SunTrust Banks Dev SecOps Analyst in Atlanta, Georgia
Req ID: W453224
Job Description Security Operations DevSecOps teammates consist of technical subject matter experts (SMEs) whose primary focus will be developing capabilities that will streamline security operations via automation, orchestration, and data analytics. This role will create solutions that will increase staff productivity by eliminating manual processes and workflows within security operations. Responsible for developing innovative solutions that enable situational awareness, reporting and workflow orchestration.
This team will deliver integrations that enhance Cyber Incident Response, security monitoring, threat hunting and cyber threat intelligence. Additionally, they will provide insight for potential improvements and new data source identification through the use of data analytics. This role will assist Security Operations leadership with driving operational decisions, technical investments and serve in a consultant capacity for operational, tactical and extremely complex technical initiatives within information security operations.
Will serve as technical liaison between operations and security engineering, architecture and general IT teams on projects and initiatives intended to bolster the bank’s threat detection and response capability. Will lead initiatives around SIEM use case, detection signature development and product evaluation. Will maintain awareness of emerging threat and network defense technologies to ensure the bank remains on the cutting edge of threat detection and response. Evaluate and review current processes and procedures, identifying opportunities for improvement and driving change, as necessary. Adapts plans to meet service and/or operational challenges.
Provide consistent mentorship, thought leadership, consulting, training, and hands-on assistance to fellow teammates and partners as it relates to their area of expertise. Must be willing to work non-standard hours when necessary to support cyber incident response efforts. Qualifications Basic Requirements:
- One or more years’ working experience in a technology environment with exposure to information security principles.
- Working knowledge of common IT and security concepts with emphasis on TCP/IP network security, operating system security, modern attack and exploitation techniques, cyber incident response, malware analysis, computer forensics and the tools that support these processes.
- Ability to analyze solutions using deductive reasoning and critical thinking to solve problems in straightforward situations.
- Demonstrated teamwork and collaboration skills.
- Strong time management skills and ability to manage competing priorities effectively.
- Effective verbal and written communication skills for the purpose of providing detailed information about event timelines, technical designs, system concepts and business impact.
- Ability to obtain requisite technical certification(s) within six months of hire. Preferred Skills:
Bachelor’s degree in Information Security, Information Technology, Computer Science, with three or more years’ work experience in a cyber security-related role; OR at least five years of work experience in a cyber-security specific role with a demonstrable understanding of the cyber threat landscape as well as best practice prevention and detection techniques. In-depth, practical knowledge of information systems and ability to identify, apply, implement and drive cyber security best practices in an enterprise environment. Hands-on experience related to cyber security incident management; network, host and application security; intrusion analysis; malware analysis; vulnerability management & penetration testing; digital forensics or eDiscovery; as appropriate to assigned team. Effective verbal and written communication skills for the purpose of presenting complex technical information, driving the implementation of best practice recommendations, and influencing business decisions. Demonstrated teamwork and collaboration skills. Strong time management skills and ability to manage priorities effectively. Demonstrated ability to provide direction and mentorship to teammates, peers and leaders. Hands-on experience in one or more aspects of cyber security such as: network, host or application security; intrusion analysis; security infrastructure, engineering and/or architecture. Advanced knowledge in multiple scripting languages (python, shell, etc…) software development and tool integration. Strong knowledge of controls and/or tools such as: SIEM, IDS/IPS, Endpoint controls, cloud security, Antivirus, anti-spam filtering, operating system security (Windows & Linux), network security technologies, penetration testing toolsets, software security tools, vulnerability management tools, threat intelligence platforms, or digital forensics and live memory forensics platforms. Strong record of success in prior endeavors protecting the organization, clients and teammates from cyber threats. Preferred certifications include but are not limited to: GCIA, GCIH, GCFA, GPEN, CEH, CISSP, CISA, CISM, EnCE.
Linux (RHEL Preferred) (Intermediate)
Basic proficiency with the following scripting languages:
Powershell, PHP, Perl, SPL
Intermediate proficiency with one of the following:
Splunk Front End/GUI; Splunk Back End/CLI
Basic proficiency with several of the following: IDS/IPS, Network Forensics, Host Forensics, Firewall, Web Proxy, Email Gateway, EDR, HIPS, DLP, WAF
Equal Opportunity Employer: SunTrust supports a diverse workforce and is a Drug Testing and Equal Opportunity Employer. SunTrust does not discriminate against individuals on the basis of race, creed, color, gender, religion, national origin, age, disability, veteran status, pregnancy, marital status, citizenship status, sexual orientation, gender identity, genetic information, or any other classification protected by applicable laws.
To review the EEO Poster, copy and paste the following link into your browser: http://www1.eeoc.gov/employers/upload/eeocselfprintposter.pdf http://www.dol.gov/ofccp/regs/compliance/posters/pdf/OFCCPEEOSupplementFinalJRFQA_508c.pdf
© 2017 SunTrust Banks, Inc. All rights reserved.
SunTrust is federally registered service marks of SunTrust Banks, Inc.