Join a passionate and purpose-driven team of colleagues who contribute to Trustmark’s mission of helping people increase wellbeing through better health and greater financial security. At Trustmark, you’ll work collaboratively to transform lives and help people, communities and businesses thrive. Flourish in a culture where appreciation, mutual respect and trust are constants, not just for our customers but also for ourselves. 

POSITION OVERVIEW:  Our Security Operations team is growing and currently looking for a SR SECURITY OPERATIONS ANALYST.  The SecOps team is responsible for identifying and analyzing various security threats/attacks including, but not limited to, Network Attacks, Vulnerability Identification, Network Reconnaissance, Windows Exploits, Covert Channels & Rootkits, Unix/Linux Exploits, Wireless Security Flaws and Web Application Vulnerabilities by exposing methods that attackers could use to exploit weaknesses web application logic flaws to contain advanced cyber threats, exploits, and cyber-criminal activities targeting the business. Responsible for Security Incident Management and Response and Mitigation from end to end - full lifecycle.

THIS POSITION CAN BE ENTIRELY VIRTUAL/REMOTE/WORK FROM HOME AND THE INDIVIDUAL CAN SIT ANYWHERE IN THE US.  

RESPONSIBILITIES:

• Leads incident response, including steps to minimize the impact and then conducting a technical and forensic investigation into how the breach happened and the extent of the damage.
• Assists with the build out of Security Orchestration Automation & Response (SOAR).
• Researches, validates, documents, and articulates security findings to Security Leadership. Responsible for metrics development and presentation.
• Collaborates with SecEng and across IT departments to identify, administer, analyze, and solve critical security problems, as well as operationalize lessons learned into existing or new technological controls, solutions, processes, procedures, knowledge articles.
• Accountable for Analysts responding to alerts form the SIEM and various security tools and is Subject Matter Expert in the various security tools. May also respond to alerts and assist team with more complicated alerts.
• Monitors, analyzes, and investigates security incidents.
• Provides support for Internal & External Audits for HIPAA, NYDFS, PCI, HITRUST. Works with Auditors to provide details of security controls and proof of compliance with respect to the SIRP/SIRT.
• Owns main relationship with the SIEM MSSP and provides tuning guidance and upgrades in partnership with SecEng.
• Mentors junior staff in the proper methods and procedures in analysis and triage. Works with SecEng on training, documentation, and procedures for team.
• Tests new tools and stays up to date on criminal tools used in our sector. This involves leveraging Threat Intelligence and cross industry sharing.
• Maintains current knowledge of relevant technology as assigned. Attends industry training and conferences to keep on top of security trends.

QUALIFICATIONS:

• Strong intellectual curiosity
• Bachelor’s Degree in Computer Science or equivalent
• 4+ years of related experience
• Understanding of compliance (HIPAA, HITRUST, NYDFS) and audit control framework requirements NIST SP800-53, NSIT CSF, SANS, OWASP.
• Strong written and verbal communication skills
• Ability to present to leaders in IT and across the organization and influence/drive decisions

All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, sex, sexual orientation, sexual identity, age, or disability.

Required Skills Required Experience

•Bachelors degree required.

•3 years of experience in a fast paced operational environment.

•Excellent organizational, written, and interpersonal communication skills.

•Ability to manage multiple projects and prioritize effectively both independently and as part of a team to meet tight deadlines

•Ability to produce high-quality work reflecting attention to detail and accuracy.

•Proficient knowledge of Microsoft Office

This position is grant funded 

We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law. We are a VEVRAA Federal Contractor.