Threat Detection Engineer
4 weeks ago
Thank you for your interest in a career at Regions. At Regions, we believe associates deserve more than just a job. We believe in offering performance-driven individuals a place where they can build a career --- a place to expect more opportunities. If you are focused on results, dedicated to quality, strength and integrity, and possess the drive to succeed, then we are your employer of choice.
Regions is dedicated to taking appropriate steps to safeguard and protect private and personally identifiable information you submit. The information that you submit will be collected and reviewed by associates, consultants, and vendors of Regions in order to evaluate your qualifications and experience for job opportunities and will not be used for marketing purposes, sold, or shared outside of Regions unless required by law. Such information will be stored in accordance with regulatory requirements and in conjunction with Regions' Retention Schedule for a minimum of three years. You may review, modify, or update your information by visiting and logging into the careers section of the system.
Job Description:
At Regions, the Security Information and Event Management (SIEM) Engineer is responsible for managing and supporting the systems and content related to the SIEM and User Behavior Analytics (UBA) platforms. This role is also responsible for collecting information and building innovative solutions to detect and defend the Bank from threats.
Primary Responsibilities
- Sources and onboards new data and leverages it to create valuable insights and solve problems as well as develop queries, dashboards, visualizations, reports, and alerts
- Assists with investigations of suspicious activity, incident response, and corrective actions to improve security
- Evaluates new technologies, enhancements, and process improvements to improve security
- Maintains knowledge with current emerging technologies and advancements within Information Security
- May provides expertise and solutions for others as a subject matter expert
This position is exempt from timekeeping requirements under the Fair Labor Standards Act and is not eligible for overtime pay.
Requirements
- High School Diploma or GED and eight (8) years of related post-secondary education and/or experience in Information Security or Information Technology
Preferences
- Advanced certification or training as an administrator or architect
- Background or training in Information Security Operations and a firm grasp on concepts related to defending an enterprise
- Experience building content such as alerts, dashboards, and reports
- Experience with event monitoring/analytics platforms such as Splunk, ArcSight, Qradar, Logrhythm, Exabeam, or Securonix
- Experience with event routing such as Syslog or Kafka
- Experience with networking or network traffic analysis
- Experience with one or more Information Security controls such as IDS/IPS, Firewalls, Endpoint Protection, DLP, or Application Security is ideal
- Familiarity with log/data collection and management
- Linux system administration experience
Skills and Competencies
- Ability work comfortably from a command line
- Effective written and verbal communication skills
- Strong organizational, research, analytical and/or problem-solving skills to evaluate situations, make recommendations, and take effective action
- Strong technical, investigative, and analytical skills
- Working knowledge and experience with one or more scripting languages: Bash, Perl, Python, JavaScript
This position may be filled at a higher level depending on the candidate's qualifications and relevant experience.
We are seeking a skilled and experienced Threat Detection SIEM Engineer with expertise in Splunk to join our dynamic team. As a Threat Detection SIEM Engineer, you will be responsible for the design, implementation, and management of our Security Information and Event Management (SIEM) platform, with a focus on threat detection and log analysis using Splunk. You will collaborate with cross-functional teams to proactively detect and respond to potential security threats and ensure the overall security of our organization's digital assets. The ideal candidate possesses a strong background in cybersecurity, SIEM technologies, and hands-on experience with Splunk.
Additional Preferences
- Experience and strong understanding of network protocols, network security monitoring tools and network traffic analysis
- Proficient in understanding, tuning, and creating network IDS signatures in response to threats
Additional Responsibilities
- Design, deploy, configure, and manage the SIEM infrastructure using Splunk to ensure effective and efficient threat detection and incident response capabilities.
- Collaborate with internal stakeholders to identify and define SIEM use cases, threat detection rules, alerts, and correlation rules based on industry standards and best practices.
- Develop and maintain content for SIEM platforms, including parsers, connectors, dashboards, and reports.
- Monitor and analyze security events and logs to identify potential security incidents, intrusions, and vulnerabilities.
- Investigate and respond to security alerts generated by the SIEM system, and initiate incident response procedures as required.
- Conduct advanced log analysis and perform forensic investigations to identify indicators of compromise (IOCs) and patterns of malicious activity.
- Develop and maintain incident response playbooks and procedures, and participate in incident response activities as needed.
- Collaborate with the security operations team to ensure timely incident resolution and effective containment of security breaches.
- Conduct periodic reviews and assessments of SIEM configurations, rules, and processes to identify areas for improvement and optimization.
- Stay up to date with the latest industry trends, threat intelligence, and emerging technologies in the field of SIEM and threat detection.
- Provide guidance, training, and knowledge transfer to junior team members on SIEM engineering and Splunk best practices.
This position must be within a reasonable driving distance to a Branch, Consumer Operations, or Professional Office Building with the primary location being for Birmingham, Alabama; Nashville, Tennessee; Atlanta, Georgia; Charlotte, North Carolina. There may be consideration for Dallas Texas; Denver Colorado; Houston Texas; Orlando Florida; Salt Lake City Utah; Tampa Florida. Regions will not provide relocation assistance for this position, and relocation would be at your expense. Exceptions to the geographic location requirement may be made for current Regions associates who work remotely.
Position Type
Full time
Compensation Details
Pay ranges are job specific and are provided as a point-of-market reference for compensation decisions. Other factors which directly impact pay for individual associates include: experience, skills, knowledge, contribution, job location and, most importantly, performance in the job role. As these factors vary by individuals, pay will also vary among individual associates within the same job.
The target information listed below is based on the Metropolitan Statistical Area Market Range for where the position is located and level of the position.
Job Range Target:
Minimum:
$109,995.20 USD
Median:
$135,680.00 USD
Incentive Pay Plans:
Opportunity to participate in the Long Term Incentive Plan.
Benefits Information
Regions offers a benefits package that is flexible, comprehensive and recognizes that "one size does not fit all" for benefits-eligible associates. ) Listed below is a synopsis of the benefits offered by Regions for informational purposes, which is not intended to be a complete summary of plan terms and conditions.
- Paid Vacation/Sick Time
- 401K with Company Match
- Medical, Dental and Vision Benefits
- Disability Benefits
- Health Savings Account
- Flexible Spending Account
- Life Insurance
- Parental Leave
- Employee Assistance Program
- Associate Volunteer Program
Please note, benefits and plans may be changed, amended, or terminated with respect to all or any class of associate at any time. To learn more about Regions' benefits, please click or copy the link below to your browser.
Location Details
Riverchase Operations Center
Location:
Hoover, Alabama
Bring Your Whole Self to Work
We have a passion for creating an inclusive environment that promotes and values the differences that make each of us stand out as unique individuals and help provide valuable perspective that makes us a better company and employer. More importantly, we recognize that creating a workplace where everyone, regardless of background, can do their best work and thrive is the right thing to do.
OFCCP Disclosure: Equal Opportunity Employer/Disabled/Veterans
Job applications at Regions are accepted electronically through our career site for a minimum of five business days from the date of posting. Job postings for higher-volume positions may remain active for longer than the minimum period due to business need and may be closed at any time thereafter at the discretion of the company.
-
Cybersecurity Engineer
1 week ago
Orlando, Florida, United States Oshkosh Corporation Full timeAbout the RoleOshkosh Corporation is seeking a highly skilled Cybersecurity Engineer to join our team. As a key member of our Cybersecurity team, you will play a critical role in protecting our organization's assets and information from cyber threats.Key ResponsibilitiesSupport the Cybersecurity mission by working with the business as a trusted advisor to...
-
Security Detection and Response Engineer
5 days ago
Orlando, Florida, United States ThreatLocker Full timeJob SummaryThe ThreatLocker team is seeking a highly skilled Security Detection and Response Engineer to join our cybersecurity efforts. As a key member of our security team, you will be responsible for identifying, investigating, and responding to cyber threats, vulnerabilities, and security incidents across our organization's systems and networks.Key...
-
Orlando, Florida, United States Red Lobster Full time**Job Summary**The Red Lobster Security SIEM and Automation Engineer will play a critical role in maintaining and enhancing our organization's security posture by managing the Security Information and Event Management (SIEM) system and developing automation workflows to streamline security operations. The ideal candidate will have a proactive approach to...
-
Cybersecurity SIEM and Automation Expert
7 days ago
Orlando, Florida, United States Red Lobster Full time**Job Summary**The Red Lobster Security SIEM and Automation Specialist will play a crucial role in maintaining and enhancing our organization's security posture by managing the Security Information and Event Management (SIEM) system and developing automation workflows to streamline security operations. The role requires a deep understanding of security...
-
Cybersecurity Systems Engineer III
2 weeks ago
Orlando, Florida, United States Cole Engineering Services Full timePosition Overview: As a Cybersecurity Systems Engineer III, you will deliver vital cybersecurity engineering support for Department of Defense (DoD) software application development initiatives. Your role will encompass defining cybersecurity requirements, enhancing processes, and conducting application security assessments.Key Responsibilities: Establish...
-
Information Security Engineer
2 weeks ago
Orlando, Florida, United States Hatalom Corporation Full timeJob Title: Cyber Information System Security Professional (CISSP) Overview: Hatalom Corporation is in search of a committed Certified Information Systems Security Professional (CISSP) to enhance our IT security division. The successful candidate will play a crucial role in ensuring the secure architecture, execution, and management of our cybersecurity...
-
Cybersecurity Engineer for DoD Systems
1 week ago
Orlando, Florida, United States Lockheed Martin Full timeAbout the RoleWe are seeking a highly skilled Cyber Systems Security Engineer to join our team at Lockheed Martin. As a Cyber Systems Security Engineer, you will be responsible for providing embedded System Security Engineering design and implementation in all aspects of System Security Engineering (SSE) process in development of Department of Defense (DoD)...
-
Senior Cybersecurity Solutions Architect
2 weeks ago
Orlando, Florida, United States Software Guidance and Assistance, Inc. Full timeCompany Overview:Software Guidance & Assistance, Inc. (SGA) is a distinguished provider of technology and resource solutions, dedicated to delivering personalized service and innovative strategies. We pride ourselves on our commitment to quality, integrity, and employee development, fostering a diverse workplace where every individual can thrive.Position...
-
Microsoft Security and Compliance Specialist
2 weeks ago
Orlando, Florida, United States Loyal Source Full timeWe are seeking committed and proficient Microsoft Security and Compliance Specialists who are enthusiastic about protecting extensive cloud environments. As a vital member of our expanding team, you will significantly contribute to strengthening our cybersecurity framework. We require individuals who are well-versed in the nuances of Microsoft Security and...
-
Senior Security Operations Engineer
2 weeks ago
Orlando, Florida, United States Arctic Wolf Co Full timeAre you ready to elevate your career in the dynamic realm of cybersecurity? At Arctic Wolf Co, recognized as a leader in security operations within a rapidly expanding industry, we are committed to delivering exceptional experiences for both our customers and employees. Our mission is straightforward: to eliminate Cyber Risk. We are in search of a Senior...
-
Cyber Systems Security Engineer
5 days ago
Orlando, Florida, United States Lockheed Martin Full timeAbout the RoleWe are seeking a highly skilled Cyber Systems Security Engineer to join our team at Lockheed Martin. As a Cyber Systems Security Engineer, you will be responsible for providing embedded system security engineering design and implementation in all aspects of system security engineering (SSE) process in development of Department of Defense (DoD)...
-
Mechanical Design Engineer
2 weeks ago
Orlando, Florida, United States Lockheed Martin Full timeJob SummaryWe are seeking a highly skilled Mechanical Design Engineer to join our team at Lockheed Martin. As a key member of our Advanced Threat Warning System (ATWS) program area, you will be responsible for designing precision mechanical and opto-mechanical prototype, production, and test hardware in a fast-paced, dynamic environment.Key...
-
Lead Cybersecurity Engineer
1 week ago
Orlando, Florida, United States Merge IT LLC Full timeJoin Our Team as a Lead Cybersecurity EngineerMerge IT LLC is seeking a skilled Lead Cybersecurity Engineer to enhance our client's security infrastructure. This role involves overseeing the implementation and management of advanced security solutions in a dynamic environment.Key Responsibilities:Serve as a subject matter expert for security technologies...
-
Lethality Engineer
2 weeks ago
Orlando, Florida, United States Lockheed Martin Full timeJob DescriptionJob Summary:We are seeking a highly skilled Lethality Engineer to join our team at Lockheed Martin. As a Lethality Engineer, you will be responsible for performing lethality-related engineering research, evaluation, and engineering to provide mechanical engineering support for multiple aspects associated with missile systems, warhead...
-
Cyber Systems Security Engineer
1 week ago
Orlando, Florida, United States Lockheed Martin Full timeAbout the RoleWe are seeking a highly skilled Cyber Systems Security Engineer to join our team at Lockheed Martin. As a Cyber Systems Security Engineer, you will be responsible for providing embedded System Security Engineering design and implementation in all aspects of System Security Engineering (SSE) process in development of Department of Defense (DoD)...
-
Cyber Systems Security Engineer
5 days ago
Orlando, Florida, United States Lockheed Martin Full timeAbout the RoleWe are seeking a highly skilled Cyber Systems Security Engineer to join our team at Lockheed Martin. As a Cyber Systems Security Engineer, you will be responsible for providing embedded system security engineering design and implementation in all aspects of system security engineering (SSE) process in development of Department of Defense (DoD)...
-
Lead Cybersecurity Engineer
2 weeks ago
Orlando, Florida, United States Merge IT Full timeOur esteemed client is seeking to onboard a Senior Security Engineer to enhance their cybersecurity framework. Below are the detailed responsibilities and qualifications for this pivotal role: Position Overview:This role involves the configuration, deployment, and ongoing management of advanced security solutions in a 24/7 operational environment. The...
-
Lead Reverse Engineer
6 days ago
Orlando, Florida, United States Command Post Technologies Full timeAbout the RoleWe are seeking a highly skilled and experienced Lead Reverse Engineer to join our team at Command Post Technologies, Inc. (CPT). As a key member of our engineering team, you will be responsible for providing technical leadership and expertise in the design and development of hardware and software sanitization solutions.Key...
-
Principal Security Solutions Engineer
2 weeks ago
Orlando, Florida, United States Merge IT Full timeOur esteemed client is seeking to onboard a Lead Cybersecurity Engineer. Below are the comprehensive details: Job Overview:- This role is a contract position with the potential for extension or permanent placement based on performance.- Immediate start required.- Onsite presence is necessary.- Background checks and drug screening are mandatory.- Compensation...
-
Security Analyst
2 months ago
Orlando, Florida, United States ThreatLocker Full timeCOMPANY OVERVIEWThreatLocker is a leader in endpoint protection technologies, providing enterprise-level cybersecurity tools to improve the security of servers and endpoints. The ThreatLocker platform with Application Allowlisting, RingfencingTM, Storage Control, Elevation Control, Endpoint Network Control, Configuration Management, and Operational Alert...