Listing Description
Reporting to the Director of Security Operations, the Senior Security Analyst serves as a key part of the security operations team to ensure the confidentiality, integrity, and availability of the Hilltop-Holdings information assets. The Senior Security Analyst has responsibilities, primarily focused on the ongoing solution integration, monitoring, and maintenance of new and existing security infrastructure. In addition, the Senior Security Analyst serves as part of the Cyber Security Incident Response Team (CSIRT) and works closely with other internal and external groups with regard to identified security incidents.
Essential Functions
- Interacts with other internal working groups to build and maintain ongoing relationships for the improvement of the Hilltop-Holdings security posture
- Identifies and recommends potential solutions to improve the existing security posture and assists with testing/proof of concept efforts as appropriate.
- Serves as part of the CSIRT and as escalation point for malware infections and other common security incidents
- Responds to audit, compliance, and regulatory requirements as needed
- Performs vulnerability scanning and penetration testing as needed
- Creates detailed security reports as necessary
- Performs initial analysis, identification, remediation, and documentation of network intrusions and computer system compromises
- Handle incident escalations as necessary from other analysts. Assist with incident response efforts and coordinate remediation with customers as appropriate
- Provide leadership and mentoring to other analysts
- Perform basic malware analysis and forensic analysis of network activity, disks, and memory
- Analyze threat and vulnerability data, determine current impacts, and coordinate remediation activities as necessary
- Proactively research and monitor security-related information sources to aid in the identification of threats to all Hilltop-Holdings networks, systems, and information
- Assist in the development of effective Enterprise Security Procedures and Processes
Job Requirements
- BS/BA in Computer Science/Engineering (or equivalent) preferred
- CYSA, GCIH, OSCP, CEH, CISM, CISSP or other security related certifications preferred
- Senior level experience with Network or Information Security support, typically attained with 5+ years of related experience
- Solid systems security exposure and proficiency in at least two Operating Systems (Windows and Linux preferred)
- Strong troubleshooting skills of complex network and security problems
- Strong analytical skills in threat, vulnerability, and intrusion detection analysis
- Excellent verbal and written communication skills
- Highly disciplined and motivated, able to work independently, under direction, or as a member of a team
- Must be willing to periodically work non-standard hours and be on call
Preferred Skills
- Vulnerability management experience-especially relating to scanning configuration, vulnerability tracking resulting metrics
- Experience investigating intrusion in a cloud/hybrid environment is preferred
- Experience with SIEM and/or log aggregation technologies such as LogRhythm, Splunk, ArcSight, or ELK
- Security tool integration and process automation via scripting, APIs, and/or automation engines
- Needs to have a keen understanding of threat vectors as well as exfiltration techniques
- The ideal candidate will be knowledgeable and passionate about all things cyber security
The above statements are intended to describe the general nature and level of work being performed by individuals in, or assigned to, the above position and are not intended to be construed as an exhaustive list of all responsibilities, duties and skills required, and may be changed at the discretion of the Company.
Listing Details
- Salary: $92000 - $133000
- Citizenship: Us Citizen
- Incentives: Bonus
- Education: Bachelors Degree
- Travel: No Travel
- Telework: No Telecommute