Information Security Analyst II

Compensation: $68,000- $100,000 annually based on experience and credentials
Location Type: Remote
Position Type: Full Time

The Information Security Analyst II administers and maintains the Credit Union’s information security systems to ensure member data confidentiality and compliance with established security policies, procedures, and standards. Monitors and analyzes malicious activities to validate the integrity of the Credit Union’s security infrastructure. Detects and correlates patterns of events that may increase security-related risks. Performs and validates skilled technical security reviews and security risk assessments.

• Audits and monitors, on a daily basis, all Credit Union event logs for unauthorized transactions or intrusions. Analyzes network perimeter event logs for possible intrusion activities and takes remediation actions. Reports intrusion activities to appropriate personnel.
• Administers Credit Union’s endpoint security program to detect and prevent malware and data leakage/loss.
• Identifies material risks and takes mitigating action using security analysis techniques. Takes corrective measures to ensure minimal loss of data.
• Actively participates in forensic and incident response activities. Opens security incident tickets and tracks issues through to resolution.
• Evaluates, recommends, and implements solutions to current or potential security threats related to the Credit Union’s computing environment.
• Assists IT Security Manager in conducting vulnerability assessments and security risk assessments of Credit Union resources. Assists internal and external auditors.
• Audits system access requests to ensure compliance with established security policies and application standards.
• Promotes system security awareness programs within the Credit Union. Ensures compliance with Credit Union security policies, procedures, and standards. Assists with developing information security policies and standards needed to maintain security of the Credit Union’s computing environment.
• Documents procedures and incorporates them into IT Security Standards and Procedures Manual. Ensures operational procedures are up-to-date and followed.
• Acts as technical lead for smaller IT projects to ensure project tasks comply with established security policies and standards.
• Work with IT teams, vendors, and business units regarding business continuity implementation.
• Maintain knowledge and understanding of current trends, laws, and issues affecting the area of expertise.
• Attend educational events to increase professional knowledge.
• Complete annual compliance and info security training to understand employees' role in maintaining effective compliance and security programs.

• Bachelor’s degree in Information Technology, Information Security, or a related field. (A comparable combination of work experience and training may be substituted for education requirements.)
• 5+ years progressively responsible experience in systems administrator, network administrator, or similar role.
• One or more of the following certifications: CompTiA Security+ (CE), GIAC SANS Security Certification or Certified Information Systems Security Professional (CISSP)
• Experience administering enterprise level endpoint security software. Experience in incident response and event monitoring. Working knowledge of security policies, standards, and procedures.
• Experience in various network protocols, firewalls, vulnerability assessment tools, remote access, system and network vulnerabilities, and network management tools.
• Good understanding of IP, TCP/IP, and other network administration protocols.
• Ability to prioritize tasks by effectively managing competing and changing priorities to meet deadlines.
• Accurate, detail-oriented, and organized with task management.
• Ability to analyze and resolve difficult and often complex problems or situations.
• Strong written, verbal, and interpersonal communication skills to interact effectively with members, staff, vendors, and government regulators.
• Strong knowledge and understanding of credit union products, services, policies, and procedures.
• Strong knowledge and understanding of regulatory compliance.
• Strong knowledge and understanding of credit union computer systems and software applications required to perform job duties.

Benefits

• Financial Well-Being: Bonus Program up to 12%, 401K Matching up to 8%, Retirement Planning, Pay Increases based on Competency, Employee Loan Discounts, Flex Spending Accounts
• Wellness: Medical Coverage, Dental and Vision Coverage, Access to 4,000+ Gyms, Mental Health Resources, PTO Wellness Days, Short Term and Long Term Disability Coverage
• Work-Life Balance: 11 Paid Holidays, 3 weeks of Paid Time Off, 4 weeks of Paid Parental Leave, Birthday PTO
• Community Involvement: Paid Volunteer Hours
• Growth: Degree Assistance up to $5,000 per year
• Flexibility: Remote, Hybrid, and Onsite Schedules
• Security: Pet Insurance, Free Identity Theft Protection, Legal Assistance

For more information, including additional benefits, please visit our benefits website at https://careers.suncoastcreditunion.com/benefits

Company Overview

Suncoast Credit Union is consistently chosen as a Tampa Bay Times Top Workplace because its employees genuinely #LOVEWORK! Employees flourish in an inclusive culture celebrating growth and prioritizing the community. Chartered in 1934, Suncoast has never furloughed any employees.
For more information, please visit our careers site at https://careers.suncoastcreditunion.com/

• Bachelor’s degree in Information Technology, Information Security, or a related field. (A comparable combination of work experience and training may be substituted for education requirements.)
• 5+ years progressively responsible experience in systems administrator, network administrator, or similar role.
• One or more of the following certifications: CompTiA Security+ (CE), GIAC SANS Security Certification or Certified Information Systems Security Professional (CISSP)
• Experience administering enterprise level endpoint security software. Experience in incident response and event monitoring. Working knowledge of security policies, standards, and procedures.
• Experience in various network protocols, firewalls, vulnerability assessment tools, remote access, system and network vulnerabilities, and network management tools.
• Good understanding of IP, TCP/IP, and other network administration protocols.
• Ability to prioritize tasks by effectively managing competing and changing priorities to meet deadlines.
• Accurate, detail-oriented, and organized with task management.
• Ability to analyze and resolve difficult and often complex problems or situations.
• Strong written, verbal, and interpersonal communication skills to interact effectively with members, staff, vendors, and government regulators.
• Strong knowledge and understanding of credit union products, services, policies, and procedures.
• Strong knowledge and understanding of regulatory compliance.
• Strong knowledge and understanding of credit union computer systems and software applications required to perform job duties.

Benefits

• Financial Well-Being: Bonus Program up to 12%, 401K Matching up to 8%, Retirement Planning, Pay Increases based on Competency, Employee Loan Discounts, Flex Spending Accounts
• Wellness: Medical Coverage, Dental and Vision Coverage, Access to 4,000+ Gyms, Mental Health Resources, PTO Wellness Days, Short Term and Long Term Disability Coverage
• Work-Life Balance: 11 Paid Holidays, 3 weeks of Paid Time Off, 4 weeks of Paid Parental Leave, Birthday PTO
• Community Involvement: Paid Volunteer Hours
• Growth: Degree Assistance up to $5,000 per year
• Flexibility: Remote, Hybrid, and Onsite Schedules
• Security: Pet Insurance, Free Identity Theft Protection, Legal Assistance

For more information, including additional benefits, please visit our benefits website at https://careers.suncoastcreditunion.com/benefits

Company Overview

Suncoast Credit Union is consistently chosen as a Tampa Bay Times Top Workplace because its employees genuinely #LOVEWORK! Employees flourish in an inclusive culture celebrating growth and prioritizing the community. Chartered in 1934, Suncoast has never furloughed any employees.
For more information, please visit our careers site at https://careers.suncoastcreditunion.com/

• Audits and monitors, on a daily basis, all Credit Union event logs for unauthorized transactions or intrusions. Analyzes network perimeter event logs for possible intrusion activities and takes remediation actions. Reports intrusion activities to appropriate personnel.
• Administers Credit Union’s endpoint security program to detect and prevent malware and data leakage/loss.
• Identifies material risks and takes mitigating action using security analysis techniques. Takes corrective measures to ensure minimal loss of data.
• Actively participates in forensic and incident response activities. Opens security incident tickets and tracks issues through to resolution.
• Evaluates, recommends, and implements solutions to current or potential security threats related to the Credit Union’s computing environment.
• Assists IT Security Manager in conducting vulnerability assessments and security risk assessments of Credit Union resources. Assists internal and external auditors.
• Audits system access requests to ensure compliance with established security policies and application standards.
• Promotes system security awareness programs within the Credit Union. Ensures compliance with Credit Union security policies, procedures, and standards. Assists with developing information security policies and standards needed to maintain security of the Credit Union’s computing environment.
• Documents procedures and incorporates them into IT Security Standards and Procedures Manual. Ensures operational procedures are up-to-date and followed.
• Acts as technical lead for smaller IT projects to ensure project tasks comply with established security policies and standards.
• Work with IT teams, vendors, and business units regarding business continuity implementation.
• Maintain knowledge and understanding of current trends, laws, and issues affecting the area of expertise.
• Attend educational events to increase professional knowledge.
• Complete annual compliance and info security training to understand employees' role in maintaining effective compliance and security programs.