Threat Hunter II at m&t

Posted in Other 28 days ago.

This job brought to you by Careerbuilder

Location: Amherst, New York





Job Description:
Overview:
Supports the development, implementation, and execution of various Cybersecurity advanced threat initiatives, systems, and processes. Serves under the guidance of senior staff to assist with application designs and/or modifications to support the technology and tools within the department. May complete day-to-day support activities and special projects related to the identification, evaluation, analysis, and remediation of threat tactics, methodologies, processes, and activities.

Primary Responsibilities:
  • Characterize and analyze advanced threat data to identify anomalous activity and potential threats to network resources.
  • Support the development, implementation, and execution of various advanced threat-related initiatives, systems, and processes.
  • With collaboration from senior team members, provide guidance, testing plans, and/or analysis reporting to be used within the team and Cybersecurity Operations to ensure conformance to established compliance, regulatory, best practice, and risk management programs.
  • Identify potential threats, review with more experienced personnel, and provide recommendations for functional and/or operational improvement.
  • Responsible for coordination with more experienced personnel, Operations, Technology, and business unit personnel in an auditing, analysis, and outreach capacity.
  • Responsible for supporting functions, systems, and processes critical to the Corporation's ability to identify, investigate, minimize, and defend against advanced threats.
  • May interact with various internal and external audit, regulatory, privacy, and/or compliance personnel.
  • Responsible for regular interaction with non-management, middle management, certain senior management, and business units and partners.
  • May interact with outside teams and external professional organizations supporting areas of expertise.
  • Assists with documenting and communicating proposed new approaches, methods, technologies, or breakthroughs in area of expertise.
  • Understand and adhere to the Company's risk and regulatory standards, policies and controls in accordance with the Company's Risk Appetite. Identify risk-related issues needing escalation to management.
  • Promote an environment that supports diversity and reflects the M&T Bank brand.
  • Maintain M&T internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators as applicable.
  • Complete other related duties as assigned.


Scope of Responsibilities:
This position works under general supervision of the Team Leader and/or team specialist(s) while being afforded opportunity to exercise independent judgment and discretion.

Education and Experience Required:
Combined minimum of 5 years' higher education and/or work experience, including a minimum of 1 year relevant work experience in two or more of these cyber security domains: Security and Risk Management, Asset Security, Security Engineering, Communication and Network Security, Identity and Access Management, Security Testing and/or Security Operations

Understanding of the System Development Life Cycle (SDLC)

Knowledge of Enterprise Information Security Architecture (EISA) and security strategy planning

Knowledge of tools, techniques, and methodologies analyzing and mitigating cyber attack stages, including reconnaissance, scanning, enumeration, access escalation, privilege escalation, exploitation, and obfuscation

Prior experience completing complex problem analysis and problem resolution

Prior experience quickly learning new technical skills

Knowledge of tactics and capabilities for advanced threat actions

Knowledge of common networking and routing protocols, services, structures, architecture, and designs supporting modern communication networks

Knowledge of evaluating, analyzing, and synthesizing large quantities of data (which may be fragmented and contradictory) and accurately determining the potential range and scope of threats

Education and Experience Preferred:
Associates degree in an applicable discipline

Minimum of 2 years' relevant work experience in two or more of these Cybersecurity domains: Security and Risk Management, Asset Security, Security Engineering, Communication and Network Security, Identity and Access Management, Security Testing and/or Security Operations

Detailed knowledge of tools, techniques, and methodologies analyzing and mitigating cyber attack stages, including reconnaissance, scanning, enumeration, access escalation, privilege escalation, exploitation, and obfuscation

Technical understanding of common networking and routing protocols, services, structures, architecture, and designs supporting modern communication networks

Detailed knowledge of evaluating, analyzing, and synthesizing large quantities of data (which may be fragmented and contradictory) and accurately determining the potential range and scope of threats and contributing towards intelligence reporting

GSEC (GIAC Security Essentials Certification), CYSA (Cybersecurity Analyst), or platform-specific or Cybersecurity domain-related industry-recognized certification