Threat Level: green Handler on Duty: Xavier Mertens

SANS ISC: InfoSec Jobs InfoSec Jobs

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Security Operations Lead
Company Federal Home Loan Bank of Chicago
Location Chicago
Preferred GIAC Certifications GSEC, GCIH
Travel 10%
Salary Not provided
URL https://www.linkedin.com/jobs/view/1929637068/
Contact Name MShrewsbury
Contact Email mshrewsbury/at/sans.org
Expires 2020-10-29

Job Description

Description

Join the FHLBC team!

At the Federal Home Loan Bank of Chicago, employees come first - that’s why we offer a highly competitive compensation and bonus package, and access to a comprehensive benefits program designed to meet the needs of our employees.
Medical, dental and vision insurance
Retirement program (401k and Pension)
Generous PTO plan
10 paid holidays per year
Work from home options
Casual dress code
The Security Operations Lead contributes to the success of the Bank by coordinating the monitoring and administration of a safe and sound technology environment. This includes actively monitoring, testing, documenting, and resolving security-related incidents and issues. Resolution of these issues may involve systems administration tasks, testing, interacting with vendors and partners, and automation. Candidates should have experience with incident response (IR), have a process oriented view of team execution and be able to communicate security topics to non-technical audiences.

Duties And Responsibilities
Lead, organize and execute Security Operations functions including Incident Response (IR), system administration and small projects.
Build a threat detection program that aggregates and correlates threat data to identify network intrusions
Train, lead and mentor a team of security analysts in threat detection and incident response
Leverage a third party managed security service provider (MSSP) for 24x7 tier I investigation and escalation.
Manage the relationship with the MSSP to include SLAs, enhancements and other feedback
Perform analysis from a variety of event sources to contain and neutralize network intrusions in a timely manner
Document and execute standard operating procedures.
Analyze requirements and apply knowledge of business needs and security risks to determine appropriate course of action.
Collaborate with different areas of IT in order to provide security and business technology solutions for the bank.
Review daily threat intelligence feeds and take necessary actions to counter reported threats.
Develop technical solutions to help mitigate security vulnerabilities and automate repeatable tasks.
Engage with third party incident response and forensic resources as needed.
This position is part on an on call rotation for security events.

Skills And Education Required
5-7 years of security or technology experience.
4 year college degree in information technology or equivalent experience.
Security and technology certifications are highly preferred (CISSP, SANS GSEC/GCIH, Security+).
Experience in a Windows Server Environment.
Experience with Amazon Web Services or similar IaaS preferred.
Experience with Splunk is preferred.

Knowledge, Skills, Abilities And Behaviors Required
Strong communication (verbal, written, visualization and listening) skills.
Self-starter who can work independently as well as in a team setting.
Giving and receiving effective feedback across all interactions.
Ability to address conflict with peers and others in the organization.
Interest in understanding customer perspective to aid in development of the right solution.
Commitment to delivering quality solutions.
Ability to communicate technical topics to a non-technical audience.