Lead CyberSecurity Analyst, National Incident Response Team - Federal Reserve (East Rutherford, NJ)
At the Federal Reserve Bank of New York, the work we do is consequential and challenging. Our environment encourages growth and diversity. Our employees flourish in a team-oriented atmosphere and are dedicated to the important mission of the New York Fed.
The National Incident Response Team (NIRT), a national service provider for the Federal Reserve System, delivers effective and efficient national intrusion detection, incident response, security intelligence, threat assessment, and vulnerability assessment services for the Federal Reserve System. The mission of the National Incident Response Team is to play a leading role in the Federal Reserve System's efforts to protect its information systems against unauthorized use. What we do:
The mission of NIRT's Incident Detection and Analysis team is to be an agile team that effectively detects, analyses and investigates information security incidents for its customers. The team is focused on ensuring the security and integrity of critical enterprise systems and environments through the use of various analytical data mining techniques and automated tactics. As a detection team lead, you are the first-line leadership who influences analysts by providing technical direction and motivation. You will aggressively and consistently execute core detection responsibilities and remain close to day-to-day operations in order to identify and address problems. You will provide technical guidance to IDA staff and serve as a detection subject matter expert for the NIRT. The position is also responsible for the effectiveness of detection techniques, processes, and the ongoing evolution of those processes. This individual in this role will be expected to spend about 80% of her or his time on technical activities, and the remaining time on providing guidance and mentoring to the team.
Qualifications: What we are looking for:
- Ability to work weekends and holidays on a rotational basis with the rest of the team to ensure 24x7 coverage of Threat Analysis Center (TAC) – Normal hours would be 7a-3p ET.
- The position is expected to remain in the IDA staff weekend/holiday rotation, and handle the IDA staff responsibilities during those shifts.
- Assess unforeseen threat developments and recommends changes in security direction and approach.
- Actively supports career development of staff, providing regular and ongoing feedback on performance, including guidance, direction, and advice.
- Leads investigations through data analysis and information gathering.
- Produces reports and presentations to illustrate detection and response activities and trends.
- Performs pro-active hunting for intelligence related to malicious activity that can impact the FRS network and digital assets.
- Provides input to performance assessments.
- Participates and provides input for Service Level Agreements (SLAs) and ensures all appropriate SLAs are met.
- Ensures work, information, ideas, and technology flow freely across teams.
- Coordinates staff efforts that ensure maintenance and effectiveness of ATAs and other SIEM dashboards designed to identify potential suspicious activity, including timely participation and feedback in staff discussion forums designed for this purpose.
- Identifies gaps/opportunities for enhancements to workflows and processes for enhancing the detection and response lifecycle.
- Aids the incident commander for high severity security incidents.
The Federal Reserve Bank of New York is committed to a diverse workforce and to providing equal employment opportunity to all persons without regard to race, color, religion, national origin, sex, sexual orientation, gender identity, age, genetic information, disability, or military service. Why the Fed:
- Bachelor’s degree in Computer Science, Information Systems, Computer Engineering, Cybersecurity, Systems Analysis or a domain related field or an equivalent combination of education and work experience.
- Ability to obtain and maintain National Security Clearance, including US Citizenship.
- 7 years of combined IT and security work experience.
- Strong security platform and technology capabilities; SIEM utilization skills with the ability to review and analyze security events from various monitoring and logging sources to identify and/or confirm suspicious activity.
- Drives data analytics usage across the System to define quantifiable categories and data points.
- In-depth knowledge of, and experience with, cloud computing technology.
- In-depth knowledge of, and experience with, TCP/IP protocol and network/packet analysis.
- Extensive knowledge of current security threats, techniques, and landscape, as well as a dedicated and self-driven desire to research current information security landscape.
- In-depth conceptual and practical understanding of IT Infrastructure designs, technologies, products, and services. This should include knowledge of networking protocols, firewall functionality, host and network intrusion detection systems, operating systems, databases, encryption and other technologies.
- Perform acquisition and basic to moderate static/behavioral analysis of malware specimens to determine the effects on internal systems at both the host and network level.
- Working knowledge of Microsoft Office products, including Visio and Project.
- At least five years of hands on experience performing incident detection and analysis in a 24x7 operational environment.
- Offensive Security Certified Professional (OSCP) or ability to actively work towards obtaining certification.
- Proven ability to collaborate, build relationships and influence individuals at all levels in a matrix-management environment
Working at the Federal Reserve Bank of New York positions you at the center of the financial world with a unique perspective on national and international markets and economies. You'll work in an environment with a diverse group of talented professionals to foster and support the safety, soundness, and vitality of our economic and financial systems. It's a challenge that demands the skills of a financial services professional and the intellectual curiosity of an academic—all combined with a passion for public service.
The Federal Reserve Bank of New York is committed to a work environment that respects and fully values the strengths and differences of its people. Working at the New York Fed provides talented professionals the chance to grow their skills at an institution that has served a critical role in the financial system of the United States and the world for over a century. An important component of the Bank’s diversity effort is our partnership with several professional non-profit organizations, including INROADS, JumpStart Advisory Group, NBDC Emerging Leaders, Seizing Every Opportunity, National Black MBA, Out for Undergrad, Prospanica and Reaching Out MBA.