Senior Information Security Analyst (Remote)

Join to apply for the Senior Information Security Analyst (Remote) role at Jobs via Dice.

Overview
This is a remote role that may be hired in several markets across the United States.

This position supports the Bank's Information Security and Cyber Threat management programs at the highest level of complexity and expertise. Leads the analysis and mitigation of threats identified within the Bank's networks and systems. Ensures that team reporting is timely, accurate, and escalated as necessary to provide actionable intelligence for cyber defense efforts. Develops process improvements and technical solutions that address the identified gaps or deficiencies. Drives the defense of the organization's information security and technological architecture through expert consultation and threat mitigation. Serves as a resource to team members and management on security threats, industry trends, and other relevant intelligence. Leads projects within the work group and resolves escalated, high-risk issues.

Responsibilities

1. Build and track the evolution of the Tactics, Techniques, and Procedures which will drive mitigations/countermeasures and general threat posture.
2. Support the technical analysis of SIEM alerts as requested by the triage team.
3. Support the content creation pipeline for new threats identified as a result of an incident, threat intelligence, or vulnerability.
4. Identify any technology gaps and contribute to designing solutions to address them.
5. Support automation efforts to streamline and accelerate triage response.
6. Coordinate and lead incident triage efforts involving internal team members and external stakeholders.
7. Communicate status of threat response efforts to multiple stakeholders.

Core Duties

1. Threat Hunting Lead - Design the threat hunting pipeline and operationalize various trigger points (e.g., Operational, Intelligence, Vulnerability) as drivers into countermeasure and mitigation creation.
2. Threat Hunting - Support the operational inputs (e.g., after an incident or event) into threat hunting and help build countermeasures/mitigations to address threats. Track evolving threat actor techniques.
3. Content Development - Support the creation of countermeasures and mitigations in response to incidents.
4. Incident Analyst/Handler - Investigate SIEM/SOAR events; bring experience in malware analysis, network/endpoint security to respond to and contain incidents.

Ancillary Duties

1. Industry/Peer group outreach: Collaborate with industry peers and team to proactively combat cyber threats through data analysis, sharing actionable intelligence, and supporting queries or collaborative efforts.
2. Automation - Identify areas for automation, create automation use cases, and implement them.

Qualifications

Bachelor's Degree and 8 years of experience in Information Security OR High School Diploma or GED and 12 years of experience in Information Security.

Preferred Qualifications

• Familiarity with MITRE ATT&CK and its application to countermeasure creation is a plus.
• Ability to translate threat actor techniques into mitigations across security technologies, including Yara, Sigma, or Regular Expressions.
• Familiarity with static and dynamic malware analysis techniques, including memory/disk forensics.

Preferred Certifications

• SANS Cloud certifications, GIAC Cloud Security Threat Detection (GCTD), Cyber Threat Intelligence (GCTI).

The base pay ranges from $117,000 to $190,000, with actual starting pay based on skills, experience, location, and other factors. Total compensation may include incentives, bonuses, benefits, and other awards.

This posting remains active for 45 days, with possible extension or early removal based on business needs and application volume.

Benefits are part of a comprehensive rewards package, details available at the company's benefits page.

• Mid-Senior level

• Full-time

• Information Technology

• Software Development