INFORMATION SECURITY ENGINEER
Fox Communities Credit Union, Appleton, WI, United States
We currently have a career opportunity for a full-time Information Security Engineer based out of our corporate office (Enterprise) in Appleton! After initial onboarding onsite, this position could have the opportunity for hybrid (1-2 days onsite/week, 3-4 remote) work consideration. However, candidates must reside in Wisconsin to be considered.
The Information Security Engineer is responsible for continuously protecting the credit union’s critical information assets, ensuring compliance with corporate and regulatory policies/standards and industry best practices, while simplifying, enhancing, and enabling business initiatives. This role is responsible for providing technical guidance focused on information security architecture, including all security R&D, analysis, and design for corporate computing systems to prevent unauthorized access from both internal and external perspectives. They are considered a subject matter expert in one or more information security disciplines supporting the design, implementation, and management of the organization’s information security architecture.
Key Result Areas
Infrastructure Protection
Security Monitoring
Alert & Event Management
Problem Solving
Information Security Policies
Security Incident Response
Responsibilities
Promoting and upholding the Fox Purpose, Mission, Vision, and Values
Performing daily operational real‑time monitoring and analysis of security events from multiple sources
Performing security auditing and working with management to address detected security issues
Ensuring proper protection and use of software, including virus/malware protection, patch and feature updates
Developing, planning, and performing configuration changes for major security infrastructure platforms, including but not limited to Windows, LAN/WAN, firewalls, remote access servers, IPS/IDS, and vulnerability assessments
Providing security‑related on‑call emergency support, which is defined by the team’s operational procedures
Leading and executing Information Security projects, developing, executing on, and communicating project tasks, timelines, and status information
Assessing, analyzing, and documenting security requirements for all information systems, which may include applications, third‑party providers, servers, wireless, telecom, LAN/WAN, databases, and personal computers
Performing collaborative problem‑solving activities on the overall security network and application infrastructure consisting of software, code, firewalls, and other devices
Providing expertise on integration of security technologies (such as IPS/IDS, firewalls, AV, SEIM) within a common security reporting system
Developing and maintaining the necessary documentation for Information Security standard operating procedures and standards used to protect all information assets from intentional or inadvertent modification, disclosure, or destruction
Conducting security risk assessments on all computing systems and components, both new and current, utilizing the appropriate security diagnostic tools, identifying security deficiencies, instigating appropriate corrective action, and reporting on findings
Staying current with information security trends and providing threat intelligence in the areas of intrusion techniques, social engineering, technology, and security solutions by researching security resources and advising management on applicable trends and recommended solutions
Serving as a subject matter expert for designated information security controls
Qualifications
Minimum: Associate’s or Bachelor’s degree in Information Systems/Information Security certification or equivalent experience
Preferred: Bachelor’s degree in Computer Science, Management Information Systems, or Business; Recognized security professional certification (CISSP, CISA, CISM, or GIAC)
Minimum: Two to four years of experience generally gained in the information security field, with at least three years of networking related experience
Preferred: Three to six years of security engineering in a medium to large IT environment with an emphasis in vulnerability assessments, incident and risk management; experience in security controls for LAN/WANs, client server, web‑based systems, wireless, and databases; previous experience in financial services
Proven ability to provide efficient and professional response to users at all levels of the organization within tight deadlines
Extensive familiarity with Cisco networking, Windows desktop and server operating systems
Knowledge of PowerShell, Python, or other scripting languages
Math: Intermediate statistics or advanced algebraic equations
Proven ability to successfully support and troubleshoot complex applications
Ability to work in a fast‑paced environment
Excellent verbal and written communication skills
Experience working in an ITIL‑based tracking solution a plus
Experience in project management a plus
Benefits
We offer a great team environment, competitive salary and an excellent benefit package which includes medical, dental, vision, life, short term and long term disability insurance, 401k (Roth and Traditional), which includes company contributions including match, paid time off and caregiver leave. As part of our commitment to the communities we serve we also offer all team members Paid Volunteer Time Off.
Equal Opportunity Employer of Protected Veterans, and Individuals with Disabilities.
#J-18808-Ljbffr
The Information Security Engineer is responsible for continuously protecting the credit union’s critical information assets, ensuring compliance with corporate and regulatory policies/standards and industry best practices, while simplifying, enhancing, and enabling business initiatives. This role is responsible for providing technical guidance focused on information security architecture, including all security R&D, analysis, and design for corporate computing systems to prevent unauthorized access from both internal and external perspectives. They are considered a subject matter expert in one or more information security disciplines supporting the design, implementation, and management of the organization’s information security architecture.
Key Result Areas
Infrastructure Protection
Security Monitoring
Alert & Event Management
Problem Solving
Information Security Policies
Security Incident Response
Responsibilities
Promoting and upholding the Fox Purpose, Mission, Vision, and Values
Performing daily operational real‑time monitoring and analysis of security events from multiple sources
Performing security auditing and working with management to address detected security issues
Ensuring proper protection and use of software, including virus/malware protection, patch and feature updates
Developing, planning, and performing configuration changes for major security infrastructure platforms, including but not limited to Windows, LAN/WAN, firewalls, remote access servers, IPS/IDS, and vulnerability assessments
Providing security‑related on‑call emergency support, which is defined by the team’s operational procedures
Leading and executing Information Security projects, developing, executing on, and communicating project tasks, timelines, and status information
Assessing, analyzing, and documenting security requirements for all information systems, which may include applications, third‑party providers, servers, wireless, telecom, LAN/WAN, databases, and personal computers
Performing collaborative problem‑solving activities on the overall security network and application infrastructure consisting of software, code, firewalls, and other devices
Providing expertise on integration of security technologies (such as IPS/IDS, firewalls, AV, SEIM) within a common security reporting system
Developing and maintaining the necessary documentation for Information Security standard operating procedures and standards used to protect all information assets from intentional or inadvertent modification, disclosure, or destruction
Conducting security risk assessments on all computing systems and components, both new and current, utilizing the appropriate security diagnostic tools, identifying security deficiencies, instigating appropriate corrective action, and reporting on findings
Staying current with information security trends and providing threat intelligence in the areas of intrusion techniques, social engineering, technology, and security solutions by researching security resources and advising management on applicable trends and recommended solutions
Serving as a subject matter expert for designated information security controls
Qualifications
Minimum: Associate’s or Bachelor’s degree in Information Systems/Information Security certification or equivalent experience
Preferred: Bachelor’s degree in Computer Science, Management Information Systems, or Business; Recognized security professional certification (CISSP, CISA, CISM, or GIAC)
Minimum: Two to four years of experience generally gained in the information security field, with at least three years of networking related experience
Preferred: Three to six years of security engineering in a medium to large IT environment with an emphasis in vulnerability assessments, incident and risk management; experience in security controls for LAN/WANs, client server, web‑based systems, wireless, and databases; previous experience in financial services
Proven ability to provide efficient and professional response to users at all levels of the organization within tight deadlines
Extensive familiarity with Cisco networking, Windows desktop and server operating systems
Knowledge of PowerShell, Python, or other scripting languages
Math: Intermediate statistics or advanced algebraic equations
Proven ability to successfully support and troubleshoot complex applications
Ability to work in a fast‑paced environment
Excellent verbal and written communication skills
Experience working in an ITIL‑based tracking solution a plus
Experience in project management a plus
Benefits
We offer a great team environment, competitive salary and an excellent benefit package which includes medical, dental, vision, life, short term and long term disability insurance, 401k (Roth and Traditional), which includes company contributions including match, paid time off and caregiver leave. As part of our commitment to the communities we serve we also offer all team members Paid Volunteer Time Off.
Equal Opportunity Employer of Protected Veterans, and Individuals with Disabilities.
#J-18808-Ljbffr