Security Operations Engineer

As a Security Operations Engineer you will be responsible for ensuring the security of our electronic data and systems using your expertise in security engineering architecture analysis and threat hunting. You will also work with cutting-edge technologies collaborate with other security professionals and lead security projects as part of your day-to-day responsibilities. You will have the opportunity to make a positive impact on our organization and our members by protecting them from cyber threats.

Security Engineering

• Responsible for implementing and maintaining security solutions that protect and/or reduce risk to the business brand and members of the credit union.
• Contribute to security projects and risk assessments.
• Provide technical guidance and mentorship to team members.
• Develop multilevel security strategies plan security upgrades address technical issues respond to intrusions and anticipate future problem areas.
• Design implement tune and manage security solutions for development applications platforms and environments (cloud on-prem SaaS) while integrating existing security tools.
• Interact with technology staff and managers to define design evaluate test and implement changes and enhancements to existing security technologies and systems.

Security Architecture and Design

• Responsible for designing and developing security solutions that protect and/or reduce risk to the business brand and members of the credit union.
• Contribute to all phases of development including design recommendation of new technologies testing integration and deployment.
• Provide direction for the research development and implementation of UWCU process improvements and new products or services by representing the department on project teams as needed.
• Contribute to the development of network endpoint and server security standards and procedures.
• Contribute to the development of best security practice configuration management for operating systems and networking equipment builds.
• Become proficient in innovative new security technologies as they develop and incorporate these technologies into our security design roadmap when they can deliver value to the organization.
• Reduce risk by designing security infrastructure to utilize a defense-in-depth approach that is aligned with the priorities of approved control frameworks.
• Define and document the impact of implementing a new system or establishing new interfaces/connections between systems on the security posture of the current environment.
• Conduct security assessments pinpoint deficiencies in security infrastructure and formulate a plan for managing security risks.

Security Analysis

• Oversee and evaluate the security status of the systems networks and endpoints and react to security incidents and violations.
• Report and advise on information security issues to ensure internal security controls are appropriate and operating as intended.
• Study threat actor techniques and network with other researchers in the security community.
• Develop new techniques and detection capabilities to uncover threats in network traffic and endpoint systems.
• Actively manage and escalate risk and member-impacting issues within the day-to-day role to management.
• Monitor and maintain networks and computer systems to prevent detect and investigate security breaches.
• Maintain an in-depth and current technical knowledge of security industry trends products and events.
• Provide incident response handling assistance as needed for all phases of IR including preparation identification containment eradication and recovery.
• Diagnose security issues that may involve extensive analysis and recommend resolutions to management.
• Manage the analysis and reporting of security activities and metrics to management.

Other Responsibilities

• Act as a tier 3 support resource for issues incidents or challenges within the security tool portfolio.
• Assist in developing meaningful metrics related to the effectiveness and performance of security tools and controls.
• Ensure system documentation (diagrams processes procedures) exist and are kept up to date.
• Provide security awareness training and assistance to others as needed including members and staff.
• Provide adequate job cross-training to other IS/IT team members to ensure smooth ongoing operations.
• Assist others in the department as appropriate fostering teamwork and quality of service.
• Develop and maintain appropriate vendor and support relationships.
• Develop required documentation for all system changes in accordance with the change management policy.
• Be an active participant in the Information Security Steering Committee meetings.
• Perform other duties as assigned.

Education & Experience

• Associates degree in Computer Science or similar technology related field or equivalent work experience is required.
• Bachelors degree or Masters degree in Computer Science or similar technology related field is preferred.
• GSEC Sec or equivalent certifications are required.
• GCIH GPEN CISSP CISA or equivalent information security certifications are preferred.
• 6 7 years of progressively responsible professional experience in a medium to large network environment is required.

Skills

• Strong technical skills problem-solving skills as well as knowledge of security platforms and tools used in the environment.
• Strong project management and communication skills with the ability to lead and coordinate security initiatives across teams and stakeholders.
• Experience or familiarity with ITIL and ITSM processes and procedures.
• Hands-on experience with or strong aptitude to quickly learn the following technologies:
  • Network Security (NextGen Firewalls IPS/IDS NAC)
  • Endpoint Security (NextGen AV/AM and EDRDLP)
  • Incident Response/Threat Hunting (SIEM Threat Feeds SOCaaS)
  • Vulnerability Scanning (Vulnerability scanners risk assessment tools)
  • Email Security (Messaging gateways Exchange Online Authentication)
  • Cloud Security (Basic understanding of cloud provider platforms)
  • Web/DNS Security (URL filtering DNS filtering)
  • Others as required
• Strong mentoring and coaching skills with the ability to train and develop team members.
• Ability to demonstrate excellent judgment in carrying out responsibilities with minimal supervision required.
• Ability to effectively communicate within the team and across the department.
• Ability to exhibit a talent and passion for technology; is creative and resourceful in solving problems.
• Proven experience with analysis design scheduling and deployment of security-based solutions.
• Solid understanding of security frameworks such as CIS Critical Controls NIST and COBIT.
• Directly related experience with data network security development in a commercial environment.
• Familiarity with financial operations/industry is strongly preferred.
• Excellent verbal and written communication skills and the ability to adjust messages to the correct technical level of the target audience.

Join one of Wisconsins premier financial institutions a National Top Workplace and multi-year recipient of Madison Magazines Best Places to Work Wisconsin State Journals Top Workplaces and Milwaukee Journal Sentinels Top Workplaces to receive:

• 21.5 days of annual time off (accrued per pay period)
• 2 weeks paid caregiver leave
• 2.5 weeks paid new child parental leave
• 2 days paid volunteer time
• Hybrid work environment: minimum 3 days a week on-site
• 10 paid holidays (including your birthday!)
• 401k company match of up to 5% plus approximately 4% discretionary match
• 457 deferred-compensation plan
• Variable bonus reward
• Competitive Medical Dental and Vision plans including domestic partner eligibility
• Employee Assistance Program
• And more!

All employees must possess valid work authorization to work for UWCU on the date of hire. UWCU does not provide immigration sponsorship or support for employment authorization to include but not limited to sponsorship or support for H-1B F-1 OPT TN or other visa category.