Bank of Hawaii Corporation is a bank holding company, and they are seeking an IT Security Operations Analyst to manage day-to-day information security operations activities. The role involves monitoring IT security controls, responding to security incidents, and implementing security updates while ensuring compliance with corporate policies.
Monitors Information Technology (IT) security controls (Data Loss Prevention, IDS/IPS, Endpoint Protection, Email Security, SIEM)
Assists in monitoring syslog and security alerts to help identify unusual activity or potential threats. Supports investigations by gathering relevant log data and escalating as needed. (Senior) Monitors and analyzes syslog and security system alerts to detect anomalies, identify potential threats, and assess security incidents. Proactively investigates suspicious activity and escalates issues in accordance with established protocols.
Monitors system security threat levels and develops appropriate alerting and reporting processes. Acts as an escalation point for security incidents. Initiates and executes incidence response procedures for information security events.
Monitors external sources of IT security and threat intelligence information to gain the latest insight into current threats. Monitors trends and new developments in IT security.
Logs and tracks security issues, responds to questions/support requests, and meets established service levels. Reports information security metrics and data to management. Provides detailed and thorough written analysis results for security incidents/events to appropriate parties.
Assists with containment of threats and remediation of environment during or after an incident.
Administers and supports IT security systems, including, but not limited to, system administration, configuration management, and vulnerability management.
Implements security updates and enhancements in accordance with corporate policies and IT standards.
Assists in security system updates, and ensures processes are in place so similar updates are applied to underlying infrastructure and associated interfaces.
Maintains documentation of security procedures, security system configuration standards, maintenance, and upgrades. Maintains knowledge of assigned products and services.
Follows risk management guidelines and procedures and ensures compliance with applicable BOH policies.
Implements and maintains security systems as specified by a given set of requirements.
Ensures systems configuration changes produced individually or by vendors adheres to the Bank’s standards and applicable business requirements.
Develops and maintains documentation of all technical development and subsequent revisions.
Maintains and enhances third-party software. (Senior) Supports the development and implementation of system configurations under the guidance of the Manager and CISO to help strengthen the organization’s security stack and align with established security policies and goals.
Plans and executes security application and systems installations and upgrades, including security and program configuration and maintenance for business applications and databases in production, development, test, and disaster recovery environments.
Coordinates with and maintains highly collaborative relationships with vendors.
Participates in team events and projects. (Senior) Participates in and supports team members with events, projects and information security initiatives.
Contributes to Information Security Operations Center projects and initiatives.
Educates users on security processes. (Senior) Acts as an IT security consultant.
Takes ownership of learning technical aspects of the security tools and procedures through cross training and research
Takes initiative to become educated and knowledgeable on security topics.
Develops and communicates career goals to management, works with management to develop plan for achieving career objectives.
(Senior) Provides cross training with other team members to maintain effective back-up. Participates in the evaluation and implementation of new security technology. Participates in interviews and selection of prospective new staff members.
Qualification
Required
Bachelor’s degree in computer science or management information systems from an accredited institution or equivalent work experience
Minimum 2 years of related experience in information technology for Analyst position
Minimum 4 years of related experience in information technology with 1 year in a security-based role for Senior Analyst position
Demonstrated proficiency and expertise with personal computers in a networked environment and with Microsoft Office applications or similar software
Knowledge of or ability to use Bank software and systems
Microsoft Active Directory and Domain Administration
Solid working knowledge and experience in Windows systems administration, systems monitoring, troubleshooting, installing, and configuring Windows, patching and securing the Windows Operating System
Solid working knowledge in using syslog and log management tools for system diagnostics, and troubleshooting
