Experience Inc. Jobs

The Bank sponsors individuals for TN and H-1B transfers on a case by case basis. Please note that this position is not open to anyone on an F-1 student visa including those eligible for CPT/OPT or the Stem OPT extension.

This role offers a hybrid work schedule; offering the flexibility to work remotely two days a week, while providing the opportunity for in-person collaboration at our Buffalo, NY Tech Hub.

Overview:

An ideal Data Loss Prevention Analyst will ensure the integrity and resilience of the organization's security and information systems through the identification and investigation of potential threats. The candidate will present experience on various Data Loss Prevention tool sets, conduct highly technical and detailed data analysis of anomalous activity, lead internal investigations coordinating with key organizational stakeholders, and provide timely updates to leadership.

Primary Responsibilities:

• Characterize and analyze complex network traffic using analysis techniques such as contextual analysis, anomaly detection, and network traffic analysis to identify anomalous activity and potential threats to network resources and provide proactive recommendations to maintain or improve security posture.

• Complete data loss event analysis in coordination with past incident analysis data and/or current or emerging threat analysis and provide recommended remediation efforts.

• Identify opportunities for tuning and development of rules, alerts, and correlation logic for security systems and tools to share with Data Loss Prevention Engineering that will strengthen the security of the organization.

• Immediately partner with key organizational stakeholders to include legal, human resources, business lines, privacy, etc. when identifying suspected imminent or hostile intentions or activities that could impact the organization's objectives, resources, or capabilities.

• Maintain comprehensive documentation and logs of security threats, analysis, responses, and procedures in incident tracking and solution databases that can be utilized to debrief senior Cybersecurity leadership, generate metrics, and conduct long term trend analysis.

• Assist in development of technical documents, incident reports, findings, and use cases from intrusion artifacts, log summaries, and other discovered data to the team and team leader(s).

• Collaborate with cybersecurity and governance teams to regularly review and refine policies and procedures, utilizing insight from internal incident data and emerging threats.

• Actively engage in cross-functional collaboration with manager, specialists, and incident responders to review and determine next steps for identified potential threat and suspected incidents.

• Utilize emerging threat trends to inform recommendations for new security practices, tools, and techniques.

• Understand and adhere to the Company’s risk and regulatory standards, policies, and controls in accordance with the Company’s Risk Appetite. Identify risk-related issues needing escalation to management.

• Maintain M&T internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators as applicable.

• Promote an environment that supports diversity and reflects the M&T Bank brand.

• Complete other related duties as assigned.

Education and Experience Required:

• Intermediate knowledge of networks, user, and end-point monitoring tools.

• Bachelor's degree and a minimum of 2 years’ relevant work experience, or in lieu of a degree, a combined minimum of 6 years’ higher education and/or relevant work experience.

• Experience conducting analysis of security logs, network traffic, and endpoint data to identify indicators of compromise and potential security incident.

• Understanding of cybersecurity principles, such as real-time monitoring, escalation procedures, documentation and reporting, tool optimization, and incident recovery planning.

• Excellent communication and interpersonal skills.

• Ability to effectively communicate technical information to technical stakeholders.

• Experience effectively collaborating with peers and leaders within department and with business partners across the organization.

• Experience training analysts to ensure they have basic knowledge of and how to use security monitoring systems.

• Knowledge of digital evidence preservation concepts.

• Basic understanding of security orchestration, automation, and response.

• Intermediate proficiency with security information and event management tools.

• Basic knowledge of threat intelligence concepts.

• Intermediate ability to collect artifacts and document incidents.

• Intermediate ability to logically identify and analyze protection opportunities in data loss prevention and cloud access security broker tools.

s

Education and Experience Preferred:

• Experience with various Data Loss Prevention tool sets and their usage in the enterprise.

• Experience training analysts to ensure they have basic knowledge of and how to use security monitoring systems.

• Intermediate Cybersecurity certifications (e.g., CySA+,CEH).

• Prior experience working in a highly regulated industry (e.g., finance, healthcare, government).

• Basic knowledge of scripting languages.

#LI-JB3

M&T Bank is committed to fair, competitive, and market-informed pay for our employees. The pay range for this position is $32.19 - $53.65 Hourly (USD). The successful candidate’s particular combination of knowledge, skills, and experience will inform their specific compensation.

Location

Buffalo, New York, United States of America

M&T Bank Corporation is an Equal Opportunity/Affirmative Action Employer, including disabilities and veterans.