Senior Cyber Security Engineer

Description

CIVIC CULTURE

Our organization believes we can all do well by doing good. We value the contributions of diverse minds and prioritize the success and well-being of our employees. We also believe every person in our organization plays a role in supporting a healthy environment and helping to achieve our goal of prosperity for all. To this end, we recruit bright, energetic, and talented people to be members of our team. In return, we offer a dynamic workplace that presents opportunities for professional advancement and individual growth. We strive to always display integrity, self-awareness, courage, and respect for one another while continuing to seek opportunities to learn. We really believe that when our employees succeed, our community wins. 

ABOUT THE POSITION

The individual who excels in this position will have demonstrated experience in multiple information security technologies, including, but not limited to: SIEM, SOAR, email security, vulnerability management, network, and endpoint security controls. The individual will also play a key role in deployment, troubleshooting, testing, risk rating, and maintaining cyber security tools, platforms, and programs within the credit union. The successful candidate will display a passion for developing new skills in the field of information security. The Senior Cyber Security Engineer will actively participate in incident response, security program and control implementation, administration, automation, and documentation. The individual will assist internal teams as well as external service providers on technical projects.

NORMAL DAY-TO-DAY WORK

1. Research, engineer, design, and implement security solutions to enhance the management of cyber security risks within the credit union. 
2. Support the day-to-day maintenance of all cyber security applications, including administration, deployment, troubleshooting and maintaining all cyber security tools. 
3. Create and maintain playbooks, standards, automation, processes, and procedures around security disciplines with a focus on administration of platforms.
4. Identify, design and complete regular security audits related to administrative access and activities for security platforms as well as perform regular security audits as required.
5. Research, recommend, implement changes and additions to security controls and business application solutions. 
6. Identify and track metrics related to performance and improvements to related cyber security tools.
7. Develop, respond to and investigate alerts related to misuse of credit union technology. 
8. Create and edit scripts for integration and analysis of all cyber security controls for coverage and effectiveness.
9. Serve as a backup for incident response, ensuring readiness to take immediate action in the event of security breaches or system incidents, providing support in containment, analysis, and remediation efforts.
10. Stay informed of tools, techniques and components utilized in the industry through research and apply this knowledge to system(s) being secured. 
11. Work with end-users to identify and mitigate security threats. 
12. Understand and support team, department, applicable credit union regulations (NCUA), policies and procedures, strategic goals, and vision. 
13. Take ownership for actions, decisions, and results; openly accept feedback and demonstrate both the willingness and ability to improve.

JOB QUALIFICATIONS

Here are a few skills you MUST have to be qualified for this position.

1. Minimum 7 - 9 years’ experience in an information security, systems administration or IT engineering role.
2. Solid experience and understanding of incident response, vulnerability management, security engineering, security automation, risk rating, network security, threat intelligence and systems administration concepts. 
3. Experience tuning rules that identify anomalous and/or suspicious behavior within SIEM, IDS/IPS, and similar platforms. 
4. Ability to work flexible hours and weekends as needed, as well as participate in a 24/7 rotation schedule. 
5. Ability to function in a Consumer business office environment and utilize standard office equipment including but not limited to: PC, copier, telephone, etc.
6. Ability to lift a minimum of 25 lbs. (file boxes, computer).
7. Travel required on occasion.

Here are a few qualities we’d LIKE for you to have to make you more suited for this position.

1. BA/BS in Information Technology, Information Security, Information Assurance or equivalent experience. 
2. Experience managing Active Directory, and ADFS. 
3. Experience with regular expressions and scripting (PowerShell, python, bash, etc.). 
4. Familiarity with network and systems administration and operations concepts. 
5. Comfortable with multiple operating systems, including Windows, macOS, and Linux. 
6. Certifications in one or more Information Security Domains or on security platforms (Security+, GSEC, CISSP, GCIH, GCED, GDSA, etc.).