At Community First, we believe the security of our technology infrastructure is mission-critical. As our Senior Information Security Analyst, you will be part of the Information Security team and work on-site at our home office located in Neenah, WI. You'll be responsible for security initiatives to resolve enterprise security issues across the organization. You'll monitor event logs to identify anomalous activity, examine infrastructure and devices for security flaws, and recommend fixes/mitigations. You'll be responsible for network security tools, and work with new technologies to protect all credit union systems and data. If this sounds like a perfect fit for you, we'd like to talk! As our Senior Information Security Analyst, you will:
- Communicate and live out Community First's mission statement, core values, and core purpose
- Provide internal and external members with secure, reliable, efficient, and user-friendly systems that support short and long term objectives for Community First
- Manage information security systems that support business operations and member facing systems
- Collaborate with team members both internal and external to the department to provide system support and improvements that benefit either staff or members directly
- Develop and documenting plans for securing systems that support the business objectives to either improve business functionality or provide enhancements for members
- Perform business continuity planning and systems security for business and member facing systems as required
- Maintain or exceed regulatory compliance as assessed from risk assessments and audits; both internal and external
- Maintain knowledge of changing trends in information security threats and technology in contrast to regulations to ensure Community First remains compliant while delivering competitive products and services for business and members
An ideal candidate will have a combination of:
- Bachelor's degree or a combination of education and relevant experience (Infrastructure or Information Security related)
- A minimum of 3 years' experience working with proven effectiveness and a deep knowledge in Information Security technology and principles
- Maintain current Information Security certifications (example: Security+, CySA+, GSEC, GCIH, GCIA, CISSP)
- Knowledge and understanding of network infrastructure and associated network ports and protocol
- Knowledge and experience in enterprise operating systems, server administration and management, vulnerability testing, log file aggregation, intrusion detection, incident response, and data leakage prevention
- Ability to develop and document repeatable processes and procedures
- Experience with Firewall rules and Network security controls
- Experience with SIEM and Threat Intelligence sources