Overview
Are you looking to take your career from good to great? As an employee of PenFed, every day is an opportunity to thrive, and be part of a team working to ensure our organization is providing world class service to our members, employees, and our communities. We exist to help our members realize their full potential, educate and encourage their dreams, and make every effort to follow our mission and help our members -do better.- Joining PenFed is more than being an employee; it's about being a part of the PenFed family.
PenFed is hiring an Engineer, Insider Risk/Threat Intelligence in either locations; San Antonio, TX, Irving, TX, Tysons, VA or Omaha, Nebraska. The purpose of this role is to perform risk triage, analyze, and assess alerts and document and report findings through a case management system. This position will continually review, deploy, maintain, and tune countermeasures in response to new or changing insider threat tactics, techniques, and procedures (TTPs). This position will also provide information to the ASIC and IT Security Management fulfilling all analysis, trending and reporting requirements.
The role of Insider Threat Intelligence (InT) Team is to get information to support the decisions, policies and focus of the Advanced Security and Intelligence Center (ASIC) team as well as the PenFed Security Management personnel.
Responsibilities
Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. This is not intended to be an all-inclusive list of job duties and the position will perform other duties as assigned.
Triage data of anomalous events collected by data analytics tools and sources to decipher underlying trends or uncover anomalies and discern obscure patterns and attributes.
Elevate events of concern and produce leads that document issues on computer misuse, various violations of policies, counterintelligence concerns, foreign influence, financial stressors, threats to self or others, and other insider threat concerns.
Provide analytic case support to investigations, and administrative or security inquiries.
Document all referral activities in written products and reports.
Assist in the proactive identification of new collection methodologies for the Program.
Execute and maintain standard operating procedures (SOPs) for the InTP.
Document and report findings to company management.
Brief team members on emerging threats and indicators.
Collaborate with external and internal Subject matter experts, InTP forums and Functional teams to develop innovative detection capabilities to further enhance proactive and reactive team process.
Support the organization's Insider Threat efforts to ensure all aspects of Insider Threat and evaluation programs are in compliance with company and regulatory policies, directives, instructions and procedures.
Maintain and manage the InTP technology suite of tools, report findings back to the Insider Threat program manager and assist Credit Union leadership with conducting investigations for reported incidents.
Responsible for monitoring, auditing, and analyzing information systems for suspicious network events, intrusions and insider threats, and assist with taking appropriate mitigating actions.
This role is responsible for ensuring business continuity.
Qualifications
Equivalent combination of education and experience is considered.
Bachelor's Degree in information security / technology or related field, or equivalent combination of education & experience in information security in a large, highly regulated enterprise.
Minimum of five (5) years of work experience the Cyber Security or Intelligence field.
Minimum of two (2) years prior Incident Response/ Analyst or Security Operations Center team experience.
Knowledge of security response operations, threat identification and intelligence lifecycle, supporting technologies, and processes required.
Supervisory Responsibility
Licenses and Certifications
Must have at least two (2) certifications in the field of information security from a respectable security organization. Desirable certifications include, but not limited to:
GSEC, GCIH, GCIA, GCFE, GREM, GCFA, CEH, CISSP, CASP or equivalent Certifications
Must have completed and passed industry standard Insider Threat Training Course and have completion certificate from any of the following organizations:
CMU SEI, CDSE, NITTF
Work Environment
While performing the duties of this job, the employee is regularly exposed to an a hybrid, work from home, or indoor office setting with moderate noise.
Most roles require working in an office setting with moderate noise and the ability to lift 25 pounds.
Travel
Limited travel to various work sites.
Special Message Regarding COVID 19
PenFed is continuing to hire and train exceptional individuals to help us serve our 2 million members both here and around the world. In light of the current situation with COVID-19, we have modified our hiring, onboarding, training, and deployment protocols in order to comply with applicable current local and state guidance.
About Us
Established in 1935, PenFed today is one of the country's strongest and most stable financial institutions with over 2 million members and over $26 billion in assets. We serve members in all 50 states and the District of Columbia, as well as in Guam, Puerto Rico and Okinawa. We are federally insured by NCUA and we are an Equal Housing Lender. We are available to members worldwide, via the web, seven days a week, twenty-four hours a day.
We provide our employees with a lucrative benefits package including robust medical, dental and vision plan options, plenty of paid time off, 401k with employer match, on-site fitness facilities at our larger locations, and more.
Equal Employment Opportunity
PenFed management will maintain and observe personnel policies which will not discriminate or permit harassment or retaliation against a person because of race, color, creed, age, sex, gender, gender identity, gender expression, religion, national origin, ancestry, marital status, military or veteran status or obligation, the presence of a physical and/or mental disability or medical condition, genetic information, sexual orientation, and all statuses protected by applicable state or local law in all recruiting, hiring, training, compensation, overtime, position classifications, work assignments, facilities, promotions, transfers, employee treatment, and in all other terms and conditions of employment. PenFed will also prohibit retaliation against individuals for raising a complaint of discrimination or harassment or participating in an investigation of same.
PenFed will also reasonably accommodate qualified individuals with a disability so that they can apply for a job or perform the essential functions of a job unless doing so causes a direct threat to these individuals or others in the workplace and the threat cannot be eliminated by reasonable accommodation or if the accommodation creates an undue hardship to PenFed. Contact human resources (HR) with any questions or requests for accommodation at 240-224-4256.
#LI-TT1
