-
Information Security Analyst
- Chemung Canal Trust Company (Elmira, NY)
-
The Information Security Analyst position assists with the management of the Information and Cybersecurity Program and the many associated tasks and processes within it. Proactively perform a variety of duties to protect the company's Information Security and Information Assets and continually improve its security posture and cyber-maturity rating.
+ Review, research, document and take appropriate action on security notifications.
+ Assist with vulnerability assessments and penetration testing with appropriate remediation.
+ Support Information Security Officer with Identity Access Management and its associated policies and technologies.
+ Responsible for researching and proposing strategies and initiatives for Data Loss Prevention techniques and solutions.
+ Responsible for conducting frequent threat hunting queries within the CCTC environment.
+ Responsible for data discovery, inventory, and cleanup.
+ Assist in Data Governance initiatives and Information Security Strategic Planning.
+ Analyze, document and define requirements associated with existing security roles and permissions; review roles/permissions with users to ensure requirements are fully met.
+ Conduct technical/security reviews and risk analysis for new initiatives to ensure CCTC policies and security requirements are thoroughly vetted and met.
+ Monitor access to all systems and assets.
+ Responsible for the review and approval of user access and provisioning requests.
+ Review Security Policies and make requests for revision or modification as needed.
+ Participate in the development and implementation of the appropriate and effective controls to mitigate identified threats and risks.
+ Provides follow-up on detected security issues and implement solutions to reduce security risks.
+ Assist with creating, reviewing, testing and improving Incident Response Plans and Procedures.
+ Participate in performing Information Security Risk assessments and the review and managing of all technology and systems related controls.
+ Perform research on potential end user and system breaches or potential infection/attacks.
+ Participate in performing NIST Risk Assessments for core and critical systems to identify areas of weakness or vulnerability.
+ Work with vendors on improvements to products or new product/service research.
+ Assist with administering various security appliances and devices (web/content filtering, SIEM, vulnerability scanner/trends, etc.)
+ Assist with CCTC’s Security and Awareness Program while continually improving its effectiveness and content.
+ (Process Improvement) Proactively work with end user’s and units to understand and improve processes as they relate to security and the management of information/data.
+ Participates in the review of business continuity policy, standards, and process; Supports internal reporting and tracking of business continuity related issues and remediation activities.
+ Participates in identification of business continuity related risks (internal/external), the assessment of their likelihood, as well as potential impacts and risk mitigation plans.
+ Conforms to General Performance Expectations as identified for all employees.
Qualifications/Requirements
+ Bachelor’s degree in a related field, or equivalent formalized education and training; Minimum of 5 years of experience in related field preferred
+ Knowledge of Microsoft Active Directory, DHCP, DNS, Vulnerability Scanning, Anti-Virus/Malware, Firewall configuration, SIEM experience, Threat Intelligence, Threat Hunting Techniques, Network+ or Security+ Certification (or in pursuit of similar certification), familiarity with the MITRE Framework.
+ Proficient reading, writing, grammar and math skills; Proficient interpersonal and communication skills; Proficient computer skills; Demonstrated knowledge of system security architectures and emerging technologies; Comprehensive knowledge of the company’s products, services, regulations, operating policies and procedures; interpersonal skills in dealing with clients, all levels of management and Board members.
+ Candidate should be able to provide evidence of being a lifelong learner.
+ Valid Driver’s License required.
Salary Range $60,000 to $92,020 Annually
Compensation offers are based on a wide range of factors including relevant skills, training, experience, education and, where applicable, licenses or certifications obtained. Market and organizational factors are also considered. Along with a competitive compensation program please visit the benefits section of our Careers page to view available benefits.
Chemung Canal Trust Company/Capital Bank/Canal Bank fosters a diverse and inclusive culture where employees are able to succeed to their full potential. EEO/AA Including Veterans and Disabled.
-
Recent Jobs
-
Information Security Analyst
- Chemung Canal Trust Company (Elmira, NY)
-
Director of Data Science & Artificial Intelligence (AI)
- Fannie Mae (Reston, VA)
-
Operations Instructor/ Senior Operations Instructor - Nuclear
- Xcel Energy (Welch, MN)
-
Risk and Resiliency Manager
- Bentley Systems (PA)