Address
Form of workThe Bank sponsors individuals for TN and H-1B transfers on a case by case basis. Please note that this position is not open to anyone on an F-1 student visa including those eligible for CPT/OPT or the Stem OPT extension.
About M&T Bank
At M&T Tech, we’re a team of makers, doers, and builders, working to create the most advanced technology solutions in banking. We’re not your stereotypical suit and tie bankers: we’re an innovative team of leading tech experts, pushing boundaries, and taking risks. We’re building an agile team of the most skilled and creative workers to solve complex problems, architect solutions, write high-performance software, and chart our new path, all to make the lives of our customers, and the communities that we serve, better. Join us and be part of something new as we build tomorrow’s bank, today.
Overview:
Primarily supporting the Cybersecurity Operations Center (CSOC), the Documentation and Process Specialist will focus on the continued efficacy of our procedural Documentation and Standard Operating Procedures. The Specialist will be exposed to cutting edge tooling and work with team members to update, correct, and modernize documentation to ensure deliverables are concise and easy for team members to work with. Other duties will include working with cross department stakeholders, lines of risk, and other staff to meet requests as needed while extending the CSOC’s reach across Cybersecurity, Technology, and the broader organization.
In addition to the duties listed above, the Specialist will also function on occasion as a Defense Specialist, working through alerts and requests received by the CSOC on an as-required basis. Such work will reinforce the team member’s ability to produce effective deliverables.
Primary Responsibilities:
- Write, update, and maintain process documents.
- Respond timely to Analyst and Specialist feedback as required.
- Lead development of technical deliverables, both during incidents and for purposes of documenting SOPs.
- Effectively collaborate with other individual contributors and managers, working to achieve consensus where required.
- Lead maintenance of the team’s document repository.
- Analyze and evaluate network and system security alerts from multiple sources within the enterprise and determine possible causes, impacts and potential remediation efforts.
- Complete incident documentation where required.
- Characterize and analyze network traffic to identify anomalous activity and potential threats to network resources and provide proactive recommendations to maintain or improve security posture.
- Notify designated managers, cyber incident responders and appropriate stakeholders of suspected cyber incidents and articulate the event's history, status, and potential impact for further action in accordance with the organization's cyber incident response plan when required.
- Provide timely notice of imminent, hostile intentions or activities impacting organization objectives, resources or capabilities including leading high severity or emergency response events.
- Assist with coordination efforts for Audit, Disaster Recovery, Contingency and Continuity of Operations planning.
- Understand and adhere to the Company’s risk and regulatory standards, policies, and controls in accordance with the Company’s Risk Appetite. Identify risk-related issues needing escalation to management.
- Promote an environment that supports diversity and reflects the M&T Bank brand.
- Maintain M&T internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators as applicable.
- Complete other related duties as assigned.
Scope of Responsibilities:
Education and Experience Required:
Associates degree in an applicable discipline and a minimum of 3 years’ relevant work experience in two (2) or more of the following Cybersecurity domains: Security and Risk Management, Asset Security, Security Engineering, Communication and Network Security, Identity and Access Management, Security Testing and Security Operations, or in lieu of a degree, a combined minimum of 5 years’ higher education and/or work experience, including a minimum of 3 years’ relevant work experience in two (2) or more of the following Cybersecurity domains: Security and Risk Management, Asset Security, Security Engineering, Communication and Network Security, Identity and Access Management, Security Testing and Security Operations
Understanding of System Development Life Cycle (SDLC)
Prior experience completing complex problem analysis and problem resolution across multiple disciplines
Prior experience and demonstrated aptitude for quickly learning new technical skills and supporting multiple systems, tools and Processes
Experience actively leading complex problem and technical analysis walkthroughs
Demonstrated experience as a technical writer and in managing a Wiki-style document repository.
Prior experience as a Cybersecurity Operations Analyst or a similar Technology/Cybersecurity discipline.
Ability to complete all shift work to support 24x7 team
Education and Experience Preferred:
Bachelor’s degree in an applicable discipline and 2 years’ relevant work experience
Minimum of 6 years’ relevant work experience in two (2) or more of the following Cybersecurity domains: Security and Risk Management, Asset Security, Security Engineering, Communication and Network Security, Identity and Access Management, Security Testing and Security Operations
Experience with the Bank’s application development support software and hardware platforms
Experience introducing application development alternatives through an understanding of client area function and deliverable requirements for current and future-state planning
Detailed technical experience with mainframe, virtual and/or distributed computing environments.
Detailed experience with a Security Intrusion and Event Monitoring (SIEM) system and/or other Cybersecurity tools.
Experience in executing documentation updates amid large-scale migrations.
Working knowledge of Security Orchestration and Response (SOAR) tools.
CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), or CRISC (Certified Risk and Information Systems Control) certification or applicable Cybersecurity domain-related industry-recognized certification
Experience servicing as a surrogate team leader to assign, review, evaluate and prioritize team efforts
M&T Bank is a Top 10 US bank holding company and one of the best performing and financial stable regional banks in the country, we offer our technology employees a wide range of performance-based career development opportunities. We have a strong commitment to our customers and the communities we serve, and we continue to grow with a focus on the future. So, when looking to advance your career, look to M&T. Grow with us.
Hiring Immediately.
We support our team members with generous benefits.
- Competitive compensation
- Health, welfare, and retirement benefits
- 401(k) match at 5%
- Work-life balance and flexible work arrangements
- Up to 25 days PTO plus 12 paid holidays
#MTBTechCareers, #MTBCareers #MTBTechLife & #MTBTechHub #CybersecurityJobs #InfosecJobs #CybersecurityCareer #Hiring #JobOpening #ITJobs #TechJobs #CISSP #Cybersecurity
#cybersecuritysolutions #cybersecurityarchitecture #securitymanagement #informationsecurity #cybersecurityleadership #securitysolutions #cybersecuritystrategy #cybersecuritymanagement #securearchitecture #ITsecuritysolutions #networksecurity #cybersecurityprofessional #securityconsulting #securityassessment #cybersecurityteam #riskmanagement #datasecurity #cloudsecurity #cybersecurityawareness #cybersecurityexpert
Location:
Clanton, Alabama, United States of America
