Senior Principal Cybersecurity Analyst, CAT
FINRA
The Senior Principal Cybersecurity Analyst is responsible for leading, supporting, and promoting the development, deployment, operation, monitoring, documentation, and oversight of cybersecurity controls and processes.
Essential Job Functions:
- Manages and communicates cybersecurity threats, risks, and state of controls to the Chief Information Security Officer (CISO) and stakeholders.
- Implements and operates security controls and automation across multiple cybersecurity subdomains. Ensures security controls are well designed, effectively implemented, and aligned with organizational policies. Designs and implements automated solutions for efficiently managing cybersecurity risk.
- Facilitates and supports security event and incident response activities.
- Defines, enforces, and promotes information security policies and related governance artifacts and processes.
- Ensures compliance with applicable regulatory and contractual requirements.
- Manages security vendor relationships; ensure vendors comply with contractual commitments.
Specific areas of knowledge or demonstrated capabilities applicable to this position may include the following:
- Threat hunting, detection, and response, potentially including the use of AI/ML techniques to detect and prioritize system-specific anomalous activity.
- Securing environments with substantial Amazon Web Services (AWS) dependencies.
- SIEM technology, especially Splunk.
- NIST SP 800-series publications.
- Common information security vulnerabilities and attack patterns.
Education/Experience Requirements:
- Bachelor’s degree in computer science, computer engineering, cybersecurity, or technical field preferred and a minimum of seven (7) years of professional experience in the design, operation, and monitoring of IT systems, with substantial emphasis on cybersecurity.
- Minimum of five (5) years’ experience in multiple cybersecurity domains appropriate to the job description, including designing, operating, monitoring, and assessing security controls for cloud-based systems such as AWS.
- Substantial experience using a variety of tools and resources to identify cyber security threats, vulnerabilities, configuration defects, and other deficiencies to determine root cause and identify remediation strategies and countermeasures.
- Understanding of common cybersecurity vulnerabilities and attack patterns and ability to explain how they are both exploited and countered.
- Must demonstrate intellectual curiosity and attention to detail, with strong verbal and written communication skills.
Working Conditions:
- Hybrid work environment (Remote/Office).
- Occasional travel and extended hours may be required.
To be considered for this position, please submit an application. Applications are accepted on an ongoing basis.
FINRA strives to make our career site accessible to all users. If you need a disability-related accommodation for completing the application process, please contact FINRA's Employee Relations team at 240.386.4865 or by email at EmployeeRelations@finra.org.
FINRA is an Equal Opportunity and Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to age, citizenship status, color, disability, marital status, national origin, race, religion, sex, sexual orientation, gender identity, veteran status or any other classification protected by federal state or local laws as appropriate.