Information Security Analyst

Information Technology
261115 Requisition #
Follow more jobs like this

Get real-time updates by following related social accounts.

The Federal Reserve Bank of San Francisco is looking for an Information Security Analyst/Sr. Information Security Analyst to join our Information Security Team. The Federal Reserve has a global mission and offers leading edge work in a stable environment with competitive pay, superior benefits AND a true “work life balance”. If you desire to be part of an elite team and to develop your skills and experience beyond anything available in the commercial sector, the Federal Reserve is the place for you!


In this role, you will focus on the needs of Information Security Operations in the 12th District including branch offices, bringing your security expertise to assist in threat and vulnerability management and incident response. You will help strengthen the position of the District’s Information Security Department as a partner to the Bank’s business areas. Additionally, you will have the opportunity to manage/contribute on Information Security Operations projects that further enhance the Bank’s Information Security posture.

Essential Responsibilities:
  • Evaluate and prioritize vulnerabilities to determine the appropriate risk level based on key factors including potential business impact, application/data criticality and existing mitigating controls

  • Partner with our National Incident Response Team to monitor, manage, and reduce overall system and network vulnerabilities and incidents for the 12th district

  • Review data breach notifications and assists in investigations

  • Examine source code of websites and applications on multiple devices such as laptops, phones and tablets, to identify potential vulnerabilities and security flaws

  • Compiles, summarizes, and presents research on meaningful issues including security alerts, communications, training and education

  • Oversee and handle audit finding remediation with technical and business owners, including generating requirements for full remediation, providing feedback and suggestions on managerial responses to findings, as well as tracking progress and providing status updates to the compliance team for reporting purposes

  • Review Data Loss Prevention, DLP, System and assist users and managers in resolving DLP events

  • Collaborate with staff from various groups communicating security issues and responding to requests for assistance and information

  • Build and maintain Information Security Operations documentation, such as processes, procedures, incident reports and other documentation as needed

  • US Citizenship is required.

  • Bachelor’s degree in Computer Science, Information Systems, Computer Engineering, Cybersecurity, Systems Analysis or a related field or equivalent work experience

  • Information Security Analyst typically requires two or more years of information security related experience in areas such as: security operations, testing, and/or system or security administration. Senior level, typically requires five or years of combined IT and security work experience with a broad range of exposure to systems analysis, application development, systems administration and over three or more years’ experience designing and deploying security solutions, working knowledge of security issues

  • Collaborative, team oriented mindset

  • Effective oral and written communication skills

  • Experience with including vulnerability management, penetration testing, data loss prevention systems

  • Knowledge of the current Information Security Landscape

  • Experience with industry frameworks such as OWASP, NIST 800-53, NIST CSF, Mitre ATT&CK

  • Implementing, managing or administration of any these systems: Security Information and Event Management systems, Data Loss Prevention Systems, Vulnerability Management systems and other common vulnerability and assessment tools

  • Working knowledge of secure coding practices, ethical hacking and threat modeling

  • One or more of the following certifications: GIAC Information Security Fundamentals (GISF), CompTIA Security+ (CS+), EC-Council Certified Security Analyst (ESCA), Certified in Data Protection (CDP)

  • At Senior level, one or more of the following certifications: Certified Security Analyst (ECSA), CompTIA Cybersecurity Analyst (CSA+), Certified Information Systems Auditor (CISA)

  • Ability to travel up to 5%

    Desired Skills:
  • Experience presenting complex information security information to many audiences

  • Previous experience working in a high security environment in one or more of the following sectors: finance/banking, government, healthcare, regulated industry or critical infrastructure as defined by NIST

  • Demonstrable hands on experience with any of the following:

  • Network or systems administration, architecture, or design

  • Python, Java, or other development experience

  • Technical documentation including: processes, procedures, policies, standards, guidelines and other industry standard technical documentation

  • Ability to understand complex infrastructure architectures including diagrams, data flows, database entity relationship diagrams, software architecture diagrams and other standard technical documentation

  • Incident management, disaster recovery and business continuation experience


    At the Federal Reserve Bank of San Francisco we believe in the diversity of our people, ideas, and experiences and are committed to building an inclusive culture that is representative of the communities we serve. The Federal Reserve Bank of San Francisco is an Equal Opportunity Employer.


Previous Job Searches

Activity Feed

Job shares through The Federal Reserve System
Someone applied to the 2020 Summer Internship Program position. 1 day ago
Someone applied to the Business Relationship Management Specialist position. 1 day ago
Someone applied to the Institute Research Economist / Senior Institute Research Economist position. 1 day ago
Someone applied to the Assistant Examiner (Consumer) position. 2 days ago
Someone applied to the Law Enforcement Officer position. 2 days ago

Similar Listings

California, San Francisco

📁 Information Technology

Requisition #: 261638

California, San Francisco

📁 Information Technology

Requisition #: 261171

California, San Francisco

📁 Information Technology

Requisition #: 260639