Glacier Bancorp, Inc. Sr. Information Security Analyst in Helena, Montana
Glacier Bancorp, Inc. (GBCI) is a regional bank holding company providing commercial banking services in 80 communities through 129 banking offices in Montana, Idaho, Colorado, Utah, Washington and Wyoming. GBCI offers an extensive benefits package that includes, but is not limited to, medical, dental, vision, life insurance; retirement plan including employer match and profit sharing; paid vacation, holiday and sick leave. Salary is negotiable depending upon relevant experience.
About the Role
We are seeking an experienced security analyst to join our growing organization! The Senior Information Security Analyst position is tasked with designing, developing, administering and tuning security event monitoring and intrusion detection related systems while providing support for new analytic methods for detecting threats. The Senior Analyst will maintain knowledge on the latest intelligence and attack methodologies to take corrective actions during security incidents and is the second level escalation point for corrective action on security events from SIEM while tuning out false positives. Examines Big Data for patterns of malicious or unwanted activities in the enterprise. This position is the primary incident responder for security incidents however, when expert knowledge is required for Incident Response, escalates the Incident to Information Security Engineers. This position will also do other duties as assigned and reports to the Information Security Manager.
This is a Corporate Position which may be located at an available bank division location in Montana or Coeur d'Alene, Idaho.
The entry rate for this position is $29.77 per hour calculated for Missoula, MT. All compensation offers are dependent on geographical location, and are analyzed independently, and consider the following: location, years experience, educational background, and existing internal equity.
To learn more about our bank divisions,
DUTIES AND RESPONSIBILITIES:
Uses the company's SIEM platform to design, develop, administer and tune security event monitoring and intrusion detection for the GBCI Enterprise. This includes the development of correlation searches, dashboards and reports for Management and Regulatory bodies. Analyzes notable events generated by these correlation searches to Tune false positives or begin incident response. Uses company's SIEM to develop performance metrics, trend statistical data and customized management reports for Audit, Regulatory Exams, Committee and Board reports. Consults with all departments within IT to determine how to onboard security monitoring and build out the appropriate correlation searches to produce notables for incident response activities. enterprise.
Take corrective action using the industry standard stages of incident response (Preparation, Identification, Containment, Eradication, Recovery, Lessons Learned) as well as advises on remediation activities on security events escalated from Information Security Administrators and Analysts. Keeps management aware of incident status while performing deep-dive analysis by correlating data from various sources to determine if a critical system or data set has been impacted all while creates necessary Incidents, Major Incidents or Problems following the internal ITIL Processes. Communicates potential security exposures, misuse or noncompliance situations to the Information Security Manager or Chief Information Security Officer.
Leads postmortem Incident Response activities including lessons learned while advising on the implementation of revised or new security controls that may be needed from the Incident Response.
Monitors and maintains knowledge on new security trends and technologies to better position detective and preventative controls to minimize risks associated with security breaches.
Provides guidance and education to organization employees on the concepts and needs of a security conscience culture to achieve compliance according to regulatory requirements, bank policy and industry standard to promote high levels of security knowledge or awareness.
Must comply with all company policies and procedures and all applicable laws and regulations, including but not limited to, the Bank Secrecy Act, the Patriot Act, and the Office of Foreign Assets Control. Must complete the assigned online training courses and achieve a passing score by due date.
Minimum 3 years experience in implementing and supporting Information Technology systems required; 6+ years preferred.
Minimum 2 years experience in Information Security Operations required.
Bachelors Degree in Information Technology (preferably in Information Assurance or Information Security) or combination of education and relevant experience is required.
SANS GIAC or other relevant certification is required.
Proficiency in Enterprise Windows Server required; Linux/BSD/Unix administration preferred. Proficiency in Enterprise network routing and switching required.
Expertise of operation security technologies such as intrusion detection/prevention (required), SIEM (required), firewalls (preferred), syslog (preferred).
Basic understanding of Internet protocols required; advanced understanding preferred.
Knowledge of common information security management frameworks, such as ISO 27001, ITIL, COBIT, NIST and CIS 20 Critical Security Controls preferred.
KNOWLEDGE, SKILL, ABILITY:
Strong experience in network packet and vulnerability analysis while creating an action plan to resolve issues or incidents that are discovered.
Ability to perform advanced system troubleshooting on various Information Technology and Information Security products.
Able to translate security policies and procedures into actionable SIEM correlation searches, alerts, dashboards and reports.
Knowledge of applicable practices and laws relating to data privacy and protection.
Ability to present security topics to audiences of various degrees of technical and business backgrounds.
Ability to create effective Security Awareness Training content.
Familiarity with end user support, and other industry-standard techniques and practices.
Ability to present ideas in business-friendly and user-friendly language.
Proven analytical, troubleshooting, and problem-solving abilities with a keen attention to details.
Strong instinct to react quickly to arising problems.
Proven ability to effectively prioritize and execute tasks.
Strong organizational, customer service, communication and decision-making skills.
Professional verbal and written communication skills and strong technical documentation skills.
Ability to work with internal and external attest staff during audits, examinations and/or reviews.
Strong interpersonal skills, and must use considerable tact, diplomacy, and judgment.
Highly self-motivated and self-directed.
WORK ENVIRONMENT: Must be able to routinely perform work indoors in climate-controlled shared work area with moderate noise level.
Must be capable of up to 10% travel (e.g. 2 days/month) by automobile (as driver and passenger), commercial airlines, rental vehicles and public transportation and be able to lodge in public facilities. Travel will be necessary to conduct the duties of this job, and the employee must have the ability to drive and have proper licensing.
PHYSICAL DEMANDS: The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
While performing the duties of this job, the employee is often required to: sit; use hands in repetitive motions to finger, grasp, handle or feel; and talk or hear. The employee is occasionally required to: stand; walk; and lift or reach with hands and arms. The employee may also be required to: climb (Ascending or descending ladders, stairs, scaffolding, ramps, poles and the like, using feet and legs and/or hands and arms. Body agility is emphasized. This factor is important if the amount and kind of climbing required exceeds that required for ordinary locomotion), balance (Maintaining body equilibrium to prevent falling and walking, standing or crouching on narrow, slippery, or erratically moving surfaces. This factor is important if the amount of balancing exceeds that needed for ordinary locomotion and maintenance of body equilibrium), stoop (Bending body downward and forward by bending spine at the waist. This factor is important if it occurs to a considerable degree and requires full motion of the lower extremities and back muscles), kneel (Bending legs at knee to come to a rest on knee or knees), crouch (Bending the body downward and forward by bending leg and spine), crawl (Moving about on hands and knees or hands and feet), push (Using upper extremities to press against something with steady force in order to thrust forward, downward or outward), pull (Using upper extremities to exert force in order to draw, haul or tug objects in a sustained motion).
Must be able to operate routine office equipment including computer terminals and keyboards, telephones, copiers, facsimiles, and calculators. Must be able to routinely perform work on computer for an average of 6-8 hours per day, when necessary. Must be able to work extended hours or travel off site whenever required or requested by management. Must be capable of regular, reliable and timely attendance. Must be capable of climbing / descending stairs in an emergency situation.
Specific lifting abilities required by this job include: Medium work. Exerting up to 50 pounds of force occasionally, and/or up to 25 pounds of force frequently, and/or up to 10 pounds of force constantly to move objects.
Specific vision abilities required by this job include: The worker is required to have close visual acuity to perform an activity such as: preparing and analyzing data and figures; transcribing; viewing a computer terminal; extensive reading; visual inspection involving small defects, small parts, and/or operation/inspection of machines and/or using measurement devices at distances close to the eyes.
What We Offer
COMPENSATION & BENEFITS: Salary is dependent upon relevant experience. We offer an extensive benefits package that includes, but is not limited to, flexible health coverage options: medical/dental/vision (partially employer paid with competitive premiums), health rewards program, possible employer contribution to a Health Savings Account, Employee Assistance Program (EAP); life insurance; 401K retirement plan with immediate vesting (up to 3% employer match, 3% automatic employer contribution, and profit sharing); discounted banking products and services; paid vacation/sick days, and paid holidays.
COMPANY OVERVIEW: At Glacier Bancorp, our employees are our most valuable asset. We seek qualified individuals who enjoy people, are innovative and eager to learn. We are dedicated to providing opportunities for personal advancement and professional growth by investing in the tools and training needed to build a personalized career path for you.
Glacier Bancorp, Inc. is a regional bank holding company headquartered in Kalispell, Montana with assets greater than $16 billion, operating in 16 bank divisions across 8 states (Montana, Idaho, Utah, Washington, Wyoming, Colorado, Arizona, and Nevada). We pursue a community banking philosophy, emphasizing personalized service combined with the full resources of a large banking organization. Over the years, Glacier Bancorp has received numerous awards for stability and soundness, and has repeatedly ranked among the top 10% in the nation for financial strength.
We are an Equal Opportunity Employer and qualified applicants or employees will receive consideration for employment without regard to race, color, religion, national origin, sex (including pregnancy), sexual orientation, gender identity, mental or physical disability, genetic information, protected veteran status, or any other category protected by applicable federal, state or local laws.
Glacier Bancorp, Inc. does not sponsor applicants for work visas. All applicants must be legally authorized to work in the US.
No Recruiters or unsolicited agency referrals please.
Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities.