Information Security Analyst

City National Bank of WV

Charleston, WV

Full-Time

Job Description

EQUAL OPPORTUNITY EMPLOYER, INCLUDING DISABILITY/VETS

Summary Description

City National Bank prioritizes the protection of our digital assets and the confidentiality, integrity, and availability of our information systems. As an Information Security Analyst, you will play a crucial role in strengthening our defenses against evolving cyber threats and ensuring compliance with industry standards and regulations.

The Information Security Analyst position is instrumental in assisting our Information Security Officer in safeguarding our infrastructure, detecting and responding to potential threats, and fostering a culture of security awareness across the organization.

In this role, you will have the opportunity to work in a collaborative environment, utilize state-of-the-art security technologies, and contribute to the continuous improvement of our security posture. By joining our team, you will be at the forefront of protecting our organization's valuable assets and preserving the trust of our stakeholders.

Essential Functions

Responsible for day-to-day tasks such as security monitoring, incident response, vulnerability management, and security awareness training. Focuses on implementing and maintaining security controls, analyzing security data, and responding to security incidents.

Ensure compliance with regulatory requirements, industry standards, and organizational policies related to information security.

Conduct risk assessments and vulnerability scans to evaluate the security posture of systems, networks, and applications.

Support incident response activities, including incident triage, containment, eradication, and recovery.

Assist the security awareness training program to educate employees on security best practices, emerging threats, and regulatory requirements.

Conduct phishing simulations and other security awareness exercises to assess and improve staff readiness to recognize and respond to social engineering attacks.

Participate in internal and external audits, assessments, and compliance reviews to evaluate the effectiveness of security controls and processes.

Assist in responding to audit findings, implementing corrective actions, and maintaining audit documentation as required.

Research, evaluate, and recommend security technologies, tools, and solutions to enhance the organization's security posture.

Collaborate with IT to integrate security controls into both existing and future infrastructure and applications, ensuring alignment with business objectives.

Foster a culture of security awareness and collaboration across the organization, promoting shared responsibility for information security.

Position Requirements

Minimum of 2 years Information Security experience

Minimum of 5 years Information Technology experience

Bachelor's degree in Computer Science, Cybersecurity, Information Technology, Information Systems, or a related program.

Information Security Certification (One Required)
o CompTIA Security+
o GIAC Security Essentials (GSEC)
o ISC2 Systems Security Certified Practitioner (SSCP)
o CompTIA Cybersecurity Analyst (CySA+)
o EC-Council Certified Ethical Hacker (C|EH)
o Comparable certifications considered

Work is generally performed indoors in environmentally controlled conditions

Typically the employee may sit to perform the work. However, there may be some standing, walking, bending and carrying of light items in the course of the work

Reasonable accommodations may be provided to enable individuals with disabilities to perform the essential functions

Critical Skills / Expertise

Cybersecurity Knowledge: A thorough understanding of various cybersecurity principles, practices, and tools is fundamental. This includes knowledge of firewalls, VPNs, IDS/IPS, network security, cryptography, and understanding the latest security risks and countermeasures.

Analytical Skills: Information security analysts must possess strong analytical skills to assess security systems, monitor for any unusual activity, and respond to security incidents. This involves a strong eye for detail and the ability to understand complex systems and the potential ways they can be breached.

Problem-Solving Skills: Information Security Analysts rely on problem-solving skills to swiftly manage and mitigate emerging threats, ensuring security across an evolving cybersecurity landscape. These skills are also crucial for fostering innovative solutions for maintaining an effective security posture.