Sr. Specialist Info Sec Analyst- Software Engineer - Cyber Security - New York


: $126,350.00 - $187,860.00 /year *

Employment Type

: Full-Time


: Information Technology

Loading some great jobs for you...


At BNY Mellon, cybersecurity is atop priority for both technology and the business. The members of theInformation Security Division are on constant alert, using their creativity andknowledge of cybersecurity, technology and business processes to develop anddeliver creative solutions. In this fast-paced environment, staff collaborateto respond to current risks, while identifying and anticipating future threats.Our cyber capabilities encompass the full spectrum of services from CyberOperations (SOC, Cyber Threat Intelligence, Vulnerability Management, CyberIncident Response, Penetration Testing & Red Teaming, Cyber Analytics &Fraud, and Insider threat) to Cyber Architecture and Engineering (Network,Platform, Cloud, and Applications Security). Together with the CISO andhis leadership team, staff provide a robust set of cyber services that providefull scope protection and response capabilities across the BNY Mellonenterprise. We help our businesses, the bank?s executive team, and ourboard of directors understand cybersecurity risk and the steps that must be takento create and maintain a secure environment that drives innovation.

BNY is seeking a Cybersecurityengineer to join our Cyber Technology SIEM Engineering team. This is a hands-ontechnical role where you will work on one of the largest SIEM implementationsin investment banking. The Cyber Technology team is a recently formed anddynamic team responsible for the foundational platform of security analytics toprotect critical assets at the bank.

As a Senior CyberSecurity engineer, you?ll build the framework that powers our incidentresponses, metrics, and automation functions. You?ll assist with SIEMintegration, content development and help our SMEs find value in their data.Given the scale, automation is key to build a resilient, performant, and secureplatform.

  • End to end engineering - from log ingestion and collection to data visualization
  • Ensure platform reliability that ingests terabytes of a variety of data per day
  • Extract value from billions of events to measure and manage risk
  • Mentor, coach, and provide guidance to junior team members
  • Provide documentation and cross train colleagues on critical components required to operate the enterprise logging platform
  • Review global standards for log aggregation, ingestion, deduplication, alert generation, and efficient queries
  • Evaluate new technologies and new tools to accomplish our mission
  • Research, install, and configure modular SIEM components
  • Scripting integrations and solutions
  • Responsible for the resiliency of a large 200+ node computing cluster?
  • Collaborate with other members of the information security group
  • Sr. Specialist Information Security Analyst-> > Consults with other IT areas and the businesses and provides professional support for major components of the company's information security infrastructure. Contributes to the development and implementation of security architecture, standards, procedures and guidelines for multiple platforms. Consults with the business and operational infrastructure personnel regarding new and existing technologies. Recommends new security tools to management and reports and provides guidance and expertise in their implementation. Reviews and analyzes complex data and information to provide insights, conclusions and actionable recommendations provides direction and guidance on reports and analyses and ensures recommendations are aligned with customer/business needs and capabilities. Ensures that all significant security concerns are addressed. Recommends course of action to mitigate risk and ensures that appropriate standards are established and published. Contributes to the achievement of area objectives.


    Bachelor's degree in computer science or a related discipline, or equivalent work experience required, advanced degree preferred, 8-10 years of experience information?technology experience required, experience in the securities or financial services industry is a plus.
  • 3+ years of experience in information security or related technology experience required; experience in the securities or financial services industry is a plus
  • Demonstrable experience with SPL creation, Splunk knowledge object management, and development of Splunk dashboards, reports, and alerts
  • Comfortable with querying/pulling large data sets with languages and techniques such as SQL, SPL, and API?s
  • Unix systems administration and CLI tools skillset
  • Experience in large scale Linux environments; familiarity with various performance and system tools (e.g., strace, iostat, free, top, tcpdump , grep, awk, sed , etc?)
  • Scripting and automation using Python/PowerShell/Perl/Bash
  • SW configuration framework (e.g., ansible, chef, salt), and devops lifecycle tools (e.g., git, subversion, artifactory)
  • Understanding of common hacker techniques and detection and methods
  • Data analysis competency

  • Associated topics: identity, identity access management, iam, information security, malicious, protect, security analyst, security engineer, threat, violation * The salary listed in the header is an estimate based on salary data for similar jobs in the same area. Salary or compensation data found in the job description is accurate.

    Launch your career - Upload your resume now!

    Upload your resume

    Loading some great jobs for you...