Cyber Security Analyst

Job Description At Regions, the Cyber Security Analyst is responsible for analyzing, identifying, and documenting cybersecurity information and risks. This role requires proactiveness and an understanding of core technology and cybersecurity principles, along with industry best practices to investigate, remediate, and/or escape further evaluation. Primary Responsibilities Analyze and respond to cyber threats within various security tools according to documented procedures. Collaborates with various stakeholders within Cyber Security/Technology departments and standard owners to properly document and communicate security risks Proactively supports a feedback loop related to information and events in order to identify and support the remediation of improving precision and accuracy of analysis. Review and understand Policies, Standards, and Procedures for improved process flows. Supports threat hunting, participate in tabletop exercises, and assist in Incident Response on a rotational job‑duty basis as needed Maintains meticulous records of all work performed, including root cause analysis, indicators of compromise, remediation steps, timeline of events, and impact assessment using clear and concise annotations as needed Stays abreast of global cybersecurity threat trends Supports and collaborates with various cybersecurity teams to document security posture and assess environment for relevant IOCs and gaps Participates in and ensures proper documentation of various security assessments (i.e. Security Architecture Reviews, Red Team assessments, Purple Team engagements, and formal tabletop exercises) as needed Assists with analyzing software for violations in Regions Cyber Security standards as needed Serves as an escalation point, mentor, and trainer for junior analysts May participate in specials projects Ensures compliance with risk management programs, rules and regulations, and cybersecurity practices; identifies opportunities for and supports process improvements; applies disciplined change management practices Requirements High School Diploma or GED and six (6) years of related post‑secondary education and/or experience in Information Security or Information Technology Minimum of two (2) relevant certifications in Information Security or the ability to obtain relevant certifications within twelve months of start date in this position, such as CompTIA Network+/Security+/CySA+, EC‑Council Certified Ethical Hacker (CEH), Cisco CCNA/CCNA‑Security, GIAC GSEC, CDSA, etc. Willingness and availability to work on a pre‑determined shift and rotational on call Preferences One (1) Intermediate to Advanced Amazon Web Services (AWS) or Azure Architect/Administrator and/or Security specialty certification Experience in a Security Operations Center (SOC) environment Experience performing security analysis using Security and Incident Event Management (SIEM) systems Understanding of MITRE ATT&CK Framework and Cyberattack Kill Chain and how these frameworks can be used to identify gaps as well as orient analysts in attack progression. Skills And Competencies Ability to be a self‑starter with initiative and drive for continuous improvement Ability to be a team‑oriented individual who works well with others and places a premium on the group’s success Ability to interpret and ensure compliance with applicable rules, regulations, and industry guidance Demonstrated strong organizational, research, analytical and problem‑solving skills to evaluate situations and respond appropriately Excellent writing and verbal communication skills Familiarity with concepts related to security disciplines such as: malware analysis, computer forensics, cyber incident response, network intrusion detection, network traffic and packet analysis, penetration testing, vulnerability scanning, compliance, audit, or cyber threat intelligence Strong understanding of information security principles, controls, and technologies Strong investigative and problem‑solving skills Preferred Qualifications For This Role Demonstrated working knowledge of enterprise security tools, including Security Information and Event Management (SIEM) platforms, endpoint protection solutions, and email security technologies, with the ability to analyze alerts, identify threats, and support incident response activities. Professional certifications related to cloud technologies or artificial intelligence (e.g., AWS, Azure, GCP, or AI‑focused security certifications) are strongly preferred. This position is intended to be onsite, now or in the near future. Associates will have regular work hours, including full days in the office three or more days a week. The manager will set the work schedule for this position, including in‑office expectations. Regions will not provide relocation assistance for this position, and relocation would be at your expense. Birmingham, AL, Atlanta, GA, or Nashville, TN. Regions will not sponsor applicants for work visas for this position at this time. Applicants for this position must currently be authorized to work in the United States on a full‑time basis. Position Type Full time Compensation Details Pay ranges are job specific and are provided as a point‑of‑market reference for compensation decisions. Other factors which directly impact pay for individual associates include: experience, skills, knowledge, contribution, job location, and, most importantly, performance in the job role. As these factors vary by individuals, pay will also vary among individual associates within the same job. Minimum $70,302.65 USD Median $100,710.00 USD Incentive Pay Plans This job is not incentive eligible. Benefits Information Paid Vacation/Sick Time 401K with Company Match Medical, Dental and Vision Benefits Disability Benefits Health Savings Account Flexible Spending Account Life Insurance Parental Leave Employee Assistance Program Associate Volunteer Program Location Details Riverchase Operations Center Hoover, Alabama Equal Opportunity Employer / including Disabled / Veterans #J-18808-Ljbffr