Senior Mainframe Security Analyst

About The Position

Requirements

• Deep expertise in IBM mainframe security, including RACF administration and architecture
• Strong knowledge of z/OS, UNIX System Services (USS), z/Linux, Db2, and CICS security
• Experience with IBM Trusted Key Entry (TKE) and enterprise encryption technologies
• Proficiency in mainframe utilities and programming languages such as JCL, REXX, and CLIST
• Solid understanding of Public Key Infrastructure (PKI), certificate lifecycle management, and encryption frameworks
• Working knowledge of network security principles and client-server architectures
• Strong analytical, problem-solving, and risk assessment capabilities
• Excellent communication skills with the ability to present technical concepts clearly to diverse audiences
• Ability to work independently while contributing effectively in a collaborative team environment
• Minimum 5 years of experience in system architecture with a focus on information security and technology risk
• Proven experience managing and securing IBM mainframe environments
• Experience supporting audits and regulatory compliance initiatives
• Demonstrated ability to work with minimal supervision and meet deadlines in a high-availability environment
• Bachelor’s degree or Associate’s degree in Computer Science, Information Systems, or a related field; or equivalent work experience
• Excellent verbal and written English communication skills and the ability to interact professionally with a diverse group are required.

Nice To Haves

• 7+ years of experience in systems architecture focused on security
• Experience with SailPoint identity governance integration
• Experience with Venafi for certificate and key management
• Experience mentoring and coaching junior technical staff
• Professional certifications such as CISSP or CISA
• Preferred: CCUE Certification and 5 consecutive years of full-time SECU service

Responsibilities

• Maintain and enhance the security posture of the IBM System z mainframe environment, including installation and configuration of RACF, encryption, key management, and certificate management solutions
• Remediate incidents, vulnerabilities, and service requests within established SLAs
• Develop and maintain comprehensive reporting frameworks that reflect current security posture, policy alignment, project progress, and audit remediation status
• Design and drive mainframe security initiatives based on risk assessments, security policies, and audit findings; collaborate cross-functionally to plan, test, and implement solutions
• Translate complex technical security concepts into clear, consumable formats for IT leadership, business stakeholders, and audit teams
• Lead and contribute to enterprise security discussions, including risk analysis, disaster recovery planning, training, and policy development/review
• Support internal and external audits by preparing documentation, responding to inquiries, and addressing findings
• Provide 24x7 production support for mainframe security-related issues as required