Info Security Analyst 4 - Cyber Threat Fusion Center (CTFC)

Wells Fargo   •  

Phoenix, AZ

Industry: Financial Services

  •  

5 - 7 years

Posted 363 days ago

5352086

The Info Security Analyst 4 (ISA4) participates in the monitoring, identification, analysis, case management and response actions of a global, complex information infrastructure supporting the business needs of one of the world’s largest financial institutions. The Analyst plays a pivotal role in monitoring security sensors, application, and network data for potential information security events and information security incidents. An Information Security Analyst 4 will be able to rapidly assess security information, identify false positives, and conduct correlation analysis across numerous internal and external data sources, identify information security incidents, and support computer security incident response team (CSIRT) activities. Security Analysts may support network vulnerability scans, security audits, or risk assessments and provide feedback to ensure compliance with corporate security policies and adherence to industry best practices.

This role will involve frequent interaction with line of business partners and information security professionals within Wells Fargo Enterprise Information Security (EIS). The ISA4 will be responsible for applying subject matter expertise and analytical processes to rapidly identify goals while following proper change management processes and procedures. This position interacts with management, lines-of-business representatives, and senior technical engineers across internal and external organizations.

These roles participate in 24x7 global information security operations and will require shift watch standing at a Wells Fargo Information Security Operations Center site.

Required Qualifications

  • 5+ years of information security administration experience

Desired Qualifications

  • Advanced Information Security technical skills and solid knowledge and understanding of information security practices and policies
  • Ability to manage complex issues and develop solutions
  • Excellent verbal and written communication skills
  • Knowledge and understanding of information security operations
  • 3+ years of information security experience including experience in one or more of the following security disciplines: information security monitoring, incident response, vulnerability management, host/network forensics, cyber-crime investigation, penetration testing, business continuity, or cyber threat intelligence

Other Desired Qualifications

  • Experience proactively searching through network infrastructures to detect and mitigate possible threats that evade existing security controls
  • Demonstrated knowledge of network and security fundamentals, protocols, and technologies
  • Knowledge and understanding of cyber threat vectors, how they are used to exploit an information system and techniques and tools used by malicious actors to violate the confidentiality, integrity and availability of information systems
  • Experience in conducting analysis of information security data from network and applications security logs and tools such as firewalls, proxies, application vulnerability scanners, network flow data, external data sources and cyber threat intelligence to identify potential compromises
  • Ability to manage complex issues and develop solutions
  • Experience in a 24 x 7 x 365 global security operations center environment
  • Knowledge and understanding of software development and network engineering
  • Penetration testing, malware analysis or forensics experience
  • Experience in cybercrime investigation or fraud identification
  • Scripting language experience (e.g., Python, Perl, JavaScript)
  • Hands-on experience as a system administrator, network administrator, or security appliance administrator (e.g., firewalls, proxies, IDS, IPS, etc.)
  • Hands-on experience with data analysis tools
  • Industry certification in Intrusion Analysis, incident handling, security operations, or malware analysis
  • Wells Fargo Line of Business Experience

Job Expectations

  • Ability to work nights, weekends, and/or holidays as needed or scheduled
  • Flexibility to work in a 24/7 environment, including weekends and holidays