Security Engineer II

About The Position

Requirements

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field, or equivalent experience.
• Working knowledge of information security frameworks and standards such as PCI DSS, NIST 800 53, ISO 27001, CIS, MITRE ATT&CK, and OWASP Top 10.
• Proficiency with Microsoft Windows desktop and server environments.
• Basic knowledge of Linux operating systems.
• Understanding of networking concepts, protocols, and security principles.
• Familiarity with virtualization technologies and SAN environments.
• General understanding of cloud and SaaS security concepts.
• 3 to 5 years of experience in information security, cybersecurity, or IT infrastructure roles with a security focus.
• Hands on experience with security technologies such as endpoint protection, firewalls, IDS/IPS, SIEM, vulnerability scanners, and MDM solutions.
• Experience supporting or implementing security controls in a regulated environment (financial services preferred).
• Experience working with regulatory and compliance requirements such as PCI, GLBA, NCUA, SOX, or similar.
• Strong analytical, troubleshooting, and problem solving skills.
• Ability to clearly document technical procedures and security findings.
• Strong communication and collaboration skills.
• Customer service mindset with a willingness to assist others.

Nice To Haves

• Security certifications such as GSEC, SSCP, Security+, or similar preferred or willingness to obtain.
• Experience with technologies such as VMware vCenter, Cisco networking and security products, and Citrix environments preferred.
• Working knowledge of Azure, Entra ID, and security monitoring or auditing tools.

Responsibilities

• Design, implement, configure, and maintain information security tools, technologies, and controls to protect corporate systems and data.
• Assist with implementing and maintaining information security architecture, standards, and best practices.
• Support the development and maintenance of system security requirements, baselines, and hardening standards for infrastructure, applications, cloud, and SaaS platforms.
• Monitor security tools and alerts, investigate potential threats, and assist with timely incident response and remediation.
• Perform security assessments, vulnerability scans, and system audits to ensure compliance with information security policies, procedures, and standards.
• Assist with preparation, testing, and documentation of incident response plans.
• Support security investigations by collecting evidence, documenting findings, and assisting with root cause analysis.
• Assist with aligning security controls to applicable frameworks such as PCI DSS, NIST 800 53, ISO 27001, CIS, MITRE ATT&CK, and OWASP Top 10.
• Implement and maintain security appliances and platforms including endpoint protection, firewalls, IDS/IPS, MDM, proxies, SIEM, and vulnerability management tools.
• Collaborate with IT teams to ensure secure configuration, deployment, and operation of hardware, software, and network infrastructure.
• Assist with vendor security reviews and due diligence activities as needed.
• Maintain system and security design documentation and operational procedures.
• Provide security related guidance and support to IT staff and business partners.
• Participate in regulatory exams, audits, and internal reviews by providing documentation and technical support.
• Stay current on emerging threats, vulnerabilities, and security technologies relevant to the financial services industry.
• Travel to branch locations as needed to support security initiatives.
• Preserve the confidentiality of Credit Union data and records.
• Perform other duties as assigned.

Benefits

• Comprehensive medical insurance plan
• Dental and vision insurance
• Generous paid-time-off
• 12 paid holidays
• Annual bonus (discretionary bonus based on achievement of organizational scorecard results)
• 401(k) plan
• Wellness program
• Tuition assistance
• Employee loan discount
• Employee Assistance Program (EAP)
• Life and disability coverage