Cyber Security Analyst

Position Cyber Security Analyst Location LoSo - Charlotte, NC, 3700 South Blvd. Suite 400, Charlotte, NC 28209 Job Id 1130 # of Openings 1 Job Grade 12 Primary Functions The Cyber Security Analyst is responsible for proactively identifying, investigating, and mitigating cybersecurity threats across internally developed applications, vendor platforms, and core financial services systems. This role focuses on threat hunting, vulnerability analysis, and validation of security alerts by working closely with security partners, threat intelligence sources, and third-party security operations center (SOC) services to identify indicators of compromise and improve detection of emerging attack techniques. On a day-to-day basis, the analyst enhances and maintains security information and event monitoring (SIEM) logging and alerting, validates vulnerabilities and investigations, and ensures systems are monitored and patched in excess of regulatory and organizational standards. The role also supports risk management and compliance efforts by assisting with data flow documentation, risk assessments, vendor reviews, and business continuity planning, while clearly communicating findings and recommendations to technical and non-technical stakeholders. Responsibilities Monitor, analyze, and investigate security events using SIEM and related tools, developing industry best-practice and custom detection rules to identify malicious activity and provide enterprise network visibility. Detect, respond to, and investigate advanced threats by leveraging threat intelligence, threat actor techniques, and behavioral analysis to prioritize mitigations and reduce organizational risk. Perform incident response, digital forensics, and root cause analysis to determine scope, impact, data exposure, and appropriate remediation actions for security incidents. Design and implement changes in accordance with established security playbooks to reduce cybersecurity risk across on-premises and cloud environments, protecting the credit union’s business operations, brand, and members. Evaluate and manage endpoint, system, and network security controls, including patching, vulnerability management, and third-party security tools, ensuring effective protection and risk mitigation. Partner with Risk Management and business stakeholders to support vendor risk reviews, business continuity planning, and enterprise risk assessments. Assist in providing security metrics, reporting, and documentation to communicate security posture, trends, and benchmarking against similar complexity organizations to management and leadership. Document and communicate threat-hunting methodologies, findings, and recommendations, ensuring transparency, repeatability, and alignment with organizational risk tolerance. Participate in audits, governance activities, and security program initiatives, supporting internal and external assessments, remediation validation, change management, and continuous improvement efforts. Ensure compliance with applicable federal regulations, industry frameworks, and credit union policies, including FFIEC, NCUA, NIST, PCI. Comply with all Federal regulations, Credit Union policies and procedures, including Bank Secrecy and the USA Patriot Act. Perform job duties in accordance with the Credit Union's values, mission and vision. Performs other duties as assigned. Minimum Requirements Minimum of two (2) years of professional experience in Cybersecurity, preferably within the financial services or other regulated industry. Bachelor’s degree in Information Security, Cybersecurity, Computer Science, Information Technology, Business, or a related field, or equivalent relevant experience. Demonstrated experience correlating security events across large, diverse datasets and applications to identify, investigate, and resolve security issues. Proficiency analyzing network and host-based security logs to detect threats, validate alerts, and support incident response activities. Strong written and verbal communication skills, with the ability to effectively communicate complex technical concepts to both technical and non-technical internal and external stakeholders. Proven ability to work collaboratively within a team environment, contributing to the resolution of complex security issues while balancing risk mitigation with business needs. Knowledge of Symitar core banking and back-office operations is a plus, but not required. Solid understanding of cloud and on-premises infrastructure, including VMware, Azure, Windows, macOS, Linux, and web-based APIs. Ability to work independently with minimal supervision, managing priorities and delivering results in a dynamic environment. Ability to handle sensitive information with discretion and maintain strict confidentiality in accordance with organizational policies and regulatory requirements. #J-18808-Ljbffr