Career Search

Cybersecurity Infrastructure Defense Analyst III - 3DKWC in Amherst, NY at M&T Bank

Date Posted: 9/26/2018

Job Snapshot

Job Description

M&T Bank

Cybersecurity Infrastructure Defense Analyst III

Amherst, NY

 

Function:
Supports and assists in providing designs, information systems solutions and technical direction in the development of new or existing programs to solve basic to complex problems or enhancements. Acts in coordination with principal application designers for major modifications effectively using analytical skills, technical skills, available technology and tools in the evaluation of client requirements and processes. Provides solutions that are technologically sound. May perform day to day support activities and special projects.
Responsibilities:
Characterize and analyze network traffic to identify anomalous activity and potential threats to network resources.
Support development, implementation, and execution of various operational risk and compliance related initiatives, systems, and processes.
Assist in providing centralized governance, compliance, and risk management expertise to M&T Bank Corporation business lines, support functions and managers concerning information security and privacy regulatory compliance and/or risk management and Information Technology and Bank Operations on all applicable information security and privacy regulations concerning financial institutions.
With collaboration from senior team members, provides guidance, testing plans, and/or survey documents to be used by all business units to ensure conformance to established compliance, regulatory, best practice, and risk management programs.
Identifies potential conformance issues, reviews with supervisor or senior professionals, and provides to functional areas requiring improvements.
Responsible for extensive contact with operations, technology, and business unit personnel in a training and auditing capacity.
Responsible for supporting functions, systems, and processes critical to the corporation's ability to meet regulatory, legal, and risk mitigation requirements and to reduce the risk of fine/penalties resulting from non-compliance that would impact profitability.
Interacts with various internal and external audit/regulatory examination personnel.
May assist with replies to questionnaires sent to the bank and follows up on questions or comments to external agencies when required.
Works under general supervision of the Team Leader and/or team specialist(s) while being afforded opportunity to exercise independent judgment and discretion and assisting junior team members.
Responsible for regular interaction with non-management, middle management, certain senior management, and business units and partners.
May interact and coordinate initiatives with outside teams and external professional organizations supporting areas of expertise.
Assists with documenting and communicating proposed new approaches, methods, technologies, or breakthroughs in area of expertise.
Represents information security governance, compliance, and risk management function on committees, ad-hoc projects, etc. as assigned.
Capable of working independently on all high-level systems analysis and technical phases of development.
Understand and adhere to the Company’s risk and regulatory standards, policies and controls in accordance with the Company’s Risk Appetite. Identify risk-related issues needing escalation to management.
Promote an environment that supports diversity and reflects the M&T Bank brand
Maintain M&T internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators as applicable.
Complete other related duties as assigned.
Required Qualifications:
Associate’s degree in an applicable discipline, and 1 year relevant work experience, or in lieu of a degree, 3 years’ relevant work experience in 2 or more of the following Cybersecurity domains: a. Security and Risk Management; b. Asset Security; c. Security Engineering; d. Communication and Network Security; e. Identity and Access Management; f. Security Testing; and, g. Security Operations
Understanding of the System Development Life Cycle (SDLC), networking concepts and protocols, and network security methodologies
Detailed knowledge of application development support software and hardware platforms
Detailed technical knowledge of mainframe, distributed computing environments, and network security architecture concepts including topology, protocols, components, and principles
Prior experience in performing complex problem analysis and problem resolution
Prior experience with quickly learning new technical skills and supporting systems, tools, and processes
Detailed technical knowledge of Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS), attack methodologies and traffic flows for threats and vulnerabilities
Detailed technical knowledge of Cybersecurity and privacy principles and organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation)
Preferred Qualifications:
Bachelor degree in an applicable discipline, or in lieu of a degree, 4 years’ relevant work experience in 2 or more of the following Cybersecurity domains: a. Security and Risk Management; b. Asset Security; c. Security Engineering; d. Communication and Network Security; e. Identity and Access Management; f. Security Testing; and, g. Security Operations
Knowledge of M&T's application development support software and hardware platforms and capable of researching and recommending application development support software and hardware platforms through an understanding of client area function and deliverable requirements for current and future-state planning
Technical experience with mainframe, virtual, and/or distributed computing environments
Experience in performing complex problem analysis and problem resolution
A Cybersecurity domain-related industry-recognized certification or platform-specialty certification

 

We encourage candidates with relevant military experience to apply.

 

About M&T

At M&T, we strive to be the best place our employees ever work, the best bank our customers ever do business with and the best investment our shareholders ever make. So when looking to advance your career, look to M&T.  As a top 20 US bank holding company and one of the best performing regional banks in the country, we offer a wide range of performance based career development opportunities for talented professionals. And through our longstanding tradition of careful, conservative and consistent management and a strong commitment to the communities we serve, we continue to grow with a focus on the future.

M&T Bank Corporation is an Equal Opportunity/Affirmative Action Employer. M&T Bank Corporation does not sponsor individuals for the purpose of obtaining H-1 Visas. M&T Bank Corporation has policies and procedures in place to promote a drug free workplace.