Thank you for your interest in a career at Regions. At Regions, we believe associates deserve more than just a job. We believe in offering performance-driven individuals a place where they can build a career --- a place to expect more opportunities. If you are focused on results, dedicated to quality, strength and integrity, and possess the drive to succeed, then we are your employer of choice.

Regions is dedicated to taking appropriate steps to safeguard and protect private and personally identifiable information you submit. The information that you submit will be collected and reviewed by associates, consultants, and vendors of Regions in order to evaluate your qualifications and experience for job opportunities and will not be used for marketing purposes, sold, or shared outside of Regions unless required by law. Such information will be stored in accordance with regulatory requirements and in conjunction with Regions’ Retention Schedule for a minimum of three years. You may review, modify, or update your information by visiting and logging into the careers section of the system.

Job Description:

At Regions, the Cyber Security Analyst is responsible for analyzing, identifying, and documenting cybersecurity risks. This role will require a proactive individual with an understanding of core technology and cybersecurity principles along with industry best practices to investigate, remediate and/or escalate for further evaluation.

Primary Responsibilities

Analyzes and responds to cyber threats within various security tools according to documented procedures and be capable of understanding if deviations from procedures are necessary to gather the required information to respondProactively identifies opportunities for tuning security tools and submit requests to support teams to enhance threat detection accuracy, and works with related teams to see tuning through to completionProvides recommendations for updates to policies, standards, and procedures to improve process flowsPerforms threat hunting and participate as a key stakeholder in tabletop exercises on a rotational job-duty basis as neededAssists in incident responseMaintains meticulous records of all work performed, including root cause analysis, indicators of compromise, remediation steps, timeline of events, and impact assessment using clear and concise annotations as neededMentors, reviews, and assists other analysts in their documentation and trainingMaintains an awareness of active global cybersecurity threat trends and proactively provides guidance where gaps may exist around existing detections and proceduresSupports and collaborates with various cybersecurity teams to document security posture and assess environment for relevant IOCs and gaps as neededParticipates in and lead various security assessments (i.e. Security Architecture Reviews, Red Team assessments, Purple Team engagements, and formal tabletop exercises) as neededParticipates in and lead planning and support for cyber security engineering and architecture for new projects as neededProvides in-depth guidance on process improvementActs as a coach and mentor to junior analystsLeads special projectsServes as a subject matter expert (SME) within cybersecurity

This position is exempt from timekeeping requirements under the Fair Labor Standards Act and is not eligible for overtime pay.

Requirements

High School Diploma or GED and (10) years of related post-secondary education and/or experience in Information Security or Information TechnologyMinimum of two (2) relevant certification in Information Security or the ability to obtain relevant certification within twelve months of start date in this position, such as CompTIA Network+/Security+/CySA+, EC-Council Certified Ethical Hacker (CEH), Cisco CCNA/CCNA-Security, GIAC GSEC, etc.Familiarity with regulatory requirements and industry standards such as the Gram Leach Bliley Act (GLBA), Payment Card Industry Data Security Standard (PCI-DSS), National Institute of Standards and Technology (NIST), etc.Willingness and availability to work on a pre-determined shift and rotational on call

Preferences

Minimum of one (1) Intermediate to Advanced Amazon Web Services (AWS) or Azure Architect/Administrator and/or Security specialty certificationAdvanced Incident Response, Cyber Leadership, Penetration Testing certification – GCIH, GSOM, GPEN, CISSP, CISM, OSCPPrior working experience in a Security Operations Center (SOC) environmentPrior experience developing use cases for a Security Operations Center from threat hunting and threat detection engineering to investigation playbook and response procedure developmentUnderstanding of MITRE ATT&CK Framework and Cyberattack Kill Chain and how these frameworks can be used to identify gaps as well as orient analysts in attack progression

Skills and Competencies

Ability to be a self-starter with initiative and drive for continuous improvement.Ability to be a team-oriented individual who works well with others and places a premium on the group’s successAdvanced understanding of information security principles, controls, and technologiesDemonstrated strong organizational, research, analytical and problem-solving skills to evaluate situations and respond appropriatelyExcellent writing and verbal communication skillsStrong familiarity with concepts related to security disciplines such as: malware analysis, computer forensics, cyber incident response, network intrusion detection, network traffic and packet analysis, penetration testing, vulnerability scanning, compliance, audit, or cyber threat intelligenceStrong investigative and problem-solving skills

The IR Coordinator role is uniquely positioned with in the Detection and Response organization. This role will coordinate communication and collaboration during and after cyber security incidents ensuring IR remains in compliance with reporting requirements and timelines.

The ideal applicant will possess the following skills:

Have a strong cyber security and incident response understanding.Be able to synthesize IR concepts, actions, and needs into succinct points for management.Understand and be familiar with regulatory frameworks related to Cyber Incident Response and incident reporting requirements

This position is intended to be onsite, now or in the near future. Associates will have regular work hours, including full days in the office three or more days a week.  The manager will set the work schedule for this position, including in-office expectations.  Regions will not provide relocation assistance for this position, and relocation would be at your expense.  

Position Type

Full time

Compensation Details

Pay ranges are job specific and are provided as a point-of-market reference for compensation decisions. Other factors which directly impact pay for individual associates include: experience, skills, knowledge, contribution, job location and, most importantly, performance in the job role. As these factors vary by individuals, pay will also vary among individual associates within the same job.

The target information listed below is based on the Metropolitan Statistical Area Market Range for where the position is located and level of the position.

Job Range Target:

Minimum:

$121,316.25 USD

Median:

$159,690.00 USD

Incentive Pay Plans:

Opportunity to participate in the Long Term Incentive Plan.

Benefits Information

Regions offers a benefits package that is flexible, comprehensive and recognizes that "one size does not fit all" for benefits-eligible associates. Listed below is a synopsis of the benefits offered by Regions for informational purposes, which is not intended to be a complete summary of plan terms and conditions.

Paid Vacation/Sick Time401K with Company MatchMedical, Dental and Vision BenefitsDisability BenefitsHealth Savings AccountFlexible Spending AccountLife InsuranceParental LeaveEmployee Assistance ProgramAssociate Volunteer Program

Please note, benefits and plans may be changed, amended, or terminated with respect to all or any class of associate at any time. To learn more about Regions’ benefits, please click or copy the link below to your browser.

https://www.regions.com/welcometour/benefits.rf

Location DetailsRiverchase Operations Center

Location:Hoover, Alabama

Bring Your Whole Self to Work  

   

We have a passion for creating an inclusive environment that promotes and values the differences that make each of us stand out as unique individuals and help provide valuable perspective that makes us a better company and employer. More importantly, we recognize that creating a workplace where everyone, regardless of background, can do their best work and thrive is the right thing to do.

   

OFCCP Disclosure: Equal Opportunity Employer/Disabled/Veterans

Job applications at Regions are accepted electronically through our career site for a minimum of five business days from the date of posting. Job postings for higher-volume positions may remain active for longer than the minimum period due to business need and may be closed at any time thereafter at the discretion of the company.