M&T Bank – Amherst, NY
Cybersecurity Event Analyst
Amherst, NY or Millsboro, DE
The Cybersecurity Event Analyst – Uses defensive measures and information collected from a variety of sources to identify, analyze and report events that occur or might occur within the network in order to protect information, information systems and networks from threats.
Characterize and analyze network traffic to identify anomalous activity and potential threats to network resources.
Capture and analyze network traffic associated with malicious activities using network monitoring tools.
Collect intrusion artifacts (e.g., source code, malware, trojans) and use discovered data to enable mitigation of potential cyber defense incidents within the enterprise.
Perform static malware analysis.
Conduct research, analysis, and correlation across a wide variety of all source data sets (indications and warnings).
Perform file system forensic analysis.
Analyze incident data for emerging trends.
Maintain incident tracking and solution database.
Notify designated managers, cyber incident responders, and cybersecurity service provider team members of suspected cyber incidents and articulate the event’s history, status, and potential impact for further action in accordance with the organization’s cyber incident response plan.
Conduct analysis of log files, evidence, and other information in order to determine best methods for identifying the perpetrator(s) of a network intrusion or other crimes.
Provide timely notice of imminent or hostile intentions or activities which may impact organization objectives, resources, or capabilities.
Computer networking concepts and protocols, and network security methodologies; cybersecurity principles; cyber threats and vulnerabilities; known vulnerabilities from alerts, advisories, errata, and bulletins; network traffic analysis methods; cybersecurity-enabled software products; basic physical computer components and architectures, including the functions of various components and peripherals (e.g., CPUs, Network Interface Cards, data storage).
Identifying, capturing, containing, and reporting malware;
analyzing network traffic capacity and performance characteristics;
using network management tools to analyze network traffic patterns (e.g., simple network management protocol; analyzing malware;
using code analysis tools;
analyzing traffic to identify network devices;
extract information from available tools and applications associated with collection requirements and collection operations management;
monitor target or threat situation and environmental factors
Identify systemic security issues based on the analysis of vulnerability and configuration data; answer questions in a clear and concise manner; ask clarifying questions; communicate effectively when writing; dissect a problem and examine the interrelationships between data that may appear unrelated; accurately define incidents, problems, and events in the trouble ticketing system; collaborate effectively with others; monitor system operations and react to events in response to triggers and/or observation of trends or unusual activity; understand objectives and effects.
MINIMUM QUALIFICATIONS REQUIRED:
Bachelor’s degree in an applicable field (Cybersecurity, Information Assurance, Technology, etc.) or the equivalent in work experience.
Familiar with the use of spreadsheet, database, graphing, presentation, and department specific software with a general knowledge of financial models.
Working knowledge of Windows and PC software programs.
IDEAL QUALIFICATIONS PREFERRED:
Prior experience working in Cybersecurity, ideally a CSOC
Experience working in a highly regulated industry
Cybersecurity related certifications
At M&T, we strive to be the best place our employees ever work, the best bank our customers ever do business with and the best investment our shareholders ever make. So when looking to advance your career, look to M&T. As a top 20 US bank holding company and one of the best performing regional banks in the country, we offer a wide range of performance based career development opportunities for talented professionals. And through our longstanding tradition of careful, conservative and consistent management and a strong commitment to the communities we serve, we continue to grow with a focus on the future.
New York-Amherst-Commerce Drive
Administrative and Support Services