status, marital or domestic partner status, or any other category protected by federal, state and/or local laws.Equal Employment and Opportunity Employer/Disabled/VeteranCitizens Bank is a brand name of Citizens Bank, N.A.
and each of its respective subsidiaries.
How to Apply
Follow the application procedure at stackoverflow.com for more info.