Cybersecurity Network Defense Analyst – Proxy & F5

at M&T Bank
Published August 12, 2018
Location Amherst, NY
Category Default  
Job Type Full-time  

Description

M&T Bank

Cybersecurity Network Defense Analyst

Amherst, NY or Millsboro, DE

Basic Function:

Responsible for maintaining the security of all networks and computer systems, including the protection of data from unauthorized use or access. This individual monitors various security systems and resolves and reports security violations. This individual will need to have a broad understanding of Cybersecurity network defense, particularly proxies and F5.

Responsibilities:

Carry out 1st and 2nd line support for deployed Security tools. This will include both the base Operating system as well as the associated application(s). 

Assist the SOC Analysts in developing correlation logic and signatures associated with the supported Security Tools.  

Strong understanding and knowledge of network security technologies including Netflow, IDS/IPS, WAF, Proxies, NAC and Firewalls.

Produce situational reports from Lancope, Netwitness, SIEM, F5, ForcePoint.

Other responsibilities include:

Produce and maintain operational build and configuration documentation. 

Remain up to date with operating system and network technologies to ensure consistent support across all tools. 

Remain up to date with advances in security tool technologies and have the ability to present such information to senior management. 

Assist projects in deploying security tools in both design and implementation phases. 

Build up and maintain relationships with other support functions within M&T Bank and with external vendors. 

Seek out and identify anomalous activity and behaviors. 

Provide technical risk assessments as required and deliver recommendations and mitigation options.

Must be able to direct and monitor junior resources, plus coordinate development tasks on small to large scope projects. 

Recommends new technology, policies or processes to benefit the organization and improve deficiencies.

May lead or participate in technical evaluations of vendor software.

Performs other related duties or projects as required, which may include playing a lead role in due diligence, cost/benefit analysis or business study activities. Provides highly analytical consulting and leadership in identifying and implementing new uses of information technologies to assist business units in meeting strategic objectives.  

Evaluates and understands complex interrelationships and effects among programs, interfacing applications and platforms.

Minimum Qualifications:
Bachelor’s degree and a minimum of 3 years’ professional work experience, including a minimum of 2 years direct cybersecurity experience, or in lieu of a degree a combined minimum of 7 years’ higher education and/or work experience, including a minimum of 3 years’ professional work experience, including a minimum of 2 years direct cybersecurity experience.  

Experience working with some of the following: IP networking, networking protocols and understanding of security related technologies. This can include: encryption, IPsec, PKI, VPNs, firewalls, IPS, WAF, proxy services, DNS, electronic mail and access-lists. 

Demonstrates a high aptitude for complex problem analysis and resolution. 

Solid understanding of vendor hardware configurations and software concepts both in the current environment and future technologies.

Ability to lead or actively participate in technical discussions.

Capable of quickly learning new technical skills. 

High level of initiative and self-motivation, resourceful, and patient with an iterative process. 

Preferred Qualifications:

Security certification like Security + or equivalent a plus.

Previous experience working in a Cybersecurity Operations Center.

Job Posting:  Jan 11, 2018, 12:46:21 PM
Unposting Date:  Ongoing