First Republic Bank

Returning Candidate?

Network Security Engineer

Network Security Engineer

ID 
2017-4499
Job Locations 
US-NY-New York
US-CA-San Francisco
Category 
Information Security

More information about this job

Overview

First Republic is an ultra-high-touch bank that provides extraordinary client service. We believe that one-on-one interactions build lasting relationships. We move quickly to serve our clients’ needs so that their financial transactions are handled with ease and efficiency. Client trust and security are paramount in our line of business. Ultimately, our goal is unsurpassed client satisfaction which will lead to personal referrals – our number one source of new business. We recognize that our competitive advantage starts with our people and our culture. At First Republic, we work hard and move quickly as a very coordinated team. If you are looking for an opportunity to grow and contribute in a fun, fast-paced environment, First Republic is the place for you. We have exceptional people focused on providing extraordinary service.

 

The Network Security Engineer provides security oversight to First Republic Bank’s computing environment. 

 

Oversight is achieved by monitoring and investigating security events as reported by FRB’s SIEM; developing SIEM correlation rules to meet regulatory compliance requirements; identifying and addressing potential data loss channels; and staying apprised of potential security challenges through the gathering and processing of cyber intelligence.

 

The position will work closely with other Network Security Engineers and Information Services personnel to ensure that logging and monitoring is integrated with the various networks, systems and database architectures and to ensure that security policies are being effectively employed.

Responsibilities

RESPONSIBILITIES AND DUTIES:

  • Security Information and Event Management: Configuration of Information Security monitoring systems which provide logging, monitoring, and actionable alerting. Systems include IDS/IPS; Database Activity Monitoring; and Vulnerability Scanners. Assist with the configuration, maintenance, and monitoring of the Security Incident and Event Monitoring (SIEM) system.
  • Develop and implement SIEM use cases to support the monitoring of the Bank’s infrastructure and ensuring that regulatory and legal compliance (e.g. GLBA, SOX) is maintained and compliance with Bank policy is maintained. Support the incident response team, by providing tier 2 support to incident handlers.         
  • Data Loss Prevention Program: Support the enterprise data loss prevention program by identifying and controlling data loss channels. As directed, work with business units to address their data loss prevention requirements.
  • Cyber Intelligence Analysis: Monitor cyber intelligence and provide input as necessary to other groups within the Bank. Take proactive steps, such as implementing controls, to reduce the likelihood of a successful attack. Update incident response procedures as necessary based upon cyber intelligence.
  • Project Consulting: Provide security consulting services, as needed, to various projects. Provide assistance to the Information Security Architect in the design of security solutions.
  • Performs other duties & responsibilities as required or assigned by supervisor.

Responsibilities include the following: 1) adhering to and complying with all applicable, federal and state laws, regulations and guidance, including those related to Anti-Money Laundering (i.e. Bank Secrecy Act, USA PATRIOT Act, etc.), 2) adhering to Bank policies and procedures, 3) completing required training, 4) identifying and reporting potential suspicious activity to the BSA/AML Officer, and 5) knowing and verifying the identity of any customer(s) that enters into a relationship with the Bank.

 

Critical features of this job are described under the items above. They may be subject to change at any time due to reasonable accommodation or other reasons. This job description reflects management’s assignment of essential functions; it does not prescribe or restrict the tasks that may be assigned. Nothing in this job description restricts management’s right to assign or reassign duties and responsibilities to this job at any time.

Qualifications

KEY SKILLS, KNOWLEDGE AND ABILITIES:

  • BS in Computer Science or equivalent.
  • Technical network (e.g. CCNA, CCNA Security) and security certifications highly desirable (e.g. CCSK, CCSP, CISA, CISSP, GCIH, CEH).
  • Understanding of controls (e.g. access control, auditing, authentication, encryption, integrity, physical security, and application security).
  • Must be well versed in Windows and Linux environments, Active Directory, VPN systems, encryption schemas and algorithms, various authorization and authentication mechanisms/software, network monitoring and sniffing, TCP/IP networks and vulnerability and threat management tools (including network based scanners).
  • Beneficial if experienced in Database Activity Monitoring Systems (DAM), and Web Application Firewalls (WAF).
  • Ability to provide quality deliverables on time and on budget.
  • Must possess excellent communication skills (written, verbal). Should be able to work with technical and non-technical individuals alike.  
  • Ability to mentor other employees to improve their skills and effectiveness.
  • Ability to design, resource, conduct, status, and complete projects independently, with minimal supervision.
  • Team player.
  • Provides extraordinary service.
  • Furthers the First Republic Bank culture and values.

Options

Share on your newsfeed