#Information #Security Analyst I – Red Team

Purpose of Job USAA is currently looking for an experienced Information Security Analyst I. This role will primarily be Red Team focused, with an occasional need to perform general Blue Team tasks.

Investigates, analyzes, and responds to suspicious behavior, attacks, and security breaches within USAA’s environments using a variety of cyber defense tools to identify and mitigate threats. Conducts vulnerability, security configuration, and/or penetration testing assessments of systems and networks and develops and implements solutions for addressing vulnerabilities, threats, and exploits. Stays current with latest information security threats, exploits, trends, and intelligence.

Job Requirements
Researches and analyzes the latest information security vulnerabilities, threats, exploits, trends and intelligence.
Conducts routine vulnerability, security configuration, and/or penetration testing assessments and manages the resulting findings. Monitors networks, systems, and applications for complex suspicious behavior (includes Insider Threat), attacks, and security breaches.
Responds to cyber incidents, performing detailed analysis using complex security tools to determine root cause.
Has to use knowledge, understanding, and experience of disparate skills (e.g. networking, servers, coding, etc.) to figure out the malicious actor’s tactics, techniques and procedures.
Conducts basic forensic analysis of compromised systems with supervision.
Uses the discoveries from the incident response process to make moderately complex improvements to the existing detection capabilities and security controls.
Prepares written briefs including recommendations to leadership on latest threats, alerts, and incidents.
Work is completed independently.
Serves as a resource to team members on escalated issues of an unusual nature.

Minimum Requirements
Bachelor’s Degree OR 4 additional years of related experience beyond the minimum required may be substituted in lieu of a degree.
4+ years of related experience in Information Security and/or Information Technology to include accountability for complex tasks and/or projects.
Proficient knowledge of function/discipline and demonstrated application of knowledge, skills and abilities towards work products.
Proficient level of business acumen in the areas of business operations, industry practices and emerging trends.

  • Qualifications may warrant placement in a different job level.*

When you apply for this position, you will be required to answer some initial questions. This will take approximately 5 minutes. Once you begin the questions you will not be able to finish them at a later time and you will not be able to change your responses.

Preferred
Intermediate Sysadmin experience in Windows, Linux and macOS
CLI experience in Windows, Linux and macOS
Understanding of Network, Endpoint, Cloud, and OWASP Security Principles
Strong Research and Troubleshooting Skills
Intermediate to strong programming skills in at least one language from each: machine compiled, JIT, and scripting.
Working knowledge of “hacker” and security type tools such as Wireshark, Nmap, Metasploit, Aircrack-ng, Hydra/JTR/Hashcat, Burp/ZAP/Nikto, etc.
Experience with social-engineering and exploitation through previous job roles and/or certifications is a plus
Capability to “think like an attacker”

The above description reflects the details considered necessary to describe the principal functions of the job and should not be construed as a detailed description of all the work requirements that may be performed in the job.

At USAA our employees enjoy one of the best benefits packages in the business, including a flexible business casual or casual dress environment, comprehensive medical, dental and vision plans, along with wellness and wealth building programs. Additionally, our career path planning and continuing education will assist you with your professional goals.

Relocation assistance is not available for this position.

For Internal Candidates:
Must complete 12 months in current position (from date of hire or date of placement), or must have manager’s approval prior to posting.

Last day for internal candidates to apply to the opening is 11/12/18 by 11:59 pm CST time.

Source: indeed