Threat Detection Analyst Lead
6 days ago
Triumph Financial
The Investor Relations website contains information about Triumph Financial, Inc.'s business for stockholders, potential investors, and financial analysts.
View company page
TriumphX, a member of the Triumph Financial portfolio of brands, provides a concentration of technology and project management resources the members of the Triumph Financial portfolio of brands – TriumphPay, Triumph and TBK Bank – via a shared service model. We’re looking for top tech and project management talent to analyze, recommend and build strategic solutions that support Triumph Financial’s mission to become a world-class, market-leading financial and technology company.
This is a pipeline requisition and not a job opening. We are in the process of pipelining for anticipated future job openings.
Join TriumphX
TriumphX, a member of the Triumph Financial portfolio of brands, provides a concentration of technology and project management resources the members of the Triumph Financial portfolio of brands – TriumphPay, Triumph and TBK Bank – via a shared service model. We’re looking for top tech and project management talent to analyze, recommend and build strategic solutions that support Triumph Financial’s mission to become a world-class, market-leading financial and technology company.
This is a pipeline requisition and not a job opening. We are in the process of pipelining for anticipated future job openings. As a Threat and Detection Analyst Lead, you will work with a team to help protect network boundaries, keep computer systems and network devices hardened against attacks and provide security services to protect highly sensitive data like passwords and customer information. You will design, deploy, configure, and manage the Security information and event management, (SIEM ) to ensure effective and efficient threat detection and incident response capabilities.
You will collaborate with internal stakeholders to identify and define SIEM use cases, threat detection rules, alerts, and correlation rules based on industry standards and best practices. And you will monitor and analyze security events and logs to identify potential security incidents, intrusions, and vulnerabilities.
A Day in the Life:
Investigate and respond to security alerts and initiate incident response procedures as required.
Conduct advanced log analysis and perform forensic investigations to identify indicators of compromise (IOCs) and patterns of malicious activity.
Develop and maintain incident response playbooks and procedures, and participate in incident response activities as needed.
Conduct periodic reviews and assessments of SIEM configurations, rules, and processes to identify areas for improvement and optimization.
Stay up to date with the latest industry trends, threat intelligence, and emerging technologies in the field of SIEM and threat detection.
Provide guidance, training, and knowledge transfer to junior team members on detection engineering and SIEM best practices.
Protects the confidentiality, integrity and availability of critical data, systems, and services
Safeguard information system assets by identifying and solving potential and actual security and risk concerns
Protects systems by defining role and attribute-based access privileges, control structures, and resources
Categorizes risks and threats by identifying abnormalities and reporting violations
Implements security improvements by assessing situation; evaluating trends; anticipating requirements
Determines security violations and inefficiencies by conducting periodic audits
Monitors, investigates, and responds to security alerts
Upgrades cyber security program and capabilities by implementing and maintaining security controls
Prepares performance and stability reports to communicate system status to users and management
Performs other duties as required
To succeed in this role, we hope you bring:
Bachelor’s degree in Information Security, Information Systems, Computer Science, or equivalent work experience
SANS certification Preferred (GSEC, GCIH, GCFA, GDAT, GCDA)
5+ years experience in threat detection or threat hunting
Certified Information Systems Security Professional (CISSP) Preferred
Cloud analytic security tools
CIS 2.0 security and NIST 800-53 framework controls
FFIEC Cyber Assessment Tool (CAT)
SOC I, SOX, GLBA, and FFIEC regulatory compliance
Experience developing SIEM correlation rules.
Experience creating EDR detection and exclusion rules.
Familiarity with SOAR is a plus.
Strong self-motivation and time management skills required.
Excellent written and verbal communication skills required.
Experience with Active Directory/Entra ID
Experience with offensive security frameworks and tooling
Experience with network security controls (e.g., firewalls, proxy, IPS/IDS)
Understanding of Authentication and Authorization protocols
Some Additional Skills and Abilities that would be ideal to have:
Ability to function with limited supervision and provides support to junior associates
Strong interpersonal skills.
Quality written and oral communication, and presentation skills.
Critical thinking and problem-solving skills.
Attention to detail.
Commitment to operational excellence and continuous process improvement.
Willingness to expand and apply security knowledge, skills, and abilities to department initiatives.
Strategic project management and oversight of milestones and deliverables.
Threat management and response
System administration
Network security concepts
Information security policy
Firewall administration
Network protocols
Intrusion Detection and Prevention systems (IDS/IPS)
Data Loss Prevention (DLP)
Endpoint Detection and Response (EDR)
Mobile Device Management (MDM)
Identity Access Management and Privileged Access Management (IAM and PAM)
Role and attribute-based access controls
(RBAC and ABAC)
TLS and certificate management
Log analysis
URL filtering
Patch Management
Security Information and Event Monitoring Tools (SIEM)
Vulnerability scanners
E-mail filtering, phishing, SMTP header analysis
Wireless technology and security
Work Environment:
The work environment characteristics described here maybe encountered while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
Moderate noise (i.e. business office with computers, phone, and printers, light traffic).
Ability to work in a confined area.
Ability to sit at a computer terminal for an extended period of time. Occasional stooping or kneeling may be necessary.
While performing the duties of this job, the employee is regularly required to stand, sit, talk, hear and use hands and fingers to operate a computer keyboard and telephone.
Specific vision abilities are required by this job due to computer work.
Light to moderate lifting is required.
Regular, predictable attendance is required.
#LI-JC1
We offer Medical, Dental, Vision, Paid Time Off, 401k and much more.
Go on. Do it. Apply Today
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
#J-18808-Ljbffr
-
Security Engineer
4 weeks ago
Greendale, United States META Full timeSecurity Engineer - Detect & Respond (University Grad) Menlo Park, CA | Washington, DC | New York City Meta Security is looking for a Security Engineer with experience in threat modeling, TTP identification, and detection engineering. Youll work alongside Software Engineers and Offensive Security Engineers to identify critical assets, assess the top risks,...
-
Lead Product Manager
2 weeks ago
Greendale, United States OpenText Full timeLead Product Manager (Network Detection and Response solution) OpenText OpenText offers cloud-native solutions in an integrated and flexible Information Management platform to enable intelligent, connected and secure organizations. View company page OPENTEXT OpenText is a global leader in information management, where innovation, creativity, and...
-
Network Security Detection Engineer
4 weeks ago
Greendale, United States Meta Inc Full timeMeta Platforms, Inc. (Meta), formerly known as Facebook Inc., builds technologies that help people connect, find communities, and grow businesses. When Facebook launched in 2004, it changed the way people connect. Apps and services like Messenger, Instagram, and WhatsApp further empowered billions around the world. Now, Meta is moving beyond 2D screens...
-
Lead Cybersecurity Engineer
1 week ago
Greendale, Wisconsin, United States NTT DATA Full timeNTT DATANTT DATAhelps clients transform through consulting, industry solutions, business process services, IT modernization and managed services. View company page NTT DATAServices strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization,...
-
Lead GRC Analyst
3 weeks ago
Greendale, United States Justworks Full timeJustworks, Inc. Run your small business with Justworks’ simple PEO & payroll solutions. From HR software & compliance to company benefits, get expert support now! View company page At Justworks, you’ll enjoy a welcoming and casual environment, great benefits, wellness program offerings, company retreats, and the ability to interact with and learn from...
-
Security Engineer
1 week ago
Greendale, Wisconsin, United States Meta Inc Full timeSecurity Engineer - Detect & Respond (University Grad) Menlo Park, CA | Washington, DC | New York City Meta Security is looking for a Security Engineer with experience in threat modeling, TTP identification, and detection engineering. Youll work alongside Software Engineers and Offensive Security Engineers to identify critical assets, assess the top risks,...
-
Security Engineer, Expert
4 weeks ago
Greendale, United States Pacific Gas And Electric Company Full timePacific Gas and Electric Company Pacific Gas and Electric Company (PG&E) provides natural gas and electric service to residential and business customers in northern and central California. View company page Information Systems Technology Services is a unified organization comprised of various departments which collaborate effectively to deliver high quality...
-
SOC Analyst
2 weeks ago
Greendale, Wisconsin, United States MartinFed Full timeFounded in 2007 in Huntsville, AL, MartinFed provides the U.S. government with customer-focused, performance-based solutions using technology and an empowered workforce as an engine to drive its customers' missions. Our goal is to attract the best and brightest within their field.We invest in our people because they are our greatest asset. They cultivate our...
-
Executive Director
2 weeks ago
Greendale, United States MGM Resorts International Full timeOur Company has one exciting mission: To entertain the human race and provide an unforgettable escape. Delivering excellence for our guests, and contributing to building and sustaining our communities, requires collaboration from diverse teams of world-class talent. Our iconic MGM Resorts brands offer a wide variety of exciting career opportunities, each...
-
Security Engineer, Investigations
3 weeks ago
Greendale, United States Meta Inc Full timeThe Integrity, Investigations, and Intelligence (i3) teams at Meta are dedicated to protecting the users of our family of applications (e.g. Facebook, Instagram, WhatsApp, Oculus) from a multitude of threats to include child safety and youth issues. We are seeking a security engineer to investigate sophisticated threat actors, advance investigative methods,...
-
Information Systems Security Manager
4 weeks ago
Greendale, United States Redwood Materials Full timeRedwood Materials If you love sustainability, chemistry, materials science, advanced equipment design, automation, and seeing your hard work pay off, you will enjoy building your career here. View company page About Redwood Materials Redwood Materials was founded in 2017 to create a circular supply chain for electric vehicles and clean energy products,...
-
Director of Security
7 days ago
Greendale, United States FalconX Full timeFalconX FalconX is a digital assets prime brokerage with trading, financing, & custody for leading financial institutions. Deepest global liquidity & bespoke trade execution. View company page FalconX is the most advanced digital asset platform for institutions. We provide trade execution, credit & treasury management, prime offering and market making...
-
Cybersecurity Engineer
2 weeks ago
Greendale, Wisconsin, United States Warner Bros. Discovery Full timeWarner Bros. Discovery Warner Bros. Discovery offers exciting and rewarding career opportunities across a multitude of disciplines. Join us as we step into the next chapter. View company page Every great story has a new beginning, and yours starts here.Welcome to Warner Bros. Discovery... the stuff dreams are made of.Who We Are...When we say, "the stuff...
-
AVP, Information Security Engineer
3 weeks ago
Greendale, United States Forbright Bank Full timeForbright Bank Join Forbright in building a more sustainable future. We’re a full-service bank helping accelerate the transition to a clean energy and sustainable economy. View company page COMPANY DESCRIPTION:Forbright is a nationwide full-service bank and lender helping accelerate the transition to a sustainable and low-carbon economy. Headquartered in...
-
Security Engineer
4 weeks ago
Greendale, United States DV Trading Full timeFounded more than 15 years ago and headquartered in Chicago, the DV Group of financial services firms has grown to more than 350 people operating throughout North America and in Europe. Since spinning out of a large brokerage firm in 2016, DV Trading has rapidly scaled as an independent proprietary trading firm utilizing its own capital, trading strategies,...
-
Director IT Cybersecurity Engineering
7 days ago
Greendale, United States Endo Full timeWe want the best and brightest people at Endo to help us achieve our mission to develop and deliver life-enhancing products through focused execution. Our nearly 3,000 global team members understand the important role we play in delivering healthcare and are dedicated to supporting each other as we work to bring the best treatments forward. Our shared values...
-
Principal Embedded Security Engineer
1 week ago
Greendale, Wisconsin, United States Bose Full timeBose Corporation Experience the latest in sound innovation. Shop Bose headphones, earbuds, speakers, and soundbars, supported by premium customer service. Sound is Power. View company page You know the moment. Its the first notes of that song you love, the intro to your favorite movie, or simply the sound of someone you love saying hello. Its in these...
-
Greendale, United States Avertium Full timeDirector, Security Operations | Cyber Fusion Center Avertium Avertium is a cyber fusion company with a programmatic approach to measurable cyber maturity outcomes. View company page Avertium is themanaged security and consulting provider that companies turn to when they want more than check-the-box cybersecurity. In today’s threat landscape, your...
-
Greendale, United States Avertium Full timeDirector, Security Operations | Cyber Fusion Center Avertium Avertium is a cyber fusion company with a programmatic approach to measurable cyber maturity outcomes. View company page Avertium is themanaged security and consulting provider that companies turn to when they want more than check-the-box cybersecurity. In today’s threat landscape, your...
-
Security Engineer Investigator, Cybercrime
5 days ago
Greendale, United States META Full timeSecurity Engineer Investigator, Cybercrime Meta Platforms, Inc. (Meta), formerly known as Facebook Inc., builds technologies that help people connect, find communities, and grow businesses. When Facebook launched in 2004, it changed the way people connect. Apps and services like Messenger, Instagram, and WhatsApp further empowered billions around the world....