Cybersecurity Engineer Insider Risk and Forensic Analysis

Zions Bancorporation is transforming what it means to work for a financial institution. With a commitment to technology and innovation we have been providing our community clients and colleagues with the best experience possible for over 150 years. Help us transform our workforce of the future today.

We are currently looking for a Cybersecurity Engineer to join the Zions Bancorporation. As part of the Enterprise Information Security team this Cybersecurity Engineer will have the opportunity to act as a key contributor in the CSOCs growth and evolution actively improving our insider risk DLP and digital forensics capabilities.

Responsibilities:

Serve as a subject matter expert in various enterprise cybersecurity tools and processes including SIEM EDR and forensics platforms.

Develop and implement monitoring use cases cyber insider risk procedures playbooks and other technical documentation.

Collaborate with Enterprise Cybersecurity Architecture and technology teams on monitoring and alerting infrastructure processes and tools.

Train mentor and guide other team members on cyber incident response practices and tooling.

Respond to insider risk incidents serving as an escalation point for high-priority or highly complex cases.

Handle sensitive employee information and internal investigations.

Perform digital forensic collections and investigations for the organization.

Monitor and provide tuning feedback for our cybersecurity toolset.

Other duties as assigned.

Requirements:

5 plus years of progressive technical experience in one or more technical cybersecurity domains with a preferred focus on digital forensics or equivalent education.

Experience with digital forensic evidence collection and investigations.

Experience with insider risk investigations.

Experience with resolving DLP incidents.

Hands-on technical experience with one or more industry-standard digital forensic products.

Hands-on technical experience with one or more commercial SIEM products which should include familiarity with defining and writing alert conditions/use cases in addition to daily use for investigating incidents.

Working knowledge of common attack vectors different classes of attacks (e.g. passive active insider close-in distributed etc.) and general attack stages (e.g. foot printing and scanning enumeration gaining access escalation or privileges maintaining access network exploitation covering tracks etc.).

Strongly Preferred:

Effective interpersonal and written communication skills including the ability to produce technical documentation.

Experience with Financial Institution processes regulations and technologies is highly preferred.

Technical familiarity with networking concepts architectures and tools including network traffic analysis proxies functionality of network switches load balancers routers and firewalls.

Knowledge of system administration concepts for Windows and UNIX/Linux operating systems.

Development experience with scripting languages such as Python JavaScript Powershell Bash etc. is a plus.

Experience with threat hunting methods and approaches is a plus.

Technical certifications such as GCFE GCFA CCCE CFCE or 13Cubed certifications are a plus.

Location:

This position has a hybrid work from home schedule with a minimum of three days per week in the office at the new Zions Technology Center in Midvale UT

The Zions Technology Center is a 400000-square-foot technology campus in Midvale Utah. Located on the former Sharon Steel Mill superfund site the sustainably built campus is the companys primary technology and operations center. This modern and environmentally friendly technology center enables Zions to compete for the best technology talent in the state while providing team members with an exceptional work environment with features such as:

• Electric vehicle charging stations and close proximity to Historic Gardner Village UTA TRAX station.
• Access to outdoor recreation parks trails shareable bikes and locker rooms.
• Large modern cafe with a healthy and diverse menu.
• Healthy indoor environment with ample natural light and fresh air.
• LEED-certified sustainable building that features include the use of low VOC-emitting construction materials.

Benefits:

• Medical Dental and Vision Insurance - START DAY ONE!

• Life and Disability Insurance Paid Parental Leave and Adoption Assistance

• Health Savings (HSA) Flexible Spending (FSA) and dependent care accounts

• Paid Training Paid Time Off (PTO) and 11 Paid Federal Holidays

• 401(k) plan with company match Profit Sharing competitive compensation in line with work experience

• Mental health benefits including coaching and therapy sessions

• Tuition Reimbursement for qualifying employees

• Employee Ambassador preferred banking products

• Employees may at the companys discretion be eligible to receive a cash bonus award

#dice