The Sr. Cyber Security Operations Analyst will protect SVB by providing timely response to cyber security threats, incidents, and requests for investigation using industry leading tools and practices. The analyst will assist in the development of runbooks and processes to streamline the investigations and provide accurate and consistent documentation and response to security events. The analyst will continuously train and develop training material for junior analysts to be apprised of emerging technologies, threats, attacks, and countermeasures.

 Essential Functions

• Monitor, triage, and create logic to identify and respond to cybersecurity events to track in a case management system.
• Identify, implement and track necessary tuning of signatures and alerts
• Independently investigate, respond, escalate, and document findings for cybersecurity incidents and support and mentor more junior analysts
• Create processes to review and provide quality control validation for cybersecurity cases, incidents, tasks, and countermeasures
• Work with various teams and stakeholders to mitigate cybersecurity incidents
• Create, update and follow documented processes and runbooks
• Work with the Threat Intelligence team to identify areas for targeted threat hunts and participate in threat hunting exercises
• Create, lead, and participate in department training exercises (table top, blue and purple team, etc.)
• Monitor events in cyber security instrumentation through direct access and central log management
• Participating in an on-call pager rotation for responding to high urgency alerts

Preferred Knowledge

• Cybersecurity best practices and trends
• Cybersecurity incident response lifecycle and methods
• Mitre Attack Framework
• Cybersecurity risks and controls
• Networking and TCP/IP protocol
• Windows and Linux operating systems
• Cybersecurity architectures and methodologies (Defense in depth, Kill-Chain, NIST, OWASP, etc.)
• Amazon Web Services
• Indicators of compromise (IOC) and Tactics techniques and procedures (TTP)

Preferred Skills

• Analyze application, system, and security logs from any log source
• Document forensic investigation and research findings
• Demonstrate clear written and verbal communication
• Work well independently without in-person supervision
• Collaborate with team members across separate geographic locations
• Work well under pressure of cybersecurity incidents
• Build relationships with individuals across the organization
• Read and write scripts in python, javascript, powershell, or perl, etc.

Preferred Education & Experience

• Five or more years’ experience working in a cybersecurity or infrastructure role. 
• Master's degree in a cybersecurity or technical field (cybersecurity, information technology, computer science, computer engineering, physics, etc. )
• AWS Certified Solutions Architect or Associate
• Experience in the banking or financial industry

Beneficial Certifications

• Certified Information Systems Security Professional (CISSP) or Associate of (ISC)²
• Certified Cloud Security Professional (CCSP)
• Systems Security Certified Practitioner (SSCP)
• GIAC Security Essentials (GSEC)
• GIAC Certified Intrusion Analyst (GCIA)
• GIAC Certified Incident Handler (GCIH)
• GIAC Certified Enterprise Defender (GCED)
• GIAC Continuous Monitoring Certification (GMON)
• GIAC Certified Forensic Analyst (GCFA)
• GIAC Advanced Network Forensics (GNFA)
• CompTIA Security+
• CompTIA Advanced Security Practitioner+ (CASP+)
• Certified Ethical Hacker or Computer Security Incident Handler (CSIH)
• EnCase Certified Examiner (EnCE) 
• Access Data Certified Examiner (ACE)
• AWS Cloud Certified Practitioner
• AWS Cloud Certified Practitioner
• AWS Certified Solutions Architect or Associate
• AWS Security Specialty

 Equal Employment Opportunity

Silicon Valley Bank is an equal opportunity employer and is dedicated to expanding its commitments and investments to create a more diverse, equitable and inclusive company culture and innovation ecosystem. We are strongly committed to the values and policy of equal employment opportunity across our employment practices.