Prin Security Analyst

Empowered to live. Inspired to work.

Compeer Financial is a member-owned cooperative located in Illinois, Minnesota and Wisconsin. We bring together team members with a variety of backgrounds and experiences to help provide financial services to support agriculture and rural communities. Join us in a culture that not only promotes meaningful work and professional development, but provides a flexible, hybrid work environment and excellent benefits, which empower you to thrive both personally and professionally.

• Hybrid model - up to 50% work from home
• Flexible schedules including ample flexibility in the summer months
• Up to 9% towards 401k (3% fixed Compeer contribution plus up to 6% match)
• Benefits: medical, dental, vision, HSA/FSA, life & AD&D insurance, short-term and long-term disability, wellness program & EAP
• Vacation, sick leave, holidays/floating holidays, parental leave, and volunteer paid time off
• Learning and development programs
• Mentorship programs
• Cross-functional committee opportunities (i.e. Inclusion Council, emerging professional groups, etc.)
• Professional membership/certification reimbursement and more!

Casual/seasonal & intern team members are not eligible for benefits except for state-mandated programs.

To learn more about Compeer Financial visit

This position offers a hybrid work option up to 50% remote and is based out of any of Compeer's office locations.

This position creates, implements and maintains corporate-wide security programs that assist in improving overall security posture of the organization. Provides guidance, assurance and information protection to maintain the confidentiality, integrity, and availability of Compeer critical resources. Contributes knowledge and expertise to ensure that information assets are protected and secure. In this position, you will guide solutions to promote secure business‑to‑business initiatives, third‑party relationships, outsourced solutions and vendors.

Provides mentorship and guidance to less experienced team members.

• Remains current with new security threats and assess systems and solutions to ensure they can defend the business.
• Researches capabilities of current and new disruptive solutions on the market and makes recommendations to security group on a consistent basis.
• Develops security team standards, policies, procedures and processes.
• Support and provide direction for use of technical systems, monitors for unusual and suspicious activity across a wide range of products, data centers, and cloud systems.
• Partners with Business Technology on security configuration standards for systems and business applications.
• Participates in technical and non-technical projects requiring information security oversight and to ensure policies and procedures are met.
• Provides cybersecurity guidance to leadership.
• Ensures that cybersecurity-enabled products or other compensating security control technologies or processes reduce identified risk to an acceptable level.
• Performs security reviews, identifies gaps in security architecture, and develops a security risk management plan.
• Implements security measures to resolve vulnerabilities, mitigate risks, and recommend security changes to system or system components as needed.
• Analyzes and reports system security posture trends.
• Analyzes cyber defense policies and configurations and evaluates compliance with regulations and organizational directives.
• Prepares audit reports that identify technical and procedural findings and provide recommended remediation strategies/solutions.
• Leads the Incident Response Team during activations for security or operational events.
• Coordinates, leads and conducts adversary simulation, hunt teaming, assumed breaches and white-box penetration tests. Develops and executes attack plans, scripts, tools and methodologies to strengthen the offensive operations.
• Plans and coordinates the delivery of classroom techniques and formats (e.g., lectures, demonstrations, interactive exercises, and multimedia presentations) for the most effective learning environment.

• Bachelor's degree in security management, cybersecurity, computer science, management information systems, or business with technical training in networking, technical support or security or an equivalent combination of education and experience sufficient to perform the essential functions of the job.
• Expert-level experience in physical asset security, information technology, risk management, security services, or infrastructure technology.
• CISSP certification preferred.
• Ability to adapt and stay a step ahead of cyber attackers and stay up to date on the latest attack methods.
• Expert experience driving measurable improvement in monitoring and response capabilities at scale.
• Expert ability to identify and resolve problems, utilizing strong analytical skills.
• Advanced experience in cloud computing technologies, including software,…