Cybersecurity Engineer

About The Position

Requirements

• Bachelor’s degree in Computer Science or related field is required. An equivalent combination of education and experience may be considered lieu of the degree requirement.
• Minimum five years’ experience managing and securing cloud and/or physical infrastructure in a midsize organization.
• At least three security-based certifications. At least one must be Azure security related at the intermediate level (ex. SC-300, SC-200, AZ-500). A minimum of one currently active standardized Cybersecurity industry certification. (From: GIAC, ISC2, ISACA, EC-Council). One additional standardized professional certification from above or from an STCU utilized vendor.
• Demonstrated knowledge of application and operating system hardening, vulnerability assessments, security audits, penetration testing, TCP/IP and UDP operation and analysis, intrusion prevention systems, firewalls, VPNs, and other security control systems.
• Proven knowledge of various operating system implementations including Windows, Linux, and virtualization technology.
• Must currently live in Washington, Idaho, Oregon, Florida, Texas, or Wyoming and able to work 8am - 5pm Pacific Time Zone.

Responsibilities

• Design and implement a secure STCU technology infrastructure by applying practiced and proven methodology based on industry best practices.
• Ensure secure deployment and maintenance of STCU’s cloud and on-premises infrastructure while facilitating completion of strategic objectives by serving as the subject matter expert on security and an engaged mentor for IT peers.
• Provide clarity and consistency in infrastructure deployment expectations by creating and communicating documentation of standards and guidelines regarding required controls and monitoring.
• Facilitate efficiency and automation for secure operations by utilizing technology to create deployment templates that enforce a standard subset of controls as guardrails for new implementations.
• Provide expert guidance and direction in the completion of organizational initiatives by exhibiting a high level of awareness and knowledge regarding cybersecurity trends, best practices and methodology.
• Regularly engage with other IT departments to ensure integration of Cybersecurity best practices within STCU systems, software development, and processes to promote the continuous integration of cybersecurity within business strategies and requirements.
• Provide clarity and consistency in infrastructure deployment expectations by creating and communicating documentation of standards and guidelines regarding required controls, sufficient logging and appropriate monitoring.
• Perform escalated incident response to contain, investigate, and prevent security breaches by promptly responding to and investigating events and potential incidents.

Benefits

• Paid time off
• 11 paid holidays
• Medical, dental, vision and life insurance
• Flexible schedules
• Remote-work opportunities
• Training and career development
• Success sharing plan
• 401(k) matching contributions
• Tuition reimbursement