Security Analyst
Description
About Us
Capital Bank N.A. is headquartered in Maryland, and has been serving our communities since 1999. We stand as a publicly traded company (NASDAQ : CBNK) with over $2 billion in assets.
We offer commercial and consumer banking services to clients in Maryland, DC, and Northern Virginia, alongside two nation-wide lending brands;
Capital Bank Home Loans and OpenSky, a credit card division that offers and services credit cards across all states. Our personalized approach to banking, paired with cutting-edge technology solutions and a comprehensive suite of products and services, fuels our growth, and enables us to support our customers at every stage in their financial journey.
Come join a bank where our employees thrive and are engaged in meaningful work. For the last 4 out of 5 years, Capital Bank was named one of the "Best Banks to Work For" in the U.S. by American Banker.
Position Purpose
The Security Analyst plays a significant role in ensuring the security and integrity of an organization's information systems and digital assets.
They will be responsible for ensuring the security of our systems and data by monitoring, analyzing, and responding to security events.
This role involves working closely with other IT and business units to identify and mitigate security risks, maintain regulatory compliance, and protect the bank's assets.
Position Responsibilities
Monitor security events and alerts from various sources to proactively detect and respond to potential security events.
Analyze trends and patterns to improve the organization's overall security posture.
- Monitor network traffic and security logs to detect and analyze potential security threats, anomalies, and breaches. Utilize centralized XDR system to identify and respond to unauthorized activities.
- Identify and assess vulnerabilities in systems, applications, and networks through regular security assessments and penetration testing.
Collaborate with IT teams to prioritize and remediate vulnerabilities in a timely manner.
- Assist in the development, implementation, and maintenance of identity and access management (IAM) procedures to ensure the secure and efficient management of user identities and access rights across the organization.
- Participate in technical and non-technical projects requiring security oversight to ensure policies, procedures and standards are met.
- Assist with investigation and response to security incidents, including malware infections, unauthorized access attempts, etc.
Coordinate with internal teams to mitigate the impact of security incidents and prevent future occurrences.
- Collaborate with business units to ensure security controls are integrated into business processes.
- Participate in employee education events for employees to raise awareness of security threats and security best practice.
- Participate in periodic IT / IS audits, exams and assessments, as needed.
- Stay updated on the latest security threats, vulnerabilities, and industry best practices. Continuously improve technical knowledge and skills to adapt to evolving cyber threats.
- Perform other security-related duties as assigned.
Minimum Education & Experience
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field (or equivalent experience).
- Minimum of 3 years of experience in information security or a related role, preferably in a regulated financial institution.
- Relevant certification such as CompTIA Security+, or similar.
- Experience in security monitoring, vulnerability management, and responding to potential security events.
- In depth and demonstrated knowledge of LAN / WAN technologies, network protocol analysis, firewalls, intrusion detection systems, encryption and VPN technology, and security tools.
- Knowledge of relevant security and compliance frameworks, standards, and regulations.
- Ability to assist all levels of the organization with understanding security as it relates to their functional area.
- Ability to work independently and in a team setting, and across external and internal stakeholder groups.
Technical Knowledge and Skills
- Microsoft Office software suite (Word, Excel, PowerPoint, etc)
- Microsoft 365 Security and Compliance Centers
- Knowledge of information security management standards and frameworks, such as PCI-DSS, FFIEC / CAT tool and NIST CSF
- Proficiency in security tools and technologies, network protocols, and operating systems.
- Strong analytical and problem-solving skills with an ability to think critically and assess risks.
- Effective communication skills to collaborate with cross-functional teams and convey security-related information.
- Capable of working in a fast paced, dynamically changing and team-oriented environment.
- Ability to find innovative solutions while working with existing resources.
Additional Details
This role will work in a remote working environment.
Supporting Businesses. Helping People. Strengthening Communities.
Capital Bank, N.A. is an Affirmative Action, E-Verify, and Equal Opportunity Employer.
Equal Opportunity Employer / Protected Veterans / Individuals with Disabilities
The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant.
However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)