Cyber Security Analyst II or III at Federal Reserve Bank (FRB) in Cleveland, Ohio

Job Description:

Position Summary

Supports the Federal Reserve`s mission for financial system stability. An individual in this position has a high level of expertise on cybersecurity threats and related areas. Serves as a cybersecurity analyst in the System's Cybersecurity Analytics Support Team. This position will work with technical experts to assess threats and impacts to financial institutions while also supporting artificial intelligence/natural language processing development opportunities within the Bank. This individual may also serve as examiner-in-charge or lead cybersecurity risk specialist for supervisory activities at large, complex bank/financial/savings loan holding companies and their subsidiaries.

This position requires access to confidential supervisory information and/or FOMC information, which is limited to "Protected Individuals" as defined in the U.S. federal immigration law. Protected Individuals include, but are not limited to, U.S. citizens, U.S. nationals, and U.S. permanent residents who either are not yet eligible to apply for naturalization or who have applied for naturalization within the requisite timeframe. Candidates who are not U.S. citizens or U.S. permanent residents may be eligible for the information access required for this position and sponsorship for a work visa, and subsequently for permanent residence, if they sign a declaration of intent to become a U.S. citizen and meet other eligibility requirements.

In addition, all candidates must undergo an enhanced background check and comply with all applicable information handling rules, and all non-U.S. citizens must sign a declaration of intent to become a U.S. citizen and pursue a path to citizenship.

The Federal Reserve Bank of Cleveland is an Equal Opportunity Employer. We are dedicated to sustaining an environment in which diversity is valued and differences are strengths. It is the Bank's policy to provide equal employment opportunity for all employees and applicants without regard to race, color, religion, sex, national origin, age, disability, gender identity or expression, genetic information or sexual orientation.

Essential Accountabilities

• Conducts moderately complex analysis and interpreting of cybersecurity threat intelligence to identify trends and emerging risks, quantifies potential impact, and develops conclusions and recommended supervisory responses.
• Prepares and presents both orally and in written form research, analysis, and assessments concerning moderately complex matters to SCS and System stakeholders as needed or requested. Analysis supports recommendations regarding cyber threats, threat vectors, threat actors and threat trends.
• Demonstrates advanced-level knowledge of cybersecurity events, threats, and actors, including trends and emerging risks, and their impact on the broader financial system.
• Contributes actively by participating in and at times leading knowledge sharing forums within the SCS Administration related to key cybersecurity risks and emerging issues.
• Assists CPC Teams, the Examiner-in-Charge or lead risk specialist on information and cybersecurity target examinations of large, complex financial institutions.
• Contributes actively by participating in and at times leading efforts to advance Reserve Bank or System strategic initiatives.
• Provides leadership, coaching, and mentoring for less experienced analysts on processes and procedures related to internal matters and the supervisory process.
• Performs other duties as assigned or requested.
• Adheres to the Bank`s attendance policies through regular and prompt attendance.

ANALYST II: Bachelor's Degree in Computer Science, Management Information Systems, Intelligence or related field and 5+ years of related work experience required OR Two years of college and 7+ years of professional work experience.

ANALYST III: Bachelor's Degree in Computer Science, Management Information Systems, Intelligence or related field and 7+ years of related work experience required OR Master's Degree and 5+ years of professional work experience.

• Advanced ability to perform independent research
• Advanced knowledge of regulations, procedures, and practices of a specific discipline (e.g. information security, cyber intelligence)
• Intermediate knowledge of Microsoft Office
• Intermediate knowledge of project management
• General knowledge of intelligence concepts; intelligence lifecycle, diamond method, structured analytic techniques (red team, devil's advocate, analysis of competing hypothesis)
• General knowledge of artificial intelligence concepts / machine learning processes / natural language processing
• General knowledge in areas of technology governance, technology risk management/GRC, internal audit, vendor/third-party management, business resiliency and fraud
• Security operations concepts; perimeter defense, BYOD, data loss protection, insider threat, kill chain, risk assessment, etc.
• Relevant IT certifications (CISA, CISSP)
• Problem solving and analytical skills
• Advanced communication skills, Intermediate presentation skills

Traditional office environment: Employees typically sit most of the day, work with a computer and may answer/respond to phone calls. Physical movement consists of walking for meetings, breaks, etc. Ability to lift items weighing approximately 20 pounds on a limited basis is required. Addendum as needed: Employees may be required to travel by car/air.