SunTrust Banks, Inc is looking for a Platform Security Analyst to join a diverse group of IT Security professionals to improve the security posture of enterprise systems.
Deploys procedures and technologies required to assure the confidentiality, integrity, and availability of workstations, servers,databases and network appliances. Focuses on configuration and assessment of complex IT systems. Evaluates and verifies security requirements for assigned systems. Performs procedures necessary to ensure the safety of information systems assets and to ensure compliance with SunTrust standards and security controls. Will participate in the selection, implementation, and enforcement of security controls for systems. Conducts security product integration, information security overviews, and other projects that require technical security expertise. Acts a liaison between industry partners, vendors and teammates. Will collaborate with system engineers, governance and risk management to support lines of business. Will select and document security controls and advise on mitigation and remediation techniques. May monitor current security trends and alerts of potential/active threats. Understands cyber security frameworks including NIST, DISA STIG, CIS, PCI DSS, SOX, HIPAA, tracks updates in these and other industry best practices. Researches tools for monitoring and employing configuration compliance. Understands cyber security risk management. Typically leads moderately complex projects and participates in larger, more complex initiatives. Prepares and analyzes reports and technical briefings. Drives continuous improvement in the cyber security posture of assigned systems. Aids in the assessment of assigned Asset portfolio and review results to develop follow-up action plans. Prepares technical Solves complex technical and operational problems. Acts as a resource for teammates with less experience. Evaluates and interprets internal and Enterprise information security policies, standards, procedures and processes, and may provide improvement recommendations.Qualifications
Bachelor’s degree in and 3 years of experience in IT security or other related discipline or an equivalent combination of education and work experience. In-depth knowledge in information systems and ability to identify, apply, and implement best practices. Understanding of key business processes and competitive strategies related to the IT function. Ability to plan and manage projects. Ability to solve complex problems by applying best practices. Ability to provide direction and mentor less experienced teammates. Ability to interpret and convey complex, difficult, or sensitive information. In-depth knowledge of security-related technologies, such as Cisco PIX firewall OS, Nokia Checkpoint firewall OS, TCP/IP, DNS, SATAN, CyberCop, ISS, nmap, IBM Secure Way, and/or Web Single Sign-On (SSO).
Bachelor’s degree and 7 years of experience or an equivalent combination of education and work experience. Excellent interpersonal skills. Prefer experience writing standards. Experience employing security frameworks in a large and complex enterprise environment. Working knowledge of scanning tools such as Nessus Rapid7, Microsoft SCCM, IBM BigFix, or Chef Automate. Basic ability to automate manual tasks using languages such as Perl, Powershell, Python, SQL, or others. Banking, financial services, Government, Healthcare, DoD or Regulatory experience a plus.
Equal Opportunity Employer: SunTrust supports a diverse workforce and is a Drug Testing and Equal Opportunity Employer. SunTrust does not discriminate against individuals on the basis of race, creed, color, gender, religion, national originTo review the EEO Poster, copy and paste the following link into your browser: http://www1.eeoc.gov/employers/upload/eeoc_self_print_poster.pdf http://www.dol.gov/ofccp/regs/compliance/posters/pdf/OFCCP_EEO_Supplement_Final_JRF_QA_508c.pdf