Description Locations: Onsite in Memphis, TN; Maryville, TN; Birmingham, AL; Lafayette, LA; New Orleans, LA; Charlotte, NC; Raleigh, NC; or Dallas, TX. Summary The Cyber Security Engineer - Threat Management is a mid-level Cyber Security Engineer responsible for second level security event/incident response along with the collection, analysis, and dissemination of cyber threat intelligence. These capabilities will include timely collection of advanced warning of impeding IT vulnerabilities or threats, a thorough correlation, analysis, and storage of threat intelligence information, and operational support of the incident response process. The candidate They will deliver and sustain the enterprise management strategy and solutions from a governance, process, discipline and technology standpoint, to support enterprise environments and our presence in various cloud instances and on-premises data centers covering threats / FIM / configuration management / incident response / vulnerability management. Secondary roles include IPS, EDR, TIP tools, and other information security solutions.
Essential Functions of the Job:
- Responding to SOC alerts performing an analysis, and containment of security events.
- Provide tier II support for escalated security incidents.
- Support the Cyber Incident Response Team (CIRT) in the effective detection, analysis, and containment of attacks.
- Operate the configuration management program to track configuration drift over time, working with asset custodians to correct any configuration deviation from baseline.
- Operate the File Integrity Management program to track changes to file systems on critical systems.
- Operate the processes necessary to collect threat intelligence, analyze the data for patterns and actionable information, and create intelligence products for other teams to consume using MITRE ATT&CK Framework.
- Identifies security risks and exposures, determines the causes of security violations and suggests procedures to halt future incidents.
- Integrate appropriate systems and logs into the global threat management platform or Security Event and Incident Management system to properly protect critical assets.
- Design, test and develop specific content and alerting to identify threats against critical assets.
- Document incident response playbooks for new threat content and alerts.
- Maintain an understanding of attacks, vectors and emergent threats.
- Obtain and share cyber security intelligence with security partners, vendors and law enforcement as necessary.
- Produce weekly and monthly operational metrics.
- Work with vendors and internal customers to respond to escalations.
- Recommends Preventative Security Actions.
- Recommends Corrective Security Actions.
- Comprehension of basic banking systems.
Job Requirements: - High School Graduate or Equivalent.
- Bachelor's Degree Preferred but not required in Computer Engineering/Computer Science or related field.
- CISSP, GSEC, GCIH, CEH or other security certifications preferred, but not required.
- Three year minimum working in cyber threat or information security.
Knowledge and Skills Requirements: - Familiar with compliance regulations such as SOX, PCI-DSS, GLBA, and Federal Banking regulations.
- Proficient with cloud security and monitoring capabilities in Azure
- Proficient with Incident Response in Azure
- Proficient with configuration management scanning tools.
- Knowledgeable with Tripwire or other file integrity management tools.
- Excellent team skills and integrity in a professional environment.
- Ability to Map threats and vulnerabilities to MITRE.
About Us First Horizon Corp. (NYSE: FHN) , with $82.6 billion in assets as of September 30, 2024, is a leading regional financial services company, dedicated to helping our clients, communities and associates unlock their full potential with capital and counsel. Headquartered in Memphis, TN, the banking subsidiary First Horizon Bank operates in 12 states across the southern U.S. The Company and its subsidiaries offer commercial, private banking, consumer, small business, wealth and trust management, retail brokerage, capital markets, fixed income, and mortgage banking services. First Horizon has been recognized as one of the nation's best employers by Fortune and Forbes magazines and a Top 10 Most Reputable U.S. Bank. More information is available at (:/; Cz2fjcuE.hpq9hPnrucZCPIAVPojVESItIq-FPzhurNdCrQ3JE8Rkx3gMd70nIk6 kmPxl66 oJCEsXs0gNunPowMAMHCmBYPOtUxUGI$) .
Benefit Highlights• Medical with wellness incentives, dental, and vision
• HSA with company match
• Maternity and parental leave
• Tuition reimbursement
• Mentor program
• 401(k) with 6% match
• More
Corporate Diversity Commitment :
At First Horizon, we focus on what matters most to our associates, clients and the communities we serve. As we continue to evolve, we remain committed to an open and supportive workplace and providing opportunity and access to capital and counsel for all.
Follow Us Facebook
X formerly Twitter
LinkedIn
Instagram
YouTube
Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities
The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)