Information Security Engineer

Description

YOUR PURPOSE

The Information Security Engineer is responsible for the design of the Credit Union’s cybersecurity systems to protect computer systems and networks. This position is also responsible for facilitating the confidentiality, integrity, and availability of all member data, and protecting its infrastructure from internal and external threats and vulnerabilities and ensures Credit Union compliance with statutory and regulatory requirements regarding information access, security, and privacy as it pertains to PCI, GLBA, or as directed. This position is materially responsible for designing, integrating, implementing, and managing all enterprise network security systems, solutions, and services. Insofar, these responsibilities also consist of providing senior-level engineering, analysis, consultation, programming, and the identification, reporting, and resolution for security problems, high-risk exposure(s), and regulatory compliance. The Information Security Engineer will work in collaboration with the Information Security and Infrastructure teams to provide support for security tools and technologies such as firewalls, proxy servers, remote/VPN access, and other technologies as directed.

YOU ARE RESPONSIBLE FOR

Security Architecture

• Architect and approve the design of all credit union information security systems, to include identification, authorization, and access processes and procedures
• Design, monitor and manage all Information Security defense and authentication/authorization systems and programs
• Provide guidance and advocacy regarding prioritization of infrastructure investments relating to all matters of information and cybersecurity
• Provide analysis for information security trends internal and external to the organization and communicate all security related issues and activities affecting the credit union to the Information Security Officer
• Participate in the performance of risk assessments or execution of system tests to ensure the functioning of data processing activities or security measures
• Detect and understand potential/actual threats, vulnerabilities, security, and compliance controls; direct the remediation, and communicate issues to the appropriate Information Technology leadership or Senior Manager
• Ensure annual audits and assessments meet requirements 

Security Systems Engineering

• Design, engineer, and implement security solutions to support the technology blueprint and digital assets of the Credit Union
• Develop and maintain current network and information security architecture and design documentation
• Assess network and systems operational risk before, during, and after systems and services commission and decommission, to include all services moved to cloud-based technologies
• Provide technical and organizational leadership in specialized areas of network and information security standards, practices, and procedures
• Lead security design review and threat modeling for new features and functionality as it relates to existing and new systems and services
• Perform risk analysis of engineering initiatives and production services; prioritize projects requiring focused testing; and manage vulnerability remediation processes for multiple departments and business units

Analysis and Administration

• Responsible for the security administration of enterprise-wide system and applications to ensure compliance with processes and procedures
• Monitor security vulnerabilities by analyzing a variety of network and host-based security appliance logs and determine the correct remediation action(s) and/or escalation path for each incident
• Engage with vendors as needed, and create use-cases for security operation monitoring
• Conduct and report on investigations of information security breaches to identify vulnerabilities and evaluate the damage
• Review security assessments for computing environments or assess for compliance with cybersecurity standards and regulations
• Provide support for staff training and oversee the use of information security standards, policies, and best practices as directed

SUCCESS LOOKS LIKE

Our individual contributor success competencies, coupled with our CORE Values, drive our ability to fulfill our Promise of "Guiding members in the direction of their dreams".

• Action Oriented: Takes on new opportunities and tough challenges with a sense of urgency, high energy, and enthusiasm.
• Collaborates: Builds partnerships and works collaboratively with others to meet shared objectives. Readily takes action on challenges, without unnecessary planning. 
• Instills Trust: Gains the confidence and trust of others through honesty, integrity, and authenticity.
• Communicates Effectively: Develops and delivers communications that convey a clear understanding of the unique needs of different audiences.
• Member Focused: Builds strong member relationships and delivers member-centric solutions, both internally and externally. 
• Self-Development Focused: Actively seeks new ways to grow and be challenged using both formal and informal development

COMPENSATION

At Horizon Credit Union, we believe in attracting and retaining talented team members who embody our CORE Values of Capability, Optimism, Responsibility and Empathy. Our pay values are reflected in our compensation philosophy which rewards individual performance and the potential to contribute to our teams’ overall success long-term.

The full pay range for this position across all the states in which we hire is $82,741-$136,523 annually.  The figures shown represent the minimum and maximum of the range for this role. Individual offers are made dependent upon a candidate’s experience, education, and skill level.

Benefits, Perks, and Other Good Stuff

We know there’s more to life than just a job. Our benefits are designed to help support our employees and their well-being. Take a look at what we have to offer:

• Medical, Dental, & Vision Insurance for full-time and reduced full-time employees & their families
• Telemedicine for part-time employees
• Paid Group Life and Disability Insurance 
• Employee Assistance Program
• Tuition Reimbursement Program
• 401K Retirement Savings
• Employer 401K Retirement Contributions & Matching upon eligibility
• Discretionary Annual Incentive Bonus based on eligibility criteria
• Paid Time Off per Full Calendar Year:
• 10 hours of PTO per month (prorated for reduced full-time and part-time)
• Paid Birthday Holiday
• 2 Paid Wellness Days
• Up to 24 hours of Paid Volunteer Time annually
• 11 Paid Holidays
• And More!

Requirements

EXPERTISE YOU NEED

Education & Experience

Bachelor's degree in Computer Science or a related technical or engineering discipline preferred. Minimum five years experience in information security/cybersecurity, or systems design and engineering. Education may be substituted with experience 

Enterprise experience administering and supporting Linux/Unix, Windows (desktop/server), and OSX operating systems

Experience engineering, designing, deploying, administering, and managing enterprise firewalls (Palo Alto/Cisco ASA/Meraki), IDS/IPS, SD-WAN, SIEM services, taps, SSO services, and VPN/remote access technology

Experience reviewing contracts, service agreements, and devising and implementing administrative and technical security controls

In-depth working knowledge of common protocols such as: SNMP, HTTP/S, SMTP, KERBEROS, RADIUS, S/FTP, etc. 

Advanced experience working with and utilizing scripting/programming languages such as Python, Perl, PowerShell, Ruby, and/or Java

Enterprise experience working with DNS, DHCP, Microsoft Active Directory, Microsoft SQL, MySQL, Oracle and/or DB2, and cloud-based technologies such as Office365, etc. 

Application-level experience working with regulatory requirements, specifically PCI-DSS and GLBA, and conducting penetration and vulnerability assessments

CERTIFICATIONS: CCNA, CISSP, CEH, OSCP, or Microsoft Certified (Azure, Engineer) desired

Ability to work nights and weekends as needed

Capabilities

• Works well in a team environment, builds consensus and motivates others 
• Thinks analytically and solves problems under pressure
• Highly capable to read, analyze, and interpret general business processes, periodicals, professional journals, technical procedures, or governmental regulations
• Writes reports, business correspondence and procedure manuals
• Effectively presents information to organization leaders and responds to questions from groups of managers, directors, and employees’ information and cybersecurity, its methodologies and practices in both a technical and non-technical manner
• Defines problems, collects data, establishes facts, and draws valid conclusions 
• Clearly explains complicated procedures in a simple and understandable manner (both oral and written)
• Exceptional organizational and analytical skills; demonstrated skills in critical thinking, problem-solving and ability to manage changing priorities
• Self-directed and works independently and balances competing priorities

ABLE TO

To perform the essential functions of this position an employee must be able to meet the following workplace demands: ability to converse with others, detect sound, identify and detect objects, count, read, write, operate a computer, handle and feel objects, reach with hands/arms and be stationary and/or stand and/or move for long periods. Occasionally an employee will lift/pull/push and carry up to 25 to 50 pounds, stoop, kneel, crouch, crawl, climb and be able to maintain balance doing these activities. Position requires sound reasoning, good judgment and ability to apply knowledge toward work activities. The noise level is moderate and typical of a normal office environment. In accordance with the Americans with Disabilities Act, Horizon Credit Union will provide reasonable accommodation/s to qualified individuals with disabilities to perform the essential functions, unless such accommodations would cause the employer an undue hardship. To request an accommodation, please contact Human Resources.

ABOUT THIS JOB DESCRIPTION

The statements in this job description are intended to describe the essential functions and minimum qualifications for this position and are not intended to be an exhaustive list of all responsibilities, duties and skills required. Job descriptions are not intended nor do they create an employment contract and are subject to change at any time to accommodate business necessity. The Credit Union maintains its status as an at-will employer where applicable. In support of Horizon CU’s goals employees may perform other duties as assigned and all employees are expected to:

Exemplify our CORE Values

Promote teamwork and collaboration 

Provide our members with the highest quality service