|Preferred GIAC Certifications||GPEN, GXPN, GWAPT|
|Contact Name||Happy Z PenTester|
*This Penetration Tester position is available as fully remote!
*Less than 5% travel!
A bit about us:
The future of banking is here! Did you know that Zions Bancorporation is the second largest hirer of technical professionals in the Salt Lake City area? At Zions, our difference is our people, so we’re dedicated to helping you grow in your career.
Enterprise Information Security (EIS) is integrated with the Technology division (1000+ people) and is responsible for enabling secure innovation and business growth for 10,000+ employees across 11 states. EIS is undergoing rapid growth and we have a bold vision to create a unique and relevant program that will align with and support our organization’s mission. What’s great about our department is that we laugh with each other, have Executive and Board level visibility and support for our work, and are driving highly visible, enterprise-wide initiatives. We’re focused on creating business value and are seeking like-minded professionals to join our team!
Let’s talk about you:
*lead by example?
*enjoy collaborating with and influencing others to achieve the right outcomes?
*love securing information assets from malicious users?
*want to work on the implementing leading-edge solutions to enterprise challenges?
*demonstrate persistence in reaching goals in the face of adversity?
*function as team player who isn’t afraid to challenge the status quo?
*want to work on a team where your input matters?
*think in terms of confidentiality, integrity, and availability?
*excel in learning things quickly and thoroughly?
*enjoy sharing your hard-earned knowledge to help others grow and make a real difference?
*transform ambiguity into focused, productive, impactful outcomes?
*love to get things done, the right way, the first time?
If you think systematically, achieve purposefully, speak diplomatically, and act with integrity, the EIS department can’t wait to hear from you!!
The scope and impact of your work:
As a Cybersecurity Analyst you will perform security tests on networks, web-based applications, and computer systems. Design tests and tools to try to break into security-protected applications and networks to probe for vulnerabilities. You will play a key role in keeping our employees and customers data safe and secure.
What we expect:
(We expect a lot. Most importantly, we want to work with awesome team players who are humble, hungry, and people smart. Please consider applying even if you don’t feel you’re a 100% fit. And, remote work is our new normal for the foreseeable future—join us virtually from anywhere in the US!)
The Cybersecurity Analyst role requires a dynamic personality that can work successfully in a diverse environment, drive clarity, and reduce ambiguity. The ideal candidate demonstrates a unique blend of technical skills, business acumen, and the ability to think strategically. This person will be:
*Maintaining knowledge of the latest tactics, techniques and procedures for penetration testing and support in the evaluation of new penetration testing tools.
*Testing methods to pinpoint ways that attackers could exploit weaknesses in security systems.
*Conduct network and system security tests, which evaluate how well an organization's system conforms to a set of established criteria.
*You will be responsible to make suggestions on security policy improvements, and work to enhance methodology material.
*After conducting thorough research and testing, you will be required to document and present your findings, write security reports, and discuss solutions with internal teams and management. You will also provide feedback and verification after security fixes are issued.
*You will be expected to keep up to date on security software packages and learn new security protocols and computer technologies that could be exploited.
*Work with the internal cyber vulnerability management team on vulnerability identification and analysis.
*Experience with ServiceNow Vulnerability Response Module
*Other duties as assigned
Your experiences and skills:
*Solid understanding of networking and system administration.
*Understand cryptography, reverse engineering, web applications, databases, and wireless technologies.
*Programming languages (such as Ruby or Python)
*Security assessment tools (such as Aircrack-ng, Burp Suite, SQLmap, Nessus)
*Security frameworks (such as NIST, SOX, HIPAA, ISO)
*Operating systems (such as Linux, Unix, Windows)
*Excellent problem-solving skills to determine the most effective way to correct issues that arise
*Ability to review data and analyze the processes needed to correct security issues
*Working knowledge of regulatory guidelines and standards, compliance standards and policies, audit techniques, regulatory issues, operations, and procedures as they relate to the organization is preferred
*Experience working in a large organization
*Post-secondary degree/diploma in information systems or related field, or equivalent experience Minimum of 5 years of experience in an IT role, and a minimum of 3 years of experience in a related IT security role.
*Certified Ethical Hacker (CE|H) or equivalent experience is preferred.
*Requires a Bachelor's in Computer Science, Information Systems or a related field and 4+ yrs IT and Information Security, *Vulnerability Management and/or Threat Intelligence work experience with a broad exposure to systems analysis, networks, operating systems, web applications, development, database design and administration or other directly related experience.
*A combination of education and experience may meet requirements.
This position can be located in Salt Lake City, Utah or 100% remote.
Pay Range: $70,000-120,000