Senior Information Security Analyst

The POWER of a CAREER! Northpointe Bank is seeking a detail oriented, customer service minded individual to join our team as a Senior Information Security Analyst. This position requires an individual who has the desire to make a difference within the organization. An exceptional ability to grasp new concepts and learn while providing excellent service is critical for this position.
Applicants must be currently authorized to work in the United States on a full-time basis. We are unable to sponsor or take over sponsorship of employment visas at this time.

If you have been looking for an opportunity in the banking/mortgage industry, have the desire to work hard, are dedicated to your individual success, and take pride in the achievement and growth within a team, then we want to hear from you!!!

The Senior Information Security Analyst is responsible for supporting the day-to-day operations of Northpointe Bank s information security program. This includes monitoring systems and networks for threats, responding to security events, and supporting the implementation of security controls and tools. The Security Analyst plays a critical role in safeguarding the confidentiality, integrity, and availability of the Bank s information systems across all internal infrastructure and cloud-based services.

This individual works closely with other information security team members, IT staff, and system owners to analyze risks, investigate incidents, and maintain secure configurations. The ideal candidate has a strong technical foundation, excellent critical thinking skills, and a desire to grow in a fast-paced, regulated financial environment. This position requires strong discretion, independent judgment, and the ability to make decisions that impact the Bank s security posture and regulatory readiness.

Key Competencies

• Security Monitoring & Analysis Continuously monitors system activity and analyzes security logs to detect potential threats and vulnerabilities.
• Incident Response Participates in investigation, containment, and recovery from security events and incidents.
• System & Endpoint Security Supports the implementation and maintenance of endpoint protection, secure configurations, and baseline system controls.
• Security Controls & Tools Management Deploys, configures, maintains, and monitors security technologies (e.g., SIEM, EDR, MFA, DLP, email filtering) to enforce protection and visibility across the environment.
• Technical Communication Effectively documents findings and works with technical teams to explain threats and recommend remediations

Responsibilities:

Threat Monitoring & Incident Response

• Monitor SIEM and security event logs for anomalies, alerts, and indicators of compromise.
• Triage and respond to suspected security incidents, escalating as necessary to senior team members.
• Document all steps taken during incident investigations and participate in root cause analysis.

Vulnerability Management & Endpoint Security

• Conduct scheduled vulnerability scans and assist in tracking remediation activities.
• Support the configuration and operation of antivirus, EDR, and endpoint protection tools.
• Review system logs and assists in maintaining secure baselines for endpoints and servers.

Security Control & Tool Management

• Administer and maintain key security tools such as SIEM, EDR, DLP, MFA, email filtering, encryption platforms, and firewalls.
• Tune and configure security technologies to reduce false positives and improve threat detection accuracy.
• Monitor health, performance, and coverage of deployed tools to ensure continuous protection.

Documentation & Training Support

• Maintain clear and accurate documentation of incidents, security procedures, asset inventories, and system configurations.
• Assist with developing user-facing awareness materials, such as phishing alerts and secure computing tips.
• Contribute to tabletop exercises and simulations to test incident response capabilities.

Technical Assessments & Research

• Perform ad hoc log reviews and system checks in response to unusual activity or user-reported issues.
• Research current threats, vulnerabilities, and tactics to support proactive defenses.
• Collaborate with team members on internal security assessments and remediation efforts.

Reporting & Communication

• Generate weekly or monthly summaries of threat activity, scan results, or endpoint security status.
• Communicate security concerns or findings to Chief Information Security Officer, Steering Committees, and IT teams in a clear and actionable manner.
• Maintain updated documentation to support compliance with internal security policies.

Compliance and Professional Standards

• Meet established standards and guidelines regarding compliance, job knowledge, quality, attendance, efficiency, initiative, customer service, and overall performance.
• Maintain confidentiality and data integrity while adhering to compliance standards in risk reporting and analysis.
• Maintain up-to-date knowledge of compliance rules and regulations, including internal policies and procedures.

Requirements:

Education & Certification

• Bachelor s degree in information technology, Cybersecurity, or a related field preferred.
• CompTIA Security+, CySA+, SSCP, CISSP, or similar certification preferred or willingness to achieve within 12 months.

Experience & Industry Knowledge

• Minimum 3 5 years of experience in information security or IT with security-related responsibilities.
• Exposure to SIEM, antivirEDR platforms, firewalls, and basic cloud security concepts.
• Experience in financial services or regulated industries is a plus.

Technical & Analytical Skills

• Familiarity with system logging, TCP/IP networking, and Windows/Linux administration.
• Basic scripting or automation skills (PowerShell, Bash, or Python) are desirable.
• Ability to analyze logs and alerts to determine the significance of potential security issues.

Communication & Team Collaboration

• Strong interpersonal and communication skills for working with diverse technical and non-technical teams.
• Ability to clearly document findings, procedures, and recommendations.
• Willingness to learn and contribute to a collaborative, team-first security culture.

Organizational & Self-Management Skills

• Strong project management and organizational skills with the ability to manage multiple priorities independently.
• Must be a self-starter, able to work with minimal supervision and maintain high accountability.

Additional Requirements

• Flexible to support after-hours upgrades, emergency incident response, or compliance needs.
• Any equivalent combination of education, experience, and training that provides the required knowledge, skills, and abilities.

Our Hiring Philosophy:

Northpointe Bank recognizes that the quality of our people is the foundation for our success. Attracting individuals who value a challenging work environment that rewards the contributions of its people is the cornerstone of our hiring philosophy.

It is the policy of Northpointe Bank and its subsidiaries to provide equal employment opportunities (EEO) to all persons regardless of age, race, sex, religion, national origin, handicap, marital status, or other attributes not pertinent to the job requirements. This policy reflects our practice of making all employment decisions, from recruitment to promotions, based on an individual's qualifications without discrimination on any basis.

Benefit Information:

• Medical
• Dental
• Vision
• Life, LTD, & AD&D
• Dependent Care Spending Plan (DCSA)
• Employer Stock Ownership Plan with 401(k) feature and company match
• Complimentary Banking Services
• Tuition Assistance

AA - EOE