PENSACOLA, FL Navy Federal Credit Union

LEARN MORE / APPLY

Overview

The Cyber Security Analyst will develop advanced cybersecurity monitoring content from request to implementation to decommission in support to enhancing the cyber security posture of NFCU. Collaborate in complex, sensitive incident response activities, applying knowledge of computer and network architecture to enhance cyber security detection capabilities. Identify adversarial activity and methods for future detection and prevention within NFCU infrastructure. Serve as subject matter expert within Information Security to identify use cases and develop monitoring content within the Navy Federal environment while establishing mitigation strategies.

Responsibilities

Cyber Security Content Development:

Create high-confidence security monitoring content consisting of dashboards and alerts within SIEM and other network security tools (Hybrid/Cloud) to detect threats, suspicious activities, potential incidents, and aid in analytical-investigations.

Continuously evaluate and optimize custom and OOTB (out of the box) detection content monitoring various on-prem and cloud service provider environments in support to SOC operations.

Serve as lead cyber security content SME for collaboration with various teams for purposes including, but not limited to threat intelligence, hunt operations, red team engagements, identity management, security architecture review, security event logging issues, and detection content management for identifying gaps and enhancing NFCU cyber security monitoring posture.

Log Analysis:

Troubleshoot issues in production and other test and development environments, applying debugging and problem-solving methodologies (e.g., log analysis, non-invasive tests).

Conduct independent critical thinking to diagnose and analyze threat intelligence data, latest threats and attack vectors, tactics, techniques, and procedures (TTPs) to make decisions on the most effective response and remediation strategies through content development.

Perform analysis of log files from a variety of sources (e.g., individual host logs, network traffic logs, firewall logs, and intrusion detection system [IDS] logs) to identify possible threats and vulnerabilities impacting the NFCU organization.

Documentation and Process Improvement:

Develop technical documents including, but not limited to content creation, content/rule review process, language-specific querying for disparate log sources, network/security visibility issues, detection gaps, SOPs, and monitoring strategies.

Continuously executes timely and effective communication across team and management channels regarding tasks completed, roadblocks experienced, and process improvement opportunities identified.

Qualifications

7+ years of experience within cyber security operations and SIEM technologies serving in a senior analyst or supervisory role.

Advanced knowledge of content creation concepts, content development management, content testing, implementation, the revision cycle, and cybersecurity threat analysis of complex events.

Advanced skills in monitoring and analyzing logs and alerts from a variety of different technologies and sources, to include but not limited to IDS/IPS, firewall, proxies, network/host, anti-virus, OS events, application/database, EDR, NDR, Cloud (IaaS, PaaS, SaaS).

Advanced skill in developing complex detection content using various data sources and query languages – e.g., custom SPL(macros, lookups, regex) SNORT, YARA, KQL

Experience in analyzing security systems, and how changes in conditions, operations, or the environment will affect deployed monitoring content.

Experience in applying cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).

Advanced knowledge of security architectures, devices, proxies, firewalls, and system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code).

Advanced understanding of blue team/red team processes and technologies and their applicability to custom content development.

Advanced verbal and written skill presenting complex findings, conclusions, alternatives, and information clearly and concisely to all levels of management, supervisors, stakeholders and vendors through advanced research, analytical, and problem solving skills.

Experience with security tools related to IPS/IDS, Antivirus, Firewalls, Proxies, DLP, Forensic Analysis, Malware analysis, SIEM, Cloud, and the content development lifecycle.

Advanced skill in analyzing log events for on prem and cloud technologies to facilitate development of cyber defense detections.

Desired Qualifications

Splunk Power User, CySA+, CASP+, CISSP or other related Information Security certifications.

Bachelor degree in cybersecurity or related discipline.

Advanced knowledge of IT security standards and frameworks (e.g., MITRE ATT&CK).

Hours: Monday – Friday, 8:00AM – 4:30PM

Location: 820 Follin Lane, Vienna, VA 22180 | 5550 Heritage Oaks Dr. Pensacola, FL 32526 | 141 Security Dr. Winchester, VA 22602 | Remote

About Us

Navy Federal provides much more than a job. We provide a meaningful career experience, including a culture that is energized, engaged and committed; and fierce appreciation for our teams, who are rewarded with highly competitive pay and generous benefits and perks.

Our approach to careers is simple yet powerful: Make our mission your passion.

Best Companies for Latinos to Work for 2024

Computerworld® Best Places to Work in IT

Forbes® 2024 America’s Best Large Employers

Forbes® 2024 America’s Best Employers for New Grads

Forbes® 2024 America’s Best Employers for Tech Workers

Fortune Best Workplaces for Millennials 2024

Fortune Best Workplaces for Women 2024

Fortune 100 Best Companies to Work For® 2024

Military Times 2024 Best for Vets Employers

Newsweek Most Loved Workplaces

2024 PEOPLE® Companies That Care

Ripplematch Recruiting Choice Award

Yello and WayUp Top 100 Internship Programs

From Fortune. ©2024 Fortune Media IP Limited. All rights reserved. Used under license. Fortune and Fortune Media IP Limited are not affiliated with, and do not endorse products or services of, Navy Federal Credit Union.

Equal Employment Opportunity: Navy Federal values, celebrates, and enacts diversity in the workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected Veteran.

Hybrid Workplace: Navy Federal Credit Union is a hybrid workplace, and details will be discussed during your interview process.

Disclaimers: Navy Federal reserves the right to fill this role at a higher/lower grade level based on business need. An assessment may be required to compete for this position. Job postings are subject to close early or extend out longer than the anticipated closing date at the hiring team’s discretion based on qualified applicant volume. Navy Federal Credit Union assesses market data to establish salary ranges that enable us to remain competitive. You are paid within the salary range, based on your experience, location and market position

Bank Secrecy Act: Remains cognizant of and adheres to Navy Federal policies and procedures, and regulations pertaining to the Bank Secrecy Act.

REQNUMBER: 22993

S:SKINTIAGP3

LEARN MORE / APPLY

Navy Federal Credit Union

Job Hiring / PENSACOLA, FL / Cyber Security Analyst III (Detection Development) / Navy Federal Credit Union >> APPLY/LEARN MORE >> https://de.jobsyn.org/e76954622f934910a3d8735af9eea0a98003 >> #job #jobs #hiring #BGJobs   

+++++++++++++++
? Looking for more jobs like this? Find more at CareerOneStop, sponsored by the U.S. Department of Labor Employment and Training Administration.
+++++++++++++++

US Work-eligible

PENSACOLA, FL