Job Description
The Cybersecurity Analyst plays a critical role in protecting the organization's digital banking systems and safeguarding sensitive member data from cyber threats. In this position, the analyst continuously monitors and analyzes security events across on-premises and cloud environments, identifies system vulnerabilities, and implements effective risk mitigation strategies to strengthen the organization's security posture. The Analyst ensures robust security controls are in place to protect Payment Card Industry (PCI) data and cloud infrastructure, in alignment with industry best practices and compliance requirements. Additionally, this role coordinates prompt responses to cybersecurity incidents and assists end users by addressing security-related support tickets. The ideal candidate demonstrates a strong understanding of core cybersecurity principles and a passion for continuous learning-especially in staying current with advancements in artificial intelligence (AI) as well as the constantly evolving landscape of AI-driven cyber threats
Essential Responsibilities:
Top 10 primary essential duties and responsibilities of this job in descending order of the role's focus. If individual is unable to perform these responsibilities, they are not able to perform the role to Company standards. These are the things DONE, NOT HOW they are done.
1. Manages miscellaneous documentation, requests processing, training (new hire, employee awareness), and other projects as assigned.
2. Supports the development, implementation, monitoring, and maintenance of security policies, procedures,
standards, and guidelines.
3. Assists with maintaining and documenting security testing, including reporting results and remediation.
4. Researches and investigates emerging risk topics, threats, vulnerabilities, capabilities, and solution options
to create/update policy and governance, technology strategies, solution architecture, and assessments.
5. Supports incident management/response across the enterprise and provides consistent security
monitoring, response, follow-up investigation, and determination of root cause. Evaluate security alerts
generated by internal systems, vendors, and other industry sources.
6. Supports the user access review process and other monitoring aspects of identity and access management.
7. Works with IT control owners in creating documentation, interpretation and monitoring of IT general
controls.
8. Interacts with third-party managed security service providers as required to facilitate ongoing system testing and monitoring.
9. Reviews active threat intelligence and other sources and suggest enhancements to security posture.
10. Works with internal and external auditors during examinations providing support and assistance in addressing audit recommendations.
Job Requirements
Hybrid