IT Security Engineer

About The Position

Requirements

• Minimum of five years of IT Security experience required; Banking experience preferred.
• Bachelor’s Degree in related field required.  Five years demonstrated technical experience may be substituted in lieu of degree.
• One or more industry certifications preferred, such as: CompTIA Security+,
• GIAC (Information Security Fundamentals), CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), CCNA Security (Cisco Certified Network Associate Security), SSCP (Systems Security Certified Practitioner), MCSA (Microsoft Certified Systems Administrator) with specialization in Security. Certifications in security specialties may fulfill this requirement.
• Working knowledge of security protocols.
• Working knowledge of IT systems, security measures and best practices required to protect corporate networks.
• Working knowledge of system and network exploitation as well as common attack vectors and various types of malware.
• Working knowledge of mobile device security strategies.
• Broad range of network, infrastructure and telecommunications knowledge required.
• Working knowledge of servers, software, networking equipment, and infrastructure elements required.
• Excellent oral and written communication skills required.
• Analytical skills, such as process flow analysis and systems analysis required.
• The ability to learn and apply new technologies effectively, as well as being able to diagnose technical problems quickly and develop effective solutions required.

Nice To Haves

• Banking experience
• One or more industry certifications preferred, such as: CompTIA Security+,
• GIAC (Information Security Fundamentals), CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), CCNA Security (Cisco Certified Network Associate Security), SSCP (Systems Security Certified Practitioner), MCSA (Microsoft Certified Systems Administrator) with specialization in Security. Certifications in security specialties may fulfill this requirement.

Responsibilities

• Engineer and maintain security systems to meet credit union’s security program. Keep security systems current and keep current on changes to security systems.
• Act as a technical resource from a security perspective for projects in support of the business throughout the year. Clearly identify all required technical tasks and time requirements for each project to assist with determining a realistic estimated completion date. Ensure that all new products and systems are implemented in the most secure manner possible.
• Participate in all internal and external audits, guaranteeing that all security related documentation and materials are accurate, current and readily available. Ensure prompt and thorough response to and remediation of all findings and recommendations.
• Participate in all internal and external security assessments, guaranteeing that all security related documentation and materials are accurate, current and readily available and that the proactive testing is non-intrusive to maintain daily business operations. Ensure prompt and thorough response to and remediation of all findings and recommendations.
• Support and contribute to the organization’s security programs and help ensure that the team appropriately follows all incident response procedures when needed.
• Participate in regular vulnerability assessments of the infrastructure and follow up on and respond to or implement the remediation actions for all findings and recommendations.
• Evaluate the security of the infrastructure and identify areas for improvement. Suggest action plans that will increase the security posture of the organization without limiting or hindering required functionality.
• Develop or review and regularly enhance system hardening procedures for all infrastructure equipment based on industry standards.
• Take an active role in managing vendor relationships and analyzing internal processes to reduce expenses and/or increase efficiencies in support of continuous improvement. Assist with research of expenses and preparation of annual budgets and ensure accuracy when processing any assigned invoices.
• Look for opportunities to work more proactively and less reactively with a goal of continuous improvement. Identify ways in which to better monitor and/or improve the security of all systems and applications in order to increase system and application stability and up-time.
• Assist with IT Security Administrator duties and responsibilities as and when needed.
• Ensure that written procedures are documented for all assigned functions and remain current.
• Participate effectively and efficiently when assigned tasks in support of disaster recovery exercises.
• Continually work on developing a full understanding of the LAN/WAN and Infrastructure.
• Must keep professional skills up to date and consistent with current technology.
• Must be a high energy individual who can multi-task and work well in stressful situations.
• Must be technically oriented and have excellent analytical, organizational and communication skills.
• Perform additional duties as assigned.