Information Security Analyst III (Remote)

Join to apply for the Information Security Analyst III (Remote) role at First Citizens Bank.

Overview
This is a remote role that may be hired in several markets across the United States.

Role Description
As an Incident Response Analyst, you'll be a member of the bank's Cyber Incident Response team. We are seeking an experienced analyst with proven skills to detect and respond to threats, interact with stakeholders, and work to restore operations. This technical role supports Threat Hunting, Intelligence, and Monitoring functions through content creation, threat analysis, detection recommendations, and colleague mentoring. Strong communication skills are essential to simplify complex issues for broader understanding and expedite incident management.

1. Incident Analyst/Handler: Investigate SIEM/SOAR events; respond to and contain incidents with malware analysis, network, and endpoint security expertise.
2. Cloud Incident Response: Respond to cloud-related incidents in Azure, AWS, and Google Cloud.
3. Incident Lead: Lead investigations, mitigation, and remediation, liaising with technical and business stakeholders.
4. Incident Management: Ensure proper detection, documentation, investigation, and resolution of security incidents.
5. Content Development: Create countermeasures and mitigations post-incident.
6. Threat Hunting: Support threat hunting activities, build countermeasures, and track evolving threat techniques.
7. Post Incident Review: Provide recommendations to improve communication, processes, and mitigation strategies based on high-severity incidents.

Bachelor's Degree with 6 years of experience in Information Security OR High School Diploma/GED with 10 years of experience.

• Experience with cloud incident response in Azure, AWS, and Google Cloud.
• At least 2 years of cloud administrative experience.
• Experience with all aspects of incident response and stakeholder management.
• Familiarity with MITRE ATT&CK framework.
• Support for building proactive threat hunting capabilities.
• Experience analyzing security events across systems, applications, networks, and emails.
• Ability to translate threat techniques into mitigations using tools like Yara, Sigma, or regex.
• Strong project management skills and ability to handle multiple incidents.
• Participation in an after-hours on-call rotation, weekly cycle.

• SANS Cloud certifications such as GIAC Cloud Forensics Responder (GCFR).

The salary range is generally $120,000 to $162,000, with actual pay based on experience, skills, and location. Benefits are comprehensive and detailed at First Citizens Bank Benefits.

• Seniority Level: Not Applicable
• Employment Type: Full-time
• Job Function: Information Technology
• Industry: Banking and Financial Services