Direct Federal Credit Union
Cyber Security Engineer
Direct Federal Credit Union, Huntsville, Alabama, United States, 35824
Job Description Summary
Under the direction of the Manager, Information Security serves as lead technical expert in the overall analysis, design, implementation, and monitoring of an enterprise-wide technical architecture focusing on cybersecurity. Lead and conduct analyses of critical information security systems and network infrastructures to detect information security deficiencies and provide complex problem resolution. Utilize security information from the SOC to analyze, report, and subsequently mitigate malicious network behavior. This is a hands-on, technical role requiring high level of knowledge performing functions like managing vulnerability assessments, log management, malware analysis, intrusion detection, aggregating threat indicators, responding to security incidents, interpreting packet captures and performing network analysis using SIEM products.
Job DescriptionEssential Duties and ResponsibilitiesLeads and conducts analysis of critical architecture and infrastructure to detect security gaps or deficiencies in the information technology environment; recommends and implements solutions for improvement. Identifies and communicates opportunities to maximize value of information security technologies to Information security management and peers to improve/increase effectiveness, reliability, efficiency, performance and service.Serves as expert consultant for all cybersecurity related matters. Evaluates problems, identifies root causes, coordinates resources, determines temporary measures and/or permanent solutions, and recommends and/or implements measures to restore full service. Leads Information Security staff in coordinating and ensuring problem resolution.Leads new technology evaluations and implementations of information security systems. Researches and evaluates impact of the implementation of new security measures, systems and technologies into the corporate infrastructure, ensuring security best practices are met.Maintains thorough network security knowledge by investigating new state-of-the-art technologies and methodologies, attending educational workshops, reviewing technical publications, performing technical hands-on evaluations and making recommendations to Information Security managementAdheres to the Information Security & Cybersecurity Program to ensure the confidentiality, integrity and availability of information assets; ensures proper data classification and compliance.Develops, recommends, implements and manages a variety of security management policies, protocols, systems and tools, rogue wireless access point detection, web content filters, network security policies and remote access standards guidelines. Ensures compliance with NCUA regulations. Collaborates regularly with the Cybersecurity Remediation Engineer to correct identified system vulnerabilities to reduce threats to the organization.Administers security systems to detect and prevent security breaches; monitors network and server intrusion detection systems; conducts vulnerability assessments and identifies areas for improved security management. Maintains accurate records on cybersecurity threat information, breaches, and discovered security deficiencies. Disseminates complex security information clearly and concisely to in a format that both technical and non-technical audiences can easily comprehend.Installs, configures, tests and implements system monitoring and management software tools; monitors system alerts, events, changes and activities that may impact performance or security; researches, troubleshoots and resolves complex system errors, failures and other problems.Evaluates, tests, and implements security vendor-provided patches and upgrades in accordance with change-management procedures; troubleshoots, researches, diagnoses and resolves network problems; makes adjustments, installs fixes, and performs tuning to resolve problems and achieve optimal performance.Analyzes e-business drivers and defines information security architecture requirements. Consults and coordinates with project managers, business application developers, and Information Security Department technical staff on projects to ensure technical architecture security design compliance and recommends modifications.Monitors, reviews, and remedies a variety of firewall and system event logs, messages, reports, and outside notifications to identify, diagnose, and resolve system flow, connectivity, permission issues, and malicious activity.Oversees system logs regarding the Technology division.Conducts systems performance analyses; ensures system backup and restore procedures; assists in implementing, maintaining, and testing disaster recovery solutions; allocates and organizes data storage; participates in the evaluation of system tools, utilities, and solutions as directed.Responds in a timely manner to information security incidents to minimize potential losses of information assets. Works closely with security vendors and Information Security management to initiate Incident response team and critical incidents.Serve as the backup to the Manager, Information Security on change management committee meetings voting for in their absences.Serves as an internal information security consultant to the organization by reviewing all system related security controls for current and future systems and products. Use information from Intelligence feeds (FS-ISAC, CERT, DHS, etc.) to be proactive in protecting Credit Union assets.Finds ways to continually improve the efficiency of departmental processes to provide the best service to our members. Oversees the development of formal documentation and maintenance procedures for information security architecture.Develops teamwork and collaborative relationships within the Credit Union. Works closely with the Sr. Information Security Administrator in the review of vendor & product security reviews, SIEM alerts and report review, firewall reports, and IPS vendor security alerts.Company Wide Expectations
Maintains a professional image and demeanor at all times, consistently demonstrating Credit Union RISE Values and adhering to the Code of Ethics.Delivers friendly, caring service to internal and external members.Complies with all applicable State, Federal and NCUA rules and regulations and all Credit Union policies and procedures.Follow all physical and online security procedures and maintain strict confidentiality of all member information.Completes all required regulatory and compliance training and maintains required knowledge of Credit Union products and services.Works scheduled hours and maintains punctuality.Performs other related duties as assigned or requested.EDUCATION/EXPERIENCE
Minimum Qualifications
To perform this job satisfactorily, an employee must be able to carry out each essential duty competently. The requirements listed below are representative of the education, experience, skills and abilities required.
An equivalent combination of education and experience may be considered.
Education Requirements
4 Year / Bachelors Degree - Information Security, Information Technology, Computer Science or a closely related field - RequiredProfessional Certification such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), CompTIA Security+, GIAC Information Security Professional (GISP) and GIAC Certified Incident Handler (GCIH) - PreferredExperience Requirement
4 Years - Progressively responsible experience in the development, oversight, and administration of complex security systems and networks - RequiredExperience in monitoring systems and networks for anomalies and detecting suspicious activities - RequiredKnowledge of information security principles and practices, including one or more of the following: malware analysis, forensics analysis, log analysis, security risk assessments, security management, and vulnerability assessment management. - RequiredSKILLS/ABILITIES
Demonstrated ability to design and implement Defense-in-Depth strategies and architectures that mitigate risks while enabling operators to accomplish mission-essential tasks.Expert knowledge of cybersecurity principles and demonstrated experience developing technical solutions that lead the industry.Direct knowledge and experience with SIEM products. Familiarity with security analysis of critical system logs and network protocols.Knowledge of OSI model and common networking protocols and services (e.g., web, email, DNS), and how they interact to provide network communications.System security risks and principles, practices and techniques of security administration, including security management and encryption software.Direct knowledge of principles, practices, methods, tools and utilities of systems/network administration and maintenance, firewall administration, including configuration and performance tuning.Network architectures and theory and principles of network design, security objectives and integration.Demonstrate knowledge of Incident Response processes and procedures.Strong organizational skills with a high level of attention to details and accuracy.Ensure all internal and external customer service practices and processes are carried out and meet quality service standards and achieve member satisfaction.Learn and apply information, on a wide range of Credit Union products, services, and regulatory compliance requirements.Provide guidance in the resolution of complex problems utilizing advanced knowledge and experience within areas of responsibility.Practice RISE values and Code of Ethics through daily interactions and conduct.Promote and foster excellent member service and teamwork throughout department.Communicate in a professional manner and deliver information clearly and effectively to staff. Actively listen to questions, opinions, and ideas of others. Use tact and diplomacy in sensitive and confidential situations.Use correct English including spelling, grammar, and punctuation.Operate computers and use business software and other standard office equipment.Understand and follow written and oral instructions.Set priorities and manage one's own time effectively.PHYSICAL DEMANDS
Physical Demands Disclaimer
The physical demands described here are representative of those that must be met by employees to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
Physical Requirements
Intermittent standing, sitting, walking, bending and climbing.Using hands repetitively to handle, feel or operate computers and other standard office equipment.Reaching with hands and arms.Intermittent lifting and carrying up to 25 pounds.WORK ENVIRONMENT
Work Environment Disclaimer
An employee in this job will experience the following main work environments, others not listed may also be encountered on occasion;
Work Environment
Works in a typical technology office environment.Remote work environment considered.
Redstone Federal Credit Union is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veteran status or status as an individual with disability. All qualified applicants will not be discriminated against on the basis of disability.
We are proud to be a Drug-Free and Tobacco Free Workplace.
Under the direction of the Manager, Information Security serves as lead technical expert in the overall analysis, design, implementation, and monitoring of an enterprise-wide technical architecture focusing on cybersecurity. Lead and conduct analyses of critical information security systems and network infrastructures to detect information security deficiencies and provide complex problem resolution. Utilize security information from the SOC to analyze, report, and subsequently mitigate malicious network behavior. This is a hands-on, technical role requiring high level of knowledge performing functions like managing vulnerability assessments, log management, malware analysis, intrusion detection, aggregating threat indicators, responding to security incidents, interpreting packet captures and performing network analysis using SIEM products.
Job DescriptionEssential Duties and ResponsibilitiesLeads and conducts analysis of critical architecture and infrastructure to detect security gaps or deficiencies in the information technology environment; recommends and implements solutions for improvement. Identifies and communicates opportunities to maximize value of information security technologies to Information security management and peers to improve/increase effectiveness, reliability, efficiency, performance and service.Serves as expert consultant for all cybersecurity related matters. Evaluates problems, identifies root causes, coordinates resources, determines temporary measures and/or permanent solutions, and recommends and/or implements measures to restore full service. Leads Information Security staff in coordinating and ensuring problem resolution.Leads new technology evaluations and implementations of information security systems. Researches and evaluates impact of the implementation of new security measures, systems and technologies into the corporate infrastructure, ensuring security best practices are met.Maintains thorough network security knowledge by investigating new state-of-the-art technologies and methodologies, attending educational workshops, reviewing technical publications, performing technical hands-on evaluations and making recommendations to Information Security managementAdheres to the Information Security & Cybersecurity Program to ensure the confidentiality, integrity and availability of information assets; ensures proper data classification and compliance.Develops, recommends, implements and manages a variety of security management policies, protocols, systems and tools, rogue wireless access point detection, web content filters, network security policies and remote access standards guidelines. Ensures compliance with NCUA regulations. Collaborates regularly with the Cybersecurity Remediation Engineer to correct identified system vulnerabilities to reduce threats to the organization.Administers security systems to detect and prevent security breaches; monitors network and server intrusion detection systems; conducts vulnerability assessments and identifies areas for improved security management. Maintains accurate records on cybersecurity threat information, breaches, and discovered security deficiencies. Disseminates complex security information clearly and concisely to in a format that both technical and non-technical audiences can easily comprehend.Installs, configures, tests and implements system monitoring and management software tools; monitors system alerts, events, changes and activities that may impact performance or security; researches, troubleshoots and resolves complex system errors, failures and other problems.Evaluates, tests, and implements security vendor-provided patches and upgrades in accordance with change-management procedures; troubleshoots, researches, diagnoses and resolves network problems; makes adjustments, installs fixes, and performs tuning to resolve problems and achieve optimal performance.Analyzes e-business drivers and defines information security architecture requirements. Consults and coordinates with project managers, business application developers, and Information Security Department technical staff on projects to ensure technical architecture security design compliance and recommends modifications.Monitors, reviews, and remedies a variety of firewall and system event logs, messages, reports, and outside notifications to identify, diagnose, and resolve system flow, connectivity, permission issues, and malicious activity.Oversees system logs regarding the Technology division.Conducts systems performance analyses; ensures system backup and restore procedures; assists in implementing, maintaining, and testing disaster recovery solutions; allocates and organizes data storage; participates in the evaluation of system tools, utilities, and solutions as directed.Responds in a timely manner to information security incidents to minimize potential losses of information assets. Works closely with security vendors and Information Security management to initiate Incident response team and critical incidents.Serve as the backup to the Manager, Information Security on change management committee meetings voting for in their absences.Serves as an internal information security consultant to the organization by reviewing all system related security controls for current and future systems and products. Use information from Intelligence feeds (FS-ISAC, CERT, DHS, etc.) to be proactive in protecting Credit Union assets.Finds ways to continually improve the efficiency of departmental processes to provide the best service to our members. Oversees the development of formal documentation and maintenance procedures for information security architecture.Develops teamwork and collaborative relationships within the Credit Union. Works closely with the Sr. Information Security Administrator in the review of vendor & product security reviews, SIEM alerts and report review, firewall reports, and IPS vendor security alerts.Company Wide Expectations
Maintains a professional image and demeanor at all times, consistently demonstrating Credit Union RISE Values and adhering to the Code of Ethics.Delivers friendly, caring service to internal and external members.Complies with all applicable State, Federal and NCUA rules and regulations and all Credit Union policies and procedures.Follow all physical and online security procedures and maintain strict confidentiality of all member information.Completes all required regulatory and compliance training and maintains required knowledge of Credit Union products and services.Works scheduled hours and maintains punctuality.Performs other related duties as assigned or requested.EDUCATION/EXPERIENCE
Minimum Qualifications
To perform this job satisfactorily, an employee must be able to carry out each essential duty competently. The requirements listed below are representative of the education, experience, skills and abilities required.
An equivalent combination of education and experience may be considered.
Education Requirements
4 Year / Bachelors Degree - Information Security, Information Technology, Computer Science or a closely related field - RequiredProfessional Certification such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), CompTIA Security+, GIAC Information Security Professional (GISP) and GIAC Certified Incident Handler (GCIH) - PreferredExperience Requirement
4 Years - Progressively responsible experience in the development, oversight, and administration of complex security systems and networks - RequiredExperience in monitoring systems and networks for anomalies and detecting suspicious activities - RequiredKnowledge of information security principles and practices, including one or more of the following: malware analysis, forensics analysis, log analysis, security risk assessments, security management, and vulnerability assessment management. - RequiredSKILLS/ABILITIES
Demonstrated ability to design and implement Defense-in-Depth strategies and architectures that mitigate risks while enabling operators to accomplish mission-essential tasks.Expert knowledge of cybersecurity principles and demonstrated experience developing technical solutions that lead the industry.Direct knowledge and experience with SIEM products. Familiarity with security analysis of critical system logs and network protocols.Knowledge of OSI model and common networking protocols and services (e.g., web, email, DNS), and how they interact to provide network communications.System security risks and principles, practices and techniques of security administration, including security management and encryption software.Direct knowledge of principles, practices, methods, tools and utilities of systems/network administration and maintenance, firewall administration, including configuration and performance tuning.Network architectures and theory and principles of network design, security objectives and integration.Demonstrate knowledge of Incident Response processes and procedures.Strong organizational skills with a high level of attention to details and accuracy.Ensure all internal and external customer service practices and processes are carried out and meet quality service standards and achieve member satisfaction.Learn and apply information, on a wide range of Credit Union products, services, and regulatory compliance requirements.Provide guidance in the resolution of complex problems utilizing advanced knowledge and experience within areas of responsibility.Practice RISE values and Code of Ethics through daily interactions and conduct.Promote and foster excellent member service and teamwork throughout department.Communicate in a professional manner and deliver information clearly and effectively to staff. Actively listen to questions, opinions, and ideas of others. Use tact and diplomacy in sensitive and confidential situations.Use correct English including spelling, grammar, and punctuation.Operate computers and use business software and other standard office equipment.Understand and follow written and oral instructions.Set priorities and manage one's own time effectively.PHYSICAL DEMANDS
Physical Demands Disclaimer
The physical demands described here are representative of those that must be met by employees to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
Physical Requirements
Intermittent standing, sitting, walking, bending and climbing.Using hands repetitively to handle, feel or operate computers and other standard office equipment.Reaching with hands and arms.Intermittent lifting and carrying up to 25 pounds.WORK ENVIRONMENT
Work Environment Disclaimer
An employee in this job will experience the following main work environments, others not listed may also be encountered on occasion;
Work Environment
Works in a typical technology office environment.Remote work environment considered.
Redstone Federal Credit Union is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veteran status or status as an individual with disability. All qualified applicants will not be discriminated against on the basis of disability.
We are proud to be a Drug-Free and Tobacco Free Workplace.