ISO Security Specialist FL

General Description

Provide technical support on Cyber and Information Security Incident Response in the banking industry with knowledge and understanding of best practices in security risk framework, business strategy, regulatory and federal compliance requirements. Support risk and security assessments of network configurations, log activity, applications, systems, and vendor management security controls and measures. Able to establish cyber recommendations based on industry standards and best practices which mitigate/remediate risks, threats, and vulnerabilities when identified and propose methodologies to eliminate/minimize impact.

Essential Duties and Responsibilities

• Ability to manage security investigations through the entire incident lifecycle based on our Incident Response Plan/Procedures (IRP)
• Manage low/low to medium incident response process, from detection, response and post-incident report and actions.
• Discuss and follow up action plans with customers, service providers, and/or employees to address recommendations from internal processes.
• Triage and analyze new incoming issues to determine the level of risk and rate severity according to our Incident Response Plan
• Prepare documentation, metrics and reports related to security incidents and assessments.
• Support the implementation of changes to the Incident Response Plan and procedures.
• Collaborate with senior team members to develop and implement mitigation strategies.
• Escalate issues with efficiency and support documentation.
• Chronologically, track and organize evidence; experience reviewing logs data and illustrating findings.
• Support other duties and responsibilities as assigned, familiar with applicable local and federal laws, regulations, and guidelines

Education

Bachelor's Degree in Computer Engineering or Computer Science

Bachelor's Degree from an accredited University/College in Information Systems or related fields

Experience

Three (3) years of cyber security and cloud related experience in a complex technology environment.

Certifications / Licenses

Certifications and Licenses are preferred but not required.

• Security+

Knowledge, Skills and Abilities

• Strong business acumen: ability to understand the needs and concerns of business stakeholders and colleagues and respond promptly and effectively to stakeholder requests. Ability to conduct analysis on work procedures and business results and recommends changes to improve the effectiveness of the business's management.
• Strong technical acumen: knowledge of Cyber Security, Information Security, and Information Technology concepts. Ability to write technical instructions using programs and technology. Robust knowledge of applicable local and federal laws, regulations, and guidelines.
• Communication skills: effectively interact with internal and external stakeholders. Ability to foster trusting relationships with colleagues and clients. Highly develop written and verbal communications skills, strong ability to communicate ideas (storytelling). Presents numerical data effectively. Superior communication and interpersonal skills. Excellent report-writing and presentation skills. Polished in preparing presentations, summaries, and reports for all audiences.
• Analytical skills: Stays focused on main issues, prevents irrelevant issues or distractions from interfering with timely completion of assignments. Collects, research and complements data; Synthesizes complex or diverse information. Demonstrates attention to detail; Applies design principles; Generate creative solutions. Strong quantitative, research and analytical skills. Experience with data analysis, persuasive and informative writing, workload management, and process management.

• Problem Solving: Identifies and resolves problems in a timely manner; Develops alternative solutions.
• Project Management: Ability to prioritize and work with multiple projects and tasks with minimum supervision; self-direct and task switch between strategic and tactical initiatives regularly. Capacity to achieve results according to plan ensuring the expected quality. Excellent organization capacity to define priorities, meet deadlines, and flexible to change. Knowledge of project coordination, identification of business needs, work plan, budget control, time management, resource allocation, team management and status reports. Must demonstrate leadership, logic, and reasoning skills.
• Operational/Regulations Processes: Knowledge of budget administration, resources allocation, organizations policies, and regulations. Ability to establish, conduct and track operational processes properly.
• Computer and Technological Skills: Proficient in MS Office 365. Experience with data management tools such as Power Pivot and Power BI, among others is desired. Ability to achieve results by providing innovative ways of working with operational and technological considerations. Knowledge of computer flow charts and programming logic and code.