Information Security Engineer I, II, III, Senior - Global Credit Union

Reports to: Information Security Architect Supervisor

Functions Supervised: None

Primary Functions: Provide security engineering support via network security implementation, analysis, testing and monitoring.

Duties and Responsibilities:

1. Implementing, testing, managing, monitoring, and upgrading security solutions for the protection of the organization's data, systems, and networks
2. Assist in the development in best practices policies, programs, procedures and security standards for the organization
3. Serve as escalation point for Information Security Analysts
4. An understanding of best practices and how to implement them at a Business Unit level
5. Analyze and correlate security events and implement countermeasures to mitigate against intrusion attacks.
6. Provide information security support in the design, integration, deployment, and troubleshooting of enterprise information solutions.
7. Collaborate with organizations engineering teams to analyze security needs/requirements and assist develop/implement security standards/technical solutions.
8. Research and identify ethical hacking, intrusion detection/prevention technologies, secure coding practices and threat modeling.
9. Implement secure network architectures, virtualization technologies, identity and access management principles, application security, encryption technologies, DNS, SOA, and web applications
10. Provide security engineering recommendations and assist with planning and implementation of long-term projects.
11. Troubleshoot complex multi-network firewall policy issues.
12. Responsible for understanding of incident response methodologies and assist with coordinating security incident.
13. Maintain a knowledge of Offensive Security, TCP/IP, HTTP, FTP, cookies, authentication, virus scanning, web servers, and encryption.
14. Decode and understand traffic flow using packet level traces (skilled with TCPDUMP, PCAPs, traffic generators, etc.).
15. Identify and reproduce common network and web site attacks such as SQL injection, cross site scripting, remote file inclusion and cookie manipulation.
16. Maintain a working knowledge of authentication, session management, requests, and form submission processes.
17. Maintain a working knowledge with server grade applications to include Exchange, DNS, SMTP, IIS, Apache, SharePoint, Active Directory, Identity Management, Patch Management, LDAP, and SQL.
18. Perform IDS / IPS real-time monitoring analysis and/or network forensics.
19. Maintain a working knowledge of regulatory and audit mandates to ensure environments meet PCI, FFIEC, NCUA and industry standards.
20. Serve on-call as scheduled.
21. Other duties as assigned.

Education: Bachelor’s degree in Computer Science, Information Technology, or related field.

Creditable Experience in Lieu of Education: Two to four years’ experience equivalent in technical training, certifications and/or work experience.

Experience/Skills: One of the following industry security certifications is desirable, Certified Information Systems Auditor, Certified Information System Security Professional, Certified Ethical Hacker, any Level 5 GIAC Certification, Offensive Security Certified Professional, or other advanced level certification. Detailed knowledge of how offensive security attack vectors work, including Phishing, privilege escalation, buffer overflow and lateral movement, to name a few. Two to Four years demonstrable experience managing and implementing enterprise security solutions. A minimum of two to four experience with holistic security engineering, experience with firewalls, IDS/IPS, endpoint solutions, proxy servers, web application firewall, security incident or event management systems, data loss prevention, routers, switches, subnet and VLAN’s desired. Requires knowledge of Transmission Control Protocol/Internet Protocol (TCP/IP) and communication protocols in LAN/WAN deployments. Demonstrated ability to successfully manage and coordinate multiple time-sensitive activities. Excellent verbal and written communication, organizational, and interpersonal skills required.

Tenure: Assignment to the Information Security Engineer I category 09, Information Security Engineer II category 08, Information Security Engineer III category 07 or Senior Information Security Engineer category 06  will be determined by the candidate's education or experience. Advancement requires management recommendation and will be based on the candidate's certifications and/or performance.

Salary Pay Range:

• Information Security Engineer I (Category 09): $69,557 - $112,677 annually
• Information Security Engineer II (Category 08): $79,989 - $132,798 annually
• Information Security Engineer III (Category 07): $90,389 - $152,718 annually
• Senior Information Security Engineer (Category 06): $100,331 - $172,572 annually

Starting base salary will be determined based on candidate experience, qualifications, education, and local or state wage requirements, if applicable and will fall within the range provided above.

In accordance with our Salary Administration policy, new hire base salaries generally fall within the minimum to midpoint of the listed range.

• Short-term and long-term incentives
• Comprehensive medical, dental and vision insurance plan that has HSA and FSA options
• 401(k) plan with a 5% match
• Employee Assistance Program (EAP)
• Life and disability coverage
• Voluntary cash benefits for accident, hospitalization and critical illness
• Tuition Reimbursement
• Generous leave programs to include Paid Time Off accrual, Paid Sick Leave, Paid Holidays
• Click here to view Global’s comprehensive Benefits Programs.

Equal Opportunity Employer