Job Description
Description:
IT Security Engineer Department: Information Technology
Pay Grade 14, Exempt: $98,051.00 - $147,087.00
Report To: VP Information Technology
With the goal of enhancing lives, fulfilling dreams and building communities this position is responsible for safeguarding the organization’s information systems through proactive monitoring and implementation of enterprise security measures. This role analyzes and responds to security threats, collaborates with internal and external stakeholders to strengthen the security posture, and ensures compliance with regulatory standards. The engineer plays a key role in managing security infrastructure, supporting audits, and developing scalable security strategies for systems and applications.
ESSENTIAL DUTIES AND RESPONSIBILITIES include the following. Other duties may be assigned.
To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
- Provides documented analysis of security events, investigates suspected attacks, and recommends and supports remedial actions. Ensures all identified security breaches are thoroughly investigated.
- Implement, configure, tune, and maintain enterprise security solutions such as antivirus, firewall, IDS/IPS, and identity provider technologies.
- Determines when security incidents should be escalated to management based on severity and impact.
- Collaborates with Enterprise Risk Management on risk assessments, regulatory compliance efforts, and preparation for annual audits and examinations.
- Develops and maintains scalable plans for the security of systems and applications, including testing and monitoring strategies.
- Coordinates with internal teams and third-party vendors to assess and improve the organization’s overall security posture.
- Participate in the design and implementation of new systems and services, ensuring security best practices and compliance requirements are met from the outset.
- Monitors compliance with information security policies and procedures, and reports any violations to appropriate personnel.
- Tracks and manages remediation efforts for known information security exposures in collaboration with management and business departments.
- Administer and configure security controls within cloud environments (e.g. AWS, Azure, GCP) ensuring adherence to security best practices and policies.
- Acts as a liaison to external security firms to support system security, incident response, and service availability.
- Cross-trains with network and IT operations teams to provide backup support across functional areas.
- Review and recommend network hardening strategies including network segmentation and firewall configurations to enhance security posture.
- Conducts ongoing research on emerging technologies and cybersecurity trends; recommends security enhancements and technology purchases to improve service delivery in a secure environment.
- Safeguards equipment, software, data, and tools to prevent loss, theft, or accidental damage.
- Maintains knowledge and adheres to all BSA regulations and compliance standards on internal and external policies.
- Effectively incorporates concepts of CARES Principles in daily behaviors and interactions: Connect – Create a welcoming, energized, and warm environment, Ask – Discover and confirm others’ needs to ensure they feel understood and known, Resolve – Take personal and full responsibility for meeting others’ needs, Elevate – Commit to long-term personal and organizational growth and improvement, Strengthen – Invest in our Numerica community and beyond.
Supervisory Responsibilities This position has no formal, direct supervisory responsibilities although will work with leaders and peers in the organization to drive results.
Performance Standards Ability to profile and manage the prevention, detection, containment and correction of security breaches, develop and implement policy and practices, and execute compliance plan and awareness training.
Contributes to the organization's mission statement and goals by providing the highest quality of service, treating each person professionally - with warmth, courtesy, and respect, and making a personal effort to make members feel they belong and are important to the credit union.
EDUCATION And/or EXPERIENCE Bachelors degree (B.A.) from four year college or university in related field of study plus 5 years related experience and/or training; or equivalent combination of education and experience. Requires knowledge of networking, firewalls, Windows domain, server hardening, security protocols and/or other combinations.
Certificates, Licenses, Registrations Completed or pursuing professional certification such as, but not limited to, SANS GIAC, CISSP, CISM, CISA, CCNA, OSCP.
SKILLS And ABILITIES - Ability to read, analyze, and interpret general business periodicals, professional journals, technical procedures, or governmental regulations.
- Ability to write reports, business correspondence, and procedure manuals.
- Ability to effectively present information and respond to questions from groups of managers, directors, and employees regarding the computer operation in both a technical and nontechnical manner.
- A significant level of trust and diplomacy is required, in addition to normal courtesy and tact. Work involves extensive personal contact with others and/or is usually of a personal or sensitive nature.
- Work may involve motivating or influencing others. Outside contacts become important and fostering sound relationships with other entities, companies and/or individuals, becomes necessary.
- Ability to respond to problems and challenges in nonscheduled hours of operation, including the need occasionally to work evenings, weekend days, and holidays.
- The nature of the job requires the IT Security Engineer to be accessible for consultation and/or onsite supervision during unscheduled times.
- The employee may occasionally lift and/or move up to 50 pounds.
Disclaimer: The job description does not imply an employment contract, nor is it intended to include every duty, task or instruction for which the employee is responsible. Other tasks may be assigned, based on business need and at Management’s request. Requirements Numerica Credit Union Benefits and Perks Learn more about our Benefits and Perks here-
Numerica Credit Union is an Equal Opportunity/Affirmative Action Employer Numerica Credit Union provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. If you are a qualified individual with a disability or a disabled veteran, you have the right to request a reasonable accommodation for purposes of participating in the application/hiring process with Numerica Credit Union. If you are unable or limited in your ability to use or access Numerica Credit Union’s career page at as a result of your disability, you can request reasonable accommodations by contacting your recruiter.
Job Tags
Contract work, Local area, Weekend work, Afternoon shift,