Corporate Information Security SOC Manager in Kalispell, MT

Job title: Corporate Information Security SOC Manager in Kalispell, MT at Glacier Bancorp

Company: Glacier Bancorp

Job description: Job Description:About The RoleThe SOC Manager position is tasked with designing, developing, administering and tuning security event monitoring and intrusion detection related systems while providing support for new analytic methods for detecting threats. Maintains knowledge on the latest intelligence and attack methodologies to take corrective actions during security incidents and is the second level escalation point for corrective action on security events from SIEM while tuning out false positives. Examines Big Data for patterns of malicious or unwanted activities in the enterprise. This position is the primary incident responder for security incidents and provides leadership, expert advice and management to the more junior employees and management with regard to event detection, classification, response and recovery. Performs supervisory tasks associated with the Security Analyst team in a manner that is consistent with the goals of the InfoSec Department. This position will also do other duties as assigned and reports to the Information Security Governance Manager.This is a Corporate position which may be located in an available bank division across our eight-state footprint in AZ, CO, ID, MT, NV, UT, WA, or WY.The mid-point for this position is $112,761.88/annual (calculated for Kalispell, MT). All compensation offers are analyzed individually and take into consideration multiple factors including but not limited to geographic location, years of experience, and educational background.Description· Monitors the current threat landscape and develops detective controls and alerts in a timely manner in order to evolve GBCI’s security posture. Designs, develops, administers, and tunes security event monitoring and intrusion detection related systems including the development of correlation searches, dashboards and reports for Management and Regulatory bodies. Tunes systems if false positives are found. Develops performance metrics, trends statistical data, and customizes management reports for Audit, Regulatory Exams, Committee and Board reports. Consults with all departments within IT to determine how to onboard security monitoring in new technologies being introduced or upgraded in the enterprise. Provides consulting on strategic and tactical methods to enhance monitoring and reduce GBCI’s attack surfaces.· Develops automated playbooks to respond to events within the environment in order to automate the response portion of security related events.· Takes corrective action using the SANS stages of incident response (Preparation, Identification, Containment, Eradication, Recovery, Lessons Learned) as well as advises on remediation activities on security events escalated from System Administrators, Engineers, Information Security Administrators and Analysts. Keeps management aware of incident status while performing deep-dive analysis by correlating data from various sources to determine if a critical system or data set has been impacted all while creates necessary Incidents, Major Incidents or Problems following the internal ITIL Processes. Communicates potential security exposures, misuse or noncompliance situations to the Information Security Governance Manager or Chief Information Security Officer.· Leads postmortem Incident Response activities including lessons learned while advising on the implementation of revised or new security controls that may be needed from the Incident Response.· Monitors and maintains knowledge on new security threats, trends and technologies to better position detective and preventative controls to minimize risks associated with security breaches.· Manages the Security Analyst team members helping them accomplish their roles and responsibilities.· Provides guidance and education to organization employees on the concepts and needs of a security conscience culture to achieve compliance according to regulatory requirements, bank policy and industry standard to promote high levels of security knowledge or awareness.· Must comply with all company policies and procedures and all applicable laws and regulations, including but not limited to, the Bank Secrecy Act, the Patriot Act, and the Office of Foreign Assets Control. Must complete the assigned online training courses and achieve a passing score by due date.About YouQualifications

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.EducationRequired/PreferredEducation LevelDescriptionRequiredBachelor’s DegreeInformation Technology (preferably in Information Assurance or Information Security) or related field.ExperienceRequired/PreferredExperience LevelDescriptionRequired5 yearsExperience in IT, specializing in Information Security Operations.Required3 yearsExperience with Big Data analytics platforms such as Splunk.Required3 yearsProficiency in Enterprise Windows Server and/or Linux/BSD/Unix administration, as well as Enterprise network routing and switching.Required3 yearsOperation of security technologies such as firewalls, intrusion detection/prevention, SIEM, PAM, and other security systems.Required3 yearsLeadership experience in a technical environment.RequiredKnowledge OfKnowledge of common information security management frameworks, such as ISO 27001, ITIL, COBIT, NIST, and CSIS 20 Critical Security Controls.Would an equivalent combination of relevant education and work experience be considered?: YesLicense/CertificationRequired/PreferredLicense/CertificationDescriptionRequiredMultiple CertificationsOne entry level certificate such as a Comptia Security+, SANS GIAC Security Essentials (GSEC) or ISACA Cybersecurity Fundamentals.RequiredMultiple CertificationsOne or more advanced certificate such as an CEH, ISACA CISM, CSX-P; ISC2 CISSP; SANS GIAC Information Security Professional (GISP), GIAC Security Operations Certified (GSOC) or CompTIA Advanced Security Practitioner (CASP+).PreferredOther Relevant CertificationOne or more advanced certificate focused upon the cybersecurity fields of Forensics, Threat Intelligence or Incident Handling.Required Skills and Abilities· Ability to develop, lead and conduct first line of defense reviews and audits, document results, and report to management· Self-starter that actively displays a commitment to quality and a passion for operational excellence· Strong analytical and problem-solving skills with the ability to effectively negotiate and collaborate with other teams to ensure compliance within required timelines· Ability to communicate effectively, both orally and in writing, to all levels of technical and non-technical owners· Proven ability to operate and effectively communicate while under pressure; as well as the ability to manage a diverse workload and work under time constraints.· Employee must be capable of regular, reliable, and timely attendance.Additional RequirementsTravelOccasional travel required: (less than 10 days per year) by automobile (as driver and passenger), commercial airlines, rental vehicles and public transportation and be able to lodge in public facilities.Working ConditionsEnvironment: Indoors, a climate-controlled shared work area.Noise Level: Moderate noise; not extreme or excessive; within reasonable limits.Lifting: Sedentary work: Exerting up to 10 pounds of force occasionally and/or negligible amount of force frequently or constantly to lift, carry, push, pull or otherwise move objects, including the human body. Sedentary work involves sitting most of the time. Jobs are sedentary if walking and standing are required only occasionally and all other sedentary criteria are met.VisionPhysical ActivitiesPhysical ActivitiesFrequencyBalancing: Maintaining body equilibrium to prevent falling and walking, standing or crouching on narrow, slippery, or erratically moving surfaces.Infrequent – rare.Climbing: Ascending or descending ladders, stairs, scaffolding, ramps, poles and the like, using feet and legs and/or hands and arms.Infrequent – rare.Crawling: Moving about on hands and knees or hands and feet.Infrequent – rare.Crouching: Bending the body downward and forward by bending leg and spine.Infrequent – rare.Feeling: Perceiving attributes of objects such as size and shape, temperature or texture by touching with skin, particularly that of the fingertips.Infrequent – rare.Fingering: Picking, pinching, typing or otherwise working primarily with fingers rather than with the whole hand as in handling.Daily.Grasping: Applying pressure to an object with the fingers and palm.Infrequent – rare.Kneeling: Bending legs at knee to come to a rest on knee or knees.Infrequent – rare.Lifting: Raising objects from a lower to a higher position or moving objects horizontally from position to position.Infrequent – rare.Pushing: Using upper extremities to press against something with steady force in order to thrust forward, downward or outward.Infrequent – rare.Pulling: Using upper extremities to exert force in order to draw, haul or tug objects in a sustained motion.Infrequent – rare.Repetitive Motion: Making substantial movements (motions) of the wrists, hands, and/or fingers.Daily.Stooping: Bending body downward and forward by bending spine at the waist.Infrequent – rare.What We OfferCOMPENSATION & BENEFITS: Starting salary is dependent upon relevant experience and may vary based on the geographic location of the position. We offer an extensive benefits package that includes, but is not limited to medical, dental, vision, and life insurance, a health savings account option, an Employee Assistance Program (EAP), a health rewards program, a 401(k) retirement savings plan, discounts on banking products and services, Paid Time Off (PTO) and holidays. Visit our for more details!COMPANY OVERVIEW: We are a family of banks whose unique local presence reflects the communities we serve. We welcome the opportunity to grow and change as our customers and communities do the same. Read our story, learn about our banks, and experience life at Glacier Bancorp, Inc. all from our website.We are an Equal Opportunity Employer and qualified applicants or employees will receive consideration for employment without regard to race, color, religion, national origin, sex (including pregnancy), sexual orientation, gender identity, mental or physical disability, genetic information, protected veteran status, or any other category protected by applicable federal, state or local laws.Glacier Bancorp, Inc. does not sponsor applicants for work visas. All applicants must be legally authorized to work in the US.No Recruiters or unsolicited agency referrals please.

Expected salary:

Location: Kalispell, MT

Job date: Thu, 01 May 2025 01:18:43 GMT

Apply for the job now!

[ad_2]

Apply for this job