Information Security Analyst - Hybrid/Corporate Campus (Cleveland. OH)
: Job Details :

At Third Federal, named for five years in a row as One of the Best Companies to Work For in America by Fortune magazine, we look for associates who can help us fulfill our mission to help customers achieve the American dream of home ownership and financial security and provide value to our customers and our communities. We take a genuine interest in each of our associates - from their professional development to their health and wellness. We offer a pleasant customer service oriented work environment, competitive salary, comprehensive benefits package and career growth opportunities. At Third Federal, you will find strength and stability in your career. Nearly 15 percent of our associates have been with the company for 25 years or more and, in the more than 80 year history of our company, we have never had layoffs. Description: This is a position within the Information Security team.Responsibilities include monitoring and investigation of alerts, administration of software used by the team, and researching and implementing improvements to our Information Security posture.This position requires 8-10 years of hands-on experience in multiple areas of Information Security, and knowledge and skills in areas such as networking, Windows, Linux, and Cloud platforms. Duties and Responsibilities will include:

• Respond to alerts, events and incidents.
• Perform detailed investigation and analysis of events.
• Use personal knowledge, skills, and tools to monitor for threats.
• Develop and implement monitoring rules and alerts.
• During investigations act as the go-to person for junior members of the team.
• Troubleshoot and support software and devices used by the Information Security team.
• Maintain situational awareness about the entire Information Technology environment at Third Federal.
• Regularly provide ideas and recommendations to improve the Information Security posture.
• Awareness and understanding of current topics and threats occurring in the Information Security community.
• Provide training to other members of the Information Security.
• Implement new Information Security tools and products.
• Create policies, playbooks, how-to guides, and other documentation.

Required Skills and Qualifications:

• Strong problem-solving skills to investigate and understand security events. SIEM knowledge is key for these skills as well as the ability read and interpret logs.
• Hands-on administration with a broad security understanding of one or more products such as anti-malware/anti-virus, firewalls, web proxies, SIEMs, vulnerability scanners, penetration testing, email filtering, DLP, etc.
• Ability and strong understanding of how to monitor networks for security breaches and analyzing network traffic, activity logs and system alerts.
• Hands on experience with responding to security events, threats and/or incidents by investigating and analyzing to identify root causes.
• Proven ability to prepare reports on security events, incidents and threats.
• Ability to protect systems by using and maintaining software like firewalls and data encryption programs to protect sensitive information.
• Capable of conducting security assessments, vulnerability testing (scanning) and risk analysis with having key abilities to identify vulnerabilities and assess their risk and impact to the organization.
• Proven ability to create documentation for security related plans including incident response and disaster recovery plans.
• Ability to work successfully in team settings.
• Ability to think critically and innovatively about the security solutions that can keep data secure.
• Understanding of TCP/IP and networking.
• Experience with Azure and AWS platforms is preferred.
• Knowledge of best practices and frameworks used in Information Security.
• Capable of explaining technical information to both I.T. and non-technical audiences.
• Detailed orientated.
• Ability to handle multiple projects and prioritize critical work.
• Desire to self-educate on the ever-changing landscape of cyber tactics.

Education and Experience:

• Minimum 8-10 years of experience in an Information Security role.
• Bachelor's degree in information security, computer science or information systems, or equivalent work experience.
• Certifications that match this job position such as CISSP, CEH, Security+ etc... are a plus

Third Federal is an Equal Opportunity and Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, ethnicity, religion, sex, national origin, gender identification or sexual orientation, disability, protected veteran status or any other classification protected under law. Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)