SunTrust Banks Countermeasures Analyst - (Mid Shift 3pm - 12am) in Atlanta, Georgia

Req ID: W454521

Job Description

The Countermeasures Analyst, a senior role within the cyber security team, will investigate and respond to possible or confirmed cyber-attacks or vulnerabilities within the SunTrust environment. Responsible for operating and maintaining the capabilities that enable Cyber Incident Response, security monitoring, threat hunting and cyber threat intelligence. Provide direct analysis of high level or broad-scope security issues and risks identified by key systems and other sources. Produce strategic level analysis and reporting of cyber security events and trends to inform decision-making processes and the holistic cyber security risk posture of the bank. Will lead initiatives around SIEM use case, detection signature development and product evaluation. Will maintain awareness of emerging threat and network defense technologies to ensure the bank remains on the cutting edge of threat detection and response. Provide quality assurance to ensure events and risks are scoped and assessed appropriately. Assess scope of security issues and develop best practice approaches to remediation. Regularly participate in threat hunting, penetration testing, and/or deep dive research projects as assigned to challenge assumptions and articulate true, proven cyber security risk within the bank. Document & communicate analysis results or findings to both technical and business audiences. Track and drive identified cyber security risks through remediation & recovery. Provide coaching and mentorship to Level 1 and 2 cyber security analysts. Additionally, the Countermeasures Analyst may participate in the forensic collection and analysis of digital evidence to support HR, Legal, and other investigations. Qualifications Minimum Requirements: Three or more years’ working experience in a technology environment, two or more years must consist of a role directly related to cyber security. Extensive working knowledge of common IT and security concepts with emphasis on TCP/IP network security, operating system security, modern attack and exploitation techniques, cyber incident response, malware analysis, computer forensics and the tools that support these processes. Ability to solve complex problems by applying best practices. Demonstrated proficiency utilizing security platforms related to logging, event correlation, incident management, vulnerability management and/or computer forensics. Demonstrated teamwork and collaboration skills. Strong time management skills and ability to manage competing priorities effectively. Highly effective verbal and written communication skills for the purpose of providing extensive information about event timelines, technical designs, system concepts and business impact to audiences at all levels within the organization. Ability to obtain requisite technical certification(s) within six months of hire.

Preferred Requirements: Published contributions to the information security community via academic, research, intelligence or information sharing channels. Three or more of the following (or similar) certifications: Security+, GSEC, GCIA, GCIH, GCFA, GCED, GPEN, GWAPT, GREM, CEH, CISSP (while certifications are appreciated and desired, hands-on work experience and passion to protect the organization, clients and teammates from cyber threats will be heavily weighted for this role).

Equal Opportunity Employer: SunTrust supports a diverse workforce and is a Drug Testing and Equal Opportunity Employer. SunTrust does not discriminate against individuals on the basis of race, creed, color, gender, religion, national originTo review the EEO Poster, copy and paste the following link into your browser:

© 2017 SunTrust Banks, Inc. All rights reserved.

SunTrust is federally registered service marks of SunTrust Banks, Inc.