Security Analyst

Remote Eligible:
Hybrid

Pay Range: $86,600 - $108,300

We offer a pay-for-performance compensation program including bonuses for all employees and a competitive benefits package. See https://(Use the "Apply for this Job" box below). for a high-level overview of our benefits package and bonus offerings.

This position reports to the Supervisor – Information Security, and will primarily assist in monitoring and reporting security-related information and events to the credit union’s Information Security team. The Security Analyst helps maintain an enterprise-wide information security framework, applying best practices to protect member financial information across all forms, including physical records, internal networks, electronic data, applications, infrastructure, and integrated networks.

The analyst works closely with IT to propose and coordinate information systems security changes, standards, solutions, and methodologies. Responsibilities include production of system security documentation (security audits, certification test plans, SOPs, audit/risk compliance plans), developing and maintaining policies and procedures, and ensuring adherence to cybersecurity maturity levels as defined by FFIEC and NCUA.

• Monitor and analyze security incidents, perform investigative activities, and recommend courses of action.
• Review and maintain intrusion detection and prevention systems, and develop a security reporting dashboard.
• Monitor security vulnerabilities, threats, and events in network and host systems and provide periodic written assessments.
• Collaborate with stakeholders to establish and maintain an information security risk management program.
• Implement credit union IT strategies for handling security incidents and coordinate investigative and reporting activities.
• Conduct periodic audits to determine security violations and inefficiencies.
• Implement security improvements by assessing current situations, evaluating trends, and anticipating requirements.
• Oversee development, accuracy, and compliance with corporate security policies, standards, and procedures.
• Provide security awareness training and guidance to credit union staff.
• Act as the information security liaison during audit examinations and track remediation activities related to vulnerability testing, risk analysis, security assessments, and exam mitigation.
• Identify potential areas of security vulnerability and risk, develop and implement corrective action plans, and advise on avoidance strategies.
• Adhere to all applicable federal and state laws, including the Bank Secrecy Act and OFAC, and communicate suspicious activity and system intrusion incidents to Compliance for regulatory reporting.

Education and Experience

• Bachelor’s degree in Computer Science or a related field.
• Minimum of five (5) years of experience in an information technology environment.
• Minimum of three (3) years as a Security Analyst or Security Specialist (preferred).
• Strong problem analysis and resolution skills at both technical and functional levels.
• Demonstrated technical skills in complex, highly available, secure networks and infrastructure.
• Ability to assess strategic value of IT security systems, policies, and work processes.

Other

Skills and Abilities

• Experience with current security technologies (SEIM, IDS, IPS, firewalls, etc.).
• Preferred platform knowledge:
  Financial Core System Management (Symitar/JHA/Profit Stars and AIX), VoIP Telecommunications Platform (CISCO Server and Voice AVVID / Telepresence), Virtual Platforms (VMware).
• Additional knowledge a plus:
  System Administration (Windows, Linux/Unix), Network Administration (troubleshooting, firewall admin, protocols, routers, switches), IT frameworks (ITIL, TOGAF, COBIT, ISO 27000), Cloud architectures (AWS, Azure, Google), Data Security, Risk Assessments, Online/Mobile Service Channel.

Requires sitting for long periods. Requires speaking or hearing. Occasionally requires standing, walking, stooping, reaching with hands and arms, and lifting up to 10 pounds. Reasonable accommodations available. Limited travel required to visit CU locations.