Information Security Operations Analyst

First American Bank was founded in Chicago, and over the years has expanded throughout Wisconsin and Florida. As the largest privately held bank in Illinois, we now have over 60 locations and assets of $5+ billion. We are a community bank at heart with international expertise, traditional values, and a forward-looking philosophy. Our employees have the experience and vision to meet the needs of savers, borrowers, and businesses in the 21st century. First American Bank can offer employees a level of visibility, career growth, and stability that is difficult to find in many larger corporations.

The Information Security Operations Analyst oversees Security Operations to proactively identify, analyze, and remediate security vulnerabilities while supporting incident response efforts to mitigate risk. This role is responsible for monitoring system alerts, reviewing logs, and collaborating with various technology teams to develop security solutions and enhance defenses. Additionally, this individual is required to stay abreast of current industry trends, implement security best practices, and ensure the operational integrity of security systems to protect the organization's infrastructure.

DUTIES & RESPONSIBILITES

Conduct in-depth analysis of vulnerabilities identified through assessments and implement effective remediation strategies to mitigate risks and strengthen the security posture.
• Support security incident response oversight, validating response, and suggesting improvements.
• Identify, track, investigate, and resolve system alerts and security incidents reported to Information Security.
• Participate in the planning, designing, and implementing Information Security projects, under the direction of the Information Security Manager and/or senior team members.
• Act as liaison to other technology teams to effectively communicate and deliver security solutions.
• Provide analytical and technical security recommendations to other team members, other technology teams, security management, and business stakeholders.
• Maintain up-to-date detailed knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes, and the development of new attacks and threat vectors.
• Identify and analyze new and emerging threats to determine impacts to the Bank and provide guidelines and recommendations pertaining to opportunities to strengthen the Bank's security landscape across defense layers.
• Maintain the operational configurations of all implemented security solutions in accordance with established baselines, specifically for those systems that are partially or fully managed by the Information Security Team.
• Participate in defining, maintaining, and auditing up-to-date baselines for the secure configuration and operations of all in-place devices, whether they be under direct control (i.e., security tools) or not (i.e., workstations, servers, network devices, etc.).
• Create and maintain dynamic dashboards and/or scorecard for visibility of Information Security Governance activities.
• Participate in the creation of enterprise security documents (policies, standards, baselines, guidelines and procedures) under the direction of the Information Security Manager and/or senior team members, where appropriate.
• Recommend additional security solutions or enhancements to existing security solutions to improve overall enterprise security.
• Provide on-call support for security incident response.
• Conduct and complete additional assignments/projects as designated by management.

QUALIFICATIONS

• High school diploma or equivalent required. A Bachelors degree in Information Technology/Computer Information Systems or a related field is preferred.
• SANS, IA, GIAC, SSCP, CISA, CEH, Security+ and / or similar certifications is a plus.
• Minimum four years of experience supporting Information Security Operations, Threat Intelligence, Vulnerability Management and/or Security Incident Response is required.
• In-depth technical knowledge of and experience with one or more common security products and toolset (firewalls; intrusion prevention systems; web-security content management; identity, privileged access, authentication services; SEIM; etc.) is required.
• Working technical knowledge of wider a cross-section of the common security products and toolsets.
• Experience in proactively identifying potential Information Security controls risks, issues, and opportunities through analytical thinking and offering sustainable recommendations that address root cause rather than symptoms.
• Experience with software development, scripting languages, and electronic banking technologies are a plus.
• Ability to relay technical information to both technical and non-technical personnel.
• Must be professional, comfortable speaking with external and internal contacts with a demonstrated ability to tailor the message appropriately to the audience and situation.
• Demonstrated ability to convey thoughts and ideas effectively and succinctly via written formats, including emails, letters, and electronic platforms. Maintain professional standards relating to spelling and grammar.
• Maintain credibility through professional demeanor, appearance, and presence by modeling standards appropriate to our environment and industry.
• Maintain good working relationships with internal partners by exhibiting exemplary interpersonal skills, adopting a constructive, solutions-focused approach.
• Use sound professional judgment to balance the interests of the organization and customer, understanding and using available resources to mitigate risks.
• High proficiency with Microsoft 365 products and applications, including the ability to effectively prepare or review documents, procedures, and reports.
• Working technical knowledge of several infrastructure technologies (such as Active Directory, Server 2016 & 2019, Azure, M365, and various AV products, Vulnerability Management) is preferred.
• Demonstrated ability to learn new systems and applications, as well as the ability to understand, adapt and adjust responsibilities/workflows because of system upgrades.
• Occasional travel to other First American Bank locations, Bank functions and training facilities may be required.
• Typical hours are Monday through Friday 8:00 a.m. to 5:00 p.m. Additional hours may be required depending upon business need.
• Punctuality is required to maintain First American Bank's customer service standards.