Information Security Operations Analyst

Information Security Operations Analyst

Website Federal Home Loan Bank of Boston

The Federal Home Loan Bank of Boston is a leading provider of wholesale funding for housing and community finance in New England serving more than 420 financial institutions across the region. The Federal Home Loan Bank of Boston is committed to making New England a better place to live and do business, and our employees are integral to our success. As a cooperative, we are owned by more than 420 banks, credit unions, insurance companies, and community development financial institutions that access tens of billions of dollars of our reliable, wholesale funding each year. Our funds are a vital resource that helps our members succeed, provide families with safe, decent affordable housing, and generate economic development that creates jobs in communities throughout our region.

Our highly skilled team of 200 is diverse, innovative, collaborative, and passionate about the work we do. We seek other professionals excited to share their knowledge, talent, and passion for our mission to join our team. We offer opportunities for career development, robust benefits, and a work-life balance.

Position Summary

This new role will be involved with the implementation of security standards and best practices for the organization in areas including Identity Governance, System Administration, Security Awareness Training, and Physical Security. Other responsibilities include security event monitoring, physical security oversight, system access reviews, risk assessments and other related activities in support of the team’s mission.  Primary responsibilities include security administration activities as well as assessing security measures to protect computer systems, networks and data.  Additionally, the Information Security Operations Analyst assists in the response to business disruptions, security incidents and other control functions as necessary to satisfy the Information Security Team’s responsibilities.

This role is ideally suited for someone with limited work experience yet seeking a career in cybersecurity or information security.

This position is classified as sensitive and is subject to a credit check.

This role will have a hybrid work schedule in our Boston office in accordance with the Bank’s Hybrid Work Program. More time will be encouraged in the office to support onboarding initially.

Specific Responsibilities

·         Perform e-mail administration, including Exchange Online (users, email, groups, calendaring, and shared mailbox access).

·         Administer Email Gateway appliances, including message security review and release.

·         Assist in supporting Office 365 client and mobile applications.

·         Perform administration of Active Directory Users and Groups, local users and groups, and generic and service accounts.

·         Perform administration of the SSO/MFA platform.

·         Proactively monitor and perform initial triage and investigation of network security alerts from the Bank’s managed security service provider and in-house security tools.

·         Investigate, analyze, and resolve network and security issues/concerns.

·         Maintain security diagrams, inventories, and documentation.

·         Support the bank’s network vulnerability management program by tracking vulnerability remediation activities to monitor progress and highlight areas of focus.

·         Implement security hardening processes for overall infrastructure security, patch management and maintain associated documentation.

·         Conduct daily/weekly/monthly/quarterly operational activities required of the Information Security program.

·         Contribute to risk assessments to evaluate the effectiveness of existing controls and determine the impact of proposed changes to business processes, applications. and systems.

·         Monitor, maintain, and update relevant security tickets (requests, tasks, incidents, etc.) in the Bank’s IT Service Management system, ServiceNow.

·         Perform other duties of the Information Security department as assigned by management.

 

Education

·         A degree in Cybersecurity, Computer Science, Management Information Systems or related field or comparable work experience.

 

Experience

·         Minimum of 1-2 years of Information Security or related experience is expected, preferably with a financial services firm.

 

Knowledge/Skills

·         Must have passion for exceptional customer service and support.

·         Ability to work individually and in a collaborative team environment.

·         Ability to communicate ideas effectively in a professional environment both verbally and in writing.

·         Familiar with basic information security concepts, including user account provisioning, system administration, network security, application-level security, disaster recovery and business continuity.

·         Working knowledge of computer networking in a client/server environment, intrusion detection/prevention systems, compliance monitoring tools, firewalls, VPNs, encryption products, and vulnerability assessment tools.

·         Must have experience with Active Directory User and Group administration.

·         Experience with Office 365 administration.

·         Experience with PowerShell or other scripting skills.

·         Demonstrated problem-solving skills, detailed oriented, and possesses an analytical mindset.

·         Must have good technical writing and documentation skills.

 

The Federal Home Loan Bank of Boston is committed to building and sustaining a diverse workforce that reflects the communities that we serve. As an Equal Opportunity Employer, we strongly encourage applicants from every ethnicity, color, religion, gender, age, national origin, disability, veteran or parental status and sexual orientation.

Nothing in this job description restricts management’s right to assign or reassign duties and responsibilities to this job at any time.

To apply for this job email your details to scott.barker@fhlbboston.com

Diversity@Workplace