SR IT Business Systems Analyst

About The Position

Requirements

• Bachelor’s degree required in Information Security, Computer Science, or related field.
• A minimum of 3-5 years of related experience in Information security and Network support functions.
• Information security certifications Security+ or equivalent.
• Network certifications Network+, Server+ or equivalents.
• Experience with industry affiliations such as Information Systems Audit Control Association (ISACA), Information Systems Security Association (ISSA), Financial Service-Information Sharing and Analysis Center (FS-ISAC).
• Proven experience in Project Management.
• Knowledge of managing security and technology controls.
• Skill with building and executing Information security programs.
• Experience with security incident response process and program.
• Know-how to perform risk analysis activities.
• Advanced problem-solving skills in detecting errors, system problems, and transforming functional requirements into technical solutions.
• Excellent analytical, detail, communication, presentation and interpersonal skills.
• High attention to detail.
• Ability to receive and maintain confidential information.
• Ability to work independently under minimal supervision.

Responsibilities

• Assisting with maintaining the network and security systems that support the financial institution.
• Serving as a Project Manager for risk assessments, pen tests, new security tool implementations and recommendations/findings remediation.
• Supervising external consultants or vendors performing security audits and technical assessments.
• Reviewing security controls and providing operational insight to management of cyber threats.
• Compiling detailed management reports and presentations to translate technical risks into business-level insights for senior leadership.
• Administering and maintaining cybersecurity training for all staff, educating employees on phishing, social engineering tactics, and acceptable use policies to mitigate insider threats.
• Assisting with implementing and maintaining Information security program deliverables.
• Assisting with directing the program components for Information security incident response plan activity.
• Performing regulatory compliance support and analysis activity in meeting National Credit Union Administration (NCUA) and Federal Financial Institutions Examination Council (FFIEC) regulatory compliance obligations.
• Actively participating in third party IT audits, IT Reviews, and IT risk assessments.
• Assisting with annual updates and maintenance of the Business Continuity Plans and BIA.
• Assisting with the annual Vendor reviews.
• Supporting Business Leaders in performing IT security risk assessments for technology and vendors.
• Assisting in managing the development and maintenance of SAG-AFTRA FCU’s information security program.
• Participating in ongoing assessments to periodically re-evaluate security of SAG-AFTRA FCU’s systems, foreseeable risks, and mitigation strategies.
• Notifying the appropriate personnel of any suspected incidents in a timely manner and assisting in the investigation of incidents as necessary.
• Reporting directly to the CIO on status of IT related audit remediation items and matters involving IT Audits, assessments, and findings.
• Providing support for security reviews of new and existing systems.
• Collaborating with IT and Business units on annual IT risk assessments and remediation.
• Recommending specific improvements to security and internal controls and following up on all recommendations.
• Coordinating with internal and external vendors to conduct periodic vulnerability scans and penetration tests.
• Working with IT staff to remediate any issues discovered and reporting progress to the CIO.
• Assisting as a liaison between third party vendors and SAFCU, participating in quarterly services reviews, reviewing incident reporting.
• Other duties as assigned by management.

Benefits

• Competitive pay
• Subsidized health care including medical, dental and vision
• FSA and HSA
• Company paid Life insurance
• Vacation and Sick time
• Holidays
• 401K Retirement Savings Plan