|
Welcome to PeoplesBank! We are the largest mutually chartered bank in Western Mass and Northern Connecticut, we are proud to lead the way in green values, sustainable energy financing, and charitable giving. Our commitment to operating in the best interest of our customers is matched by our dedication to fostering an inclusive and engaging work environment. We offer excellent compensation, workplace flexibility, and a competitive benefits package to our associates. Our award-winning culture has earned us recognition as the Best Place to Work and Best Local Bank. Join our team of dedicated and innovative individuals and be a part of our dynamic, successful organization. Let's make a difference together! Summary: Join a forward-thinking technology and security team where you'll play a critical role in safeguarding the bank's systems, data, and digital environment. As a Senior IT Security Administrator, you'll lead efforts to strengthen cybersecurity defenses, monitor emerging threats, implement advanced security solutions, and help protect both cloud and on-premises environments. This is an exciting opportunity for a security professional who enjoys solving complex challenges, working with cutting-edge technologies, influencing security strategy, and making a direct impact on the organization's resilience and success. Essential Duties and Responsibilities:
- Recommend, plan, and implement security measures to protect bank systems, per direction of AVP - Security Officer and under the guidance of the Risk Oversight Group and the bank's Information Security Risk Program.
- Oversight of day-to-day firewall, anti-malware, Microsoft Purview and Security Admin Centers, MFA, and secure email gateway monitoring and updating. Works with the bank's associated vendors as needed.
- Updates and makes recommendations to computer security policies and procedures which relate to the internal and external integrity of the Banks systems. Produce and maintain documentation and standard operational procedures.
- Provides guidance, training, set-up, and implementation of the bank's IT security systems. Follows and implements best practice standards for IT security (e.g., NIST, FS-ISAC, etc.)
- Oversight of patch management process. Works with the Security team, Network Administrators and Helpdesk to review and apply/coordinate applicable software patches and upgrades to bank systems. Documents applied security patches, including the criticality and patch purpose. Review and respond to security events, documents, and Works with Risk Oversight Group to provide guidance on incident analysis, root cause analysis, and problem resolution.
- Works with AVP - Security Officer to review IT security issues and incidents.
- Reviews the Bank's computer and network security. Fully documents and reviews any concerns to management. Works with Risk Oversight Group to review user access and permissions as needed.
- Manages security system logs and alerts via a SIEM and/or other tools; works with Risk Oversight Group, Security Team, and vendor to ensure logs and alerts have been investigated, cleared, and addressed appropriately.
- Works with Security team, Risk Oversight Group, and Network team in developing and updating business continuity and disaster recovery protocols.
- Assist Risk Oversight Group with IT security components of the bank's disaster recovery testing and documentation.
- Collaborates with Security Team and Risk Oversight Group to identify and plan for data security initiatives and implementation of solutions on the Bank's network and systems.
- Stays current on emerging threats and vulnerabilities, proactively safeguarding bank systems from potential attacks. Provides informed recommendations based on evolving industry trends and best practices.
- Other related duties as requested.
Education and Experience:
- Bachelor's degree or equivalent combination of education and experience PLUS
- Four (4) to Eight (8) years of relevant experience
- Required a thorough knowledge of the security field
Skills Required:
- Must have excellent customer service skills.
- Excellent verbal and written communication skills.
- Organized with attention to detail.
- Able to develop and understand technical documents.
- Strong critical thinking skills.
- Demonstrated problem-solving and analytical skills.
- Thorough understanding of computer-related security systems including firewalls, email gateways, encryption, and password protection and authentication.
- Strong working knowledge of Active Directory and group policy security schemes.
- Experience with application/system IT Security assessments including internal/external penetration testing.
- Thorough understanding of vulnerability and patch management.
- Proficient with a broad array of security software applications and tools.
- Working knowledge of hardening host's and guest operating systems in a virtualized environment
- Working knowledge of Microsoft 365, Azure, and Purview.
Certifications / Licenses:
- Security+ or equivalent certification required
Computer / Technical Skills:
- Knowledge of Information System Security
- Firewalls
- SIEM
- Secure Email Gateway
- EDR System
- Microsoft Admin Portals
- Intrusion detection / protections
- Related vulnerability assessment tools
Work Environment and Physical Demands: The working conditions and physical demands described here are representative of those that must be met by an associate to successfully perform the essential functions of this job. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions. While performing the duties of this job, the associate is regularly required to sit, use hands to sort, write and keyboard, and to listen and speak. The associate is frequently required to reach, walk, stoop, crouch. The associate is occasionally required to stand, lift, bend, drive and travel.
|