Northfield Bank is a full service bank with 38 branch locations throughout New Jersey and Staten Island and Brooklyn, New York. With a history dating back to 1887, our growth continues through expansion of our presence in local communities and in our Product and Service offerings. Over 300 employees with diverse backgrounds and cultures have come together to make Northfield Bank what it is today. The Bank believes in providing all employees with the opportunity to reach their career potential and encourages advancement within the organization. For more information, please visit www.eNorthfield.com

Job Title - IT Security Operations Analyst
Status - Full Time
Location - Avenel, NJ

Job Summary

The IT Security Operations Analyst will work with various departments of the bank to support essential cybersecurity functions of the Bank such as Email Security, Patch and Vulnerability Management, Endpoint Security, Security Information and Events Management, Proxy Web Management and Perimeter Security (e.g. Firewalls, Intrusion Prevention System). The IT Security Operations Analyst will also assist the Bank in ongoing initiatives such as evaluating and analyzing vendors for cutting edge cybersecurity technologies including Next Generation Firewalls, Endpoint Detection and Response (EDR), Honeypots and Cloud Migration. The primary goal of the IT Security Operations Analyst is to apply expertise in information security to contribute in various functions to help improve the overall security posture of the Bank.

Essential Functions

1. Identify significant cyber security trends, problems and weaknesses and recommend specific modifications and solutions to reduce information systems security risks.

2. Perform analysis on vendors of cutting-edge cyber security technologies and develop cost-benefit analyses to determine whether the Return on Investment (ROI) on new solutions is justifiable relative to the cost.

3.Review, update or create technical processes and procedures around essential IT Security Operations security domains.

4. Monitor Email Security systems (e.g. Axway, Sophos) to perform essential email security functions and configure these tools to optimize Email Security functions.

5. Complete tactical day-to-day operations around Patch & Vulnerability Management. Ensure that all security patches are being pushed out according to our policy. Work with various departments to analyze and remediate outstanding vulnerabilities, periodically ensure scan coverage, and perform troubleshooting to understand the root cause of these issues, and research zero-day vulnerabilities as they arise.

6. Work with Endpoint Security tools (i.e. McAfee) to ensure all endpoints are fully secured. Collaborate with other security professionals within the department to suggest additional layers of security that can be provided by current toolsets as well as any additional tools to provide an enhanced defense-in-depth security posture. Investigate security alerts produced by McAfee.

7. Analyze offenses generated by the qRadar Security Information and Events Management (SIEM) tool. Perform forensics and conduct investigations with stakeholders across the organization to assess the impact, severity and solutions. Recommend actions for incident response based on findings, and following up to ensure the implementation of corrective actions.

8. Proactively monitor security infrastructure and tools to ensure reliability and integrity of systems and applications. Work in a team environment to investigate and respond rapidly to security incidents.

9. Educate IT team members in security best practices, collaborate with various IT teams across the enterprise to incorporate security best practices into daily workflow and procedures.

OTHER: May require occasional travel for business meetings or training.

Core Competencies

Required:

1. Analytical skills – Possesses strong analytical skills and the ability to apply this skillset to several different domains in cybersecurity. The ability to comprehend and analyze large data sets and then analyze trends and produce a result

2. Technical skills – Ability to quickly learn the syntax of new tools and quickly understand the functionality of complex technical cybersecurity defense systems. Background in database languages, windows security management or computer programming languages is preferred

3. Detail Oriented – IT Security Operations functions require extreme attention to detail. By focusing on even the smallest details found in security systems, this helps analysts pinpoint gaps in security measures and provide actionable recommendations.

4. Communication and Collaboration – Strong oral and written communication skills. Expresses oneself clearly and effectively when speaking and/or writing to individuals or groups. Listens attentively and works well with teams.

.

**Northfield Bank is an Equal Employment Opportunity Employer M/F/Disability/Protected Veteran**