• Citizens Bank
  • Riverside , RI
  • Defense/Security Clearance
  • Full-Time
  • 179 Forbes St

Loading some great jobs for you...

This 2nd Shift opportunity is a senior individual contributor in the Cyber Defense (CD) Security Operations Center (SOC), responsible for performing security monitoring, intrusion analysis, incident handling, data loss prevention, privileged user monitoring, security incident management, malware detection/eradication, and recognizing hacker/incident response tactics, techniques, and procedures.

The incumbent will have responsibility for one or more of the security systems aligned with their specific function, either directly or indirectly; and will be a technical authority for critical operational decisions having significant impact to the organization with authority extending beyond the team to include both technology and business line areas in security-related decisions.

This role requires the incumbent to stay current with security technology, the threat landscape, and emerging threats. The incumbent will act as a subject matter expert in their specific disciplines and will provide management with recommendations and guidance as needed.

Primary responsibilities include:

  • Performing ongoing monitoring and threat analysis, analyzing logs, net-flow data, and packet capture

  • Identifying potential IT security incidents and escalating information to appropriate IR senior staff

  • Assessing threat and vulnerability information from all sources (both internal and external) and promptly applying applicable mitigation techniques

  • Developing meaningful metrics to reflect the true posture of the environment allowing the organization to make educated decisions based on risk

  • Using information from cyber security tools and processes, assessing potential security and business impacts while communicating recommendations to management

  • Representing Cyber Defense as needed on security-related or risk-related initiatives or working groups where technical skills and security expertise are required.

  • Proactively protecting, monitoring, investigating and resolving threats to secure user environment and company assets

  • Decision-maker for daily operational decisions having significant impact to the organization

  • Providing direction and guidance to more junior staff on a team of security and technical professionals

This role is a 2nd shift, Wednesday through Saturday opportunity in our Security Operation Center with the hours of 3:00PM 1:00AM.

Qualifications :

Required Skills/Experience:

  • 3 or more years of security industry experience preferably in a SOC environment

  • Experience with the following highly desirable:

    • Security Information and Event Management Tools (QRadar, Archsight, etc.)
    • Intrusion Prevention Tools
    • Database Security Tools (Guardium)
    • Data Loss Prevention Tools (Symantec, Websense, etc.)
    • Firewalls (Cisco, Palo Alto, Check Point etc.)
    • Application Security Tools
    • Vulnerability tools
    • Cyber Security Incident Response
    • Network Intrusion Detection Systems (SourceFire, McAfee, etc.)
    • Host Intrusion Detection Systems
    • Security Analytics (Solera, NetWitness etc.)
  • Demonstrated spoken and written communication skills with the ability to present technical concepts to non-technical audiences

  • Experience adapting and demonstrating flexibility while working in a dynamic environment

Education, Certifications and/or Other Professional Credentials:

  • Bachelor's Degree or equivalent combination of experience

Hours & Work Schedule

Hours per Week: 40

Work Schedule: Wednesday through Saturday 3:00PM - 1:00AM

* The salary listed in the header is an estimate based on salary data for similar jobs in the same area. Salary or compensation data found in the job description is accurate.

Launch your career - Upload your resume now!

Upload your resume

Loading some great jobs for you...