Security Analyst

APGFCU - Your Community Credit Union! For over 80 years, APGFCU has shared our financial experience and provided valuable products and services to build stability and financial independence, one member at a time. We are looking for those who want to join this movement and become a part of a growing organization. We offer competitive pay and great benefits.

Summary: Under the direction of the information systems security officer (ISSO), this position will plan and carry out security measures to protect the organization's computer networks and systems. Monitors external and internal security alerts and suspicious activity, and conducts security risk assessments according to established guidelines and procedures.

Essential Duties and Responsibilities:

Security Activities:

• Conduct real-time monitoring of the organization's network environment, including critical systems and data repositories, utilizing advanced security monitoring tools and techniques, to detect and respond to security breaches and anomalous activity, ensuring compliance with NCUA regulations; perform in-depth forensic investigations of security incidents, including data breaches and unauthorized access attempts, to identify scope of compromise and determine root cause.
• Monitor threat alerts from groups including FS-ISAC, US-Cert, SANS and DHS. Analyze the environment for vulnerabilities and risks related to new threats.
• Assess and report on the effectiveness of internal security systems including patch management, anti-virus, Security Event Management (SEM), network access control, web and email filtering systems, IDS\IPS, and DLP components.
• Prepare reports that document security breaches and the extent of the damage caused by the breaches.
• Analyze threats and vulnerabilities and perform risk assessments of technologies and processes.
• Evaluate technology improvements and/or enhancements that would provide greater security protections for systems and networks.
• Conduct annual enterprise-wide compliance assessments of technology infrastructure and applications, ensuring alignment with regulatory requirements and best practices, and develop detailed reports with recommendations to address identified gaps and improve overall security compliance.
• Research the latest information technology (IT) security trends
• Recommend changes to the Information Security Program (ISP) based on needs and/or information security best practices

Documentation & Reporting:

• Prepare and file security audit reports, and communicate with management as needed, under the direction of the ISSO and the VP Fraud Security.
• Maintain department logs and statistics, providing standard reports as scheduled and ad hoc reports as needed.

Confidentiality: Safeguard and treat as confidential all information acquired in the performance of duties; never discloses information to anyone except as necessary in the course of normal business activities for the credit union; never uses any information obtained in a manner adverse to the interest of the credit union and its members. Information released outside of the department will be approved prior to the release.

Professional Development: Remain current and be knowledgeable of all aspects of local, state and federal privacy and cyber security laws that may affect the credit union. Maintain any professional certifications required to perform the required job.

Other: Performs other related duties as assigned.

Additional: Responsible for completion of applicable training and compliance on federal regulations and APGFCU policies and procedures as related to the duties of this position (Bank Secrecy Act, Information Security as examples, if applicable)

Qualifications:

Education: Bachelor's Degree in Information Security.

Experience: Five plus years' experience in a security related role, such as a security analyst or a systems administrator. Three years' Information Technology experience recommended. A security certification such as CISSP, CISM, CEH, CISA, or Security+ is a plus. Previous financial institution experience is a plus. Familiarity with Virtual Desktop Environments, cloud security concepts, and securing cloud environments (Azure, AWS) are a plus.

PHYSICAL DEMANDS: The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. While performing the duties of this job, the employee is regularly required to use hands to finger, handle, or feel objects, tools, or controls and talk or hear. The employee frequently is required to walk and sit. The employee is occasionally required to stand; reach with hands and arms; and stoop, kneel, crouch, or crawl. The employee must occasionally lift and/or move up to 30 pounds. Specific vision abilities required by this job include close vision, peripheral vision, and the ability to adjust focus. While performing the duties for this job will have exposure to inside/outside weather conditions and is occasionally exposed to wet and/or humid conditions, extreme heat and cold.

TRAVEL: Vehicle required. Position requires travel to various branch and offsite locations.

HOURS: Hours may vary; may require nights and weekends as needed.

Compensation information: Offers are based on experience and education.

• $84,427.20 - $105,539.20 annually

APGFCU provides comprehensive benefits such as: medical and dental (shared expense), vision, 401(k), life and disability insurance, flexible spending account, employee assistance program, referral program, educational assistance, holidays, annual leave and sick leave.

APGFCU is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability to Protected Veteran status. Please use the attached link to view the EEO law poster http://www1.eeoc.gov/employers/poster.cfm

APGFCU is committed to working with and providing reasonable accommodations to persons of all abilities, including persons with disabilities. If you need a reasonable accommodation for any part of the employment process, please send to the Human Resources Department and let us know the nature of your request and your contact information. Reasonable accommodations are considered on a case-by-case basis. Please note that only inquiries concerning a request for reasonable accommodations will be responded to from this e-mail address.