Cybersecurity Engineer I

The Cybersecurity Engineer I is responsible for the implementation and management of the Credit Unions security solutions and technologies (e.g., SIEM, IDF/IPS, firewalls, proxies, endpoint protection). Administer as a first line defense contributor of Credit Union’s overall information security program, and protect the Credit Union’s IT infrastructure, networks, and data from cyber threats. Responsible for implementing controls minimize risks in the key areas associated with information security function identified by senior Cybersecurity Engineer's or Cyber Operations Analysts gap analyses.

• Security Infrastructure Management - Configure, monitor, and maintain firewalls, intrusion detection/prevention systems (IDS/IPS), VPNs, and endpoint protection. Assist with system lifecycle management, including regular patching and troubleshooting for systems including but not limited to: network firewalls, IDS/IPS, port security, anti-malware, email hygiene, web content filtering, web application firewalls, Windows updates, physical access control, cloud/SaaS systems and Active Directory. Ensures proper policies, procedures, risk mitigation activities, and operating controls are followed. Reports gaps in policies, procedures, and operating controls to leadership to ensure member impact and risk is mitigated.(40%)
• Incident Response- Monitor and respond to cybersecurity alerts to assess potential threats and determine appropriate risk levels. Escalate significant security incidents to Cybersecurity Engineer II & Cyber Operations teams in a timely and effective manner. Collaborate with cross-functional IT teams to contain threats and implement remediation strategies for identified vulnerabilities. Implement recommendations from senior engineers on cybersecurity risks, trends, and best practices. Support the development and enforcement of security policies, procedures, and standards. (30%)
• Project Engagement – Collaborate with the Project Management Office (PMO) to design, develop, and deliver secure and resilient systems. Actively participate in the delivery of projects within the service pipeline, ensuring security is embedded throughout the project lifecycle. Focus on safeguarding WPCU/myCU systems, as well as protecting sensitive member and partner information. Provide security expertise and guidance during project planning, implementation, and post-deployment phases. Ensure alignment with organizational security standards, compliance requirements, and best practices (20%).
• Documentation – Properly document IT Security systems and procedures.(10%)