INFORMATION SECURITY ENGINEER

Fox Communities Credit Union•Appleton, WI

1d•Hybrid

About The Position

The Information Security Engineer is responsible for continuously protecting the credit union’s critical information assets, ensuring compliance with corporate and regulatory policies/standards and industry best practices, while simplifying, enhancing, and enabling business initiatives. This role is responsible for providing technical guidance focused on information security architecture, including all security R&D, analysis, and design for corporate computing systems to prevent unauthorized access from both internal and external perspectives. They are considered a subject matter expert in one or more information security disciplines supporting the design, implementation, and management of the organization’s information security architecture. This is a full-time career opportunity based out of the corporate office in Appleton, with potential for hybrid work (1-2 days onsite/week, 3-4 remote) after initial onboarding, requiring candidates to reside in Wisconsin.

Requirements

Minimum: Associate’s or Bachelor’s degree in Information Systems/Information Security certification or equivalent experience
Minimum: Two to four years of experience generally gained in the information security field, with at least three years of networking related experience
Proven ability to provide efficient and professional response to users at all levels of the organization within tight deadlines
Extensive familiarity with Cisco networking, Windows desktop and server operating systems
Knowledge of PowerShell, Python, or other scripting languages
Math: Intermediate statistics or advanced algebraic equations
Proven ability to successfully support and troubleshoot complex applications
Ability to work in a fast-paced environment
Excellent verbal and written communication skills
Candidates must reside in Wisconsin to be considered

Nice To Haves

Bachelor's degree in Computer Science, Management Information Systems, or Business
Recognized security professional certification (CISSP, CISA, CISM, or GIAC)
Three to six years of security engineering in a medium to large IT environment with an emphasis in vulnerability assessments, incident and risk management
Experience in security controls for LAN/WANs, client server, web-based systems, wireless, and databases
Previous experience in financial services
Experience working in an ITIL-based tracking solution
Experience in project management

Responsibilities

Promoting and upholding the Fox Purpose, Mission, Vision, and Values
Performing daily operational real-time monitoring and analysis of security events from multiple sources
Performing security auditing and working with management to address detected security issues
Ensuring proper protection and use of software, including virus/malware protection, patch and feature updates
Developing, planning, and performing configuration changes for our major security infrastructure platforms, including but not limited to Windows, LAN/WAN, firewalls, remote access servers, IPS/IDS, and vulnerability assessments
Providing security-related on-call emergency support, which is defined by the team’s operational procedures
Leading and executing Information Security projects, developing, executing on, and communicating project tasks, timelines, and status information
Assessing, analyzing, and documenting security requirements for all information systems, which may include applications, third-party providers, servers, wireless, telecom, LAN/WAN, databases, and personal computers
Performing collaborative problem-solving activities on the overall security network and application infrastructure consisting of software, code, firewalls, and other devices
Providing expertise on integration of security technologies (such as IPS/IDS, firewalls, AV, SEIM) within a common security reporting system
Developing and maintaining the necessary documentation for Information Security standard operating procedures and standards used to protect all information assets from intentional or inadvertent modification, disclosure, or destruction
Conducting security risk assessments on all computing systems and components, both new and current, utilizing the appropriate security diagnostic tools, identifying security deficiencies, instigating appropriate corrective action, and reporting on findings
Staying current with information security trends and providing threat intelligence in the areas of intrusion techniques, social engineering, technology, and security solutions by researching security resources, and advising management on applicable trends and recommended solutions
Serving as a subject matter expert for designated information security controls

Benefits

Great team environment
Competitive salary
Medical insurance
Dental insurance
Vision insurance
Life insurance
Short term disability insurance
Long-term disability insurance
401k (Roth and Traditional), which includes company contributions including match
Paid time off
Caregiver leave
Paid Volunteer Time Off