Job Description

The Security Operations Analyst II is responsible to investigating cybersecurity violations, and support HR, Legal, BSA, and Fraud department with internal investigations and eDiscovery.

Essential Functions

• Analyze the computing environment to detect, isolate, and remediate advanced cyber security threats
• Monitor and analyze security events, logs and reports from various tools and technologies
• Provide first level critical response for all information security related incidents
• Administration of technical controls including, but not limited to, SIEM, endpoint security, and content filtering systems
• Interpret threat intelligence data and making actionable
• Record information security incidents within an incident tracking system
• Assist Information Security Engineers with testing of technical controls and vulnerability remediation
• Provide support and guidance to end users
• Operation of digital forensic lab equipment
• Creation of event alerts and custom reports
• Control and minimize nonpayroll costs
• Recommend improvements to procedures
• Recommend service and delivery enhancements
• Attempt to exceed departmental expectations
  
  

Additional Essential Functions

• Ensure compliance with Northwest’s policies and procedures, and Federal/State regulations
• Navigate Microsoft Office Software, computer applications, and software specific to the department in order to maximize technology tools and gain efficiency
• Work as part of a team
• Work with on-site equipment
  
  

Additional Responsibilities

• Complete special projects upon request
  
  

Safety and Health for those without supervisory duties

• Abide by the rules of the safety and loss prevention program
• Perform work tasks in a safe manner
• Report any and all injuries to supervisor
• Know what to do in case of an emergency
  
  

Qualifications

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Education

Associate's Degree Or

Work Experience

3 - 5 years of experience or an equivalent combination of education and related work experience

General Employee Knowledge, Skills, And Abilities

• Ability to establish effective working relationships among team members and participate in solving problems and making decisions
• Ability to present and express ideas and information clearly and concisely in a manner appropriate to the audience, whether oral or written
• Ability to actively listen to what others are saying to achieve understanding, sharing information with others and facilitating the open exchange of ideas and information
• Ability to establish courses of action for self to accomplish specific goals, develop and use tracking systems for monitoring own work progress, and effectively use resources such as time and information
• Ability to make right decisions based on perceptive and analytical processes, practicing good judgment in gray areas
  
  

Additional Knowledge, Skills And Abilities

Work experience as a responder handling complex information security incidents

Knowledge within various layers of the OSI Reference Model

Understanding of database, network, telephony, and operating system security

Understanding of TCP/IP communications ports and protocols

Log analysis and query skills

Scripting skills

Licenses and Certifications

An entry-level CompTIA Security+ or equivalent certification from a recognized professional organization

Northwest is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.