IT Security Operations Engineer II

  • Full-time

Company Description

This position is hybrid with 3 days a week in the office and 2 days at home.

Founded in 1957, Ent is a member-owned credit union with a passion for people, not for profit. With $8+ billion in assets and over 420,000 owner-members across more than forty convenient Front Range locations, Ent is Colorado's largest credit union. In addition to a reputation as a leader in philanthropy and financial literacy, Ent has been nationally recognized by Forbes as the overall #1 credit union in Colorado for four years running. We know that growth, accolades and reputation are a result of the entire Ent family of employees working together to serve our members. To that end, we are equally proud to be recognized as an "employer of choice" and to have received nominations and awards as a "Best Place to Work" in both Southern Colorado and the Denver metro area. Ent's numerous Employee Engagement Groups (EEGs) offer micro-communities of like-minded employees and a chance to express your personal passions through volunteerism and philanthropy while our best-in-class benefits package and competitive salaries reward you for a job well done.

Job Description

The IT Security Operations Engineer II supports the Manager, Information Security Operations, IT departments, and Risk Management by researching technologies, remediating security vulnerabilities, oversight of system patching, and conducting security oversight functions. IT Security Operations Engineer II is responsible for understanding a variety of technologies in place at Ent, as well as the regulations and guidelines which drive security requirements for the organization.

Qualifications

  • Security Tool Optimization / Sustainability:
  • Provides support and expertise to projects that require security expertise.
  • Typically consults to project teams addressing projects of moderate size and complexity and where the security issues are clearly evident and can be addressed using various approaches.
  • Proactively uncovers needed process improvements / automation and recommends ideas to contribute to the development of security solutions.
  • Assist Tech Lead with researching improvements for IT Security Design
  • Daily IT Operations Security:
  • Analyzes, monitors and acts on information from enterprise security tools.
  • Diagnoses security issues that may involve extensive analysis. Recommends resolutions to management.
  • Prepares the analysis and reporting of security activities to management.
  • Bank Secrecy Act: Remains cognizant of and adheres to Ent policies and procedures, and regulations pertaining to the Bank Secrecy Act.

  • Minimum Formal Education Required for this Position:
    • Bachelor's Degree in Computer Science, Information Technology, or related field

    Minimum Work Experience:
    • 4+ years' related IT Security Administration experience with in depth work on multiple Security Platforms required
    • 2+ years' financial industry security related administration preferred

    Each year of relevant work experience may be exchanged for a year in a relevant degree program or vice versa. For example, a requirement of "Knowledge Consistent with a Bachelor's Degree in Accounting and 2+ years' of accounting experience? could be substituted for a High School Diploma and 6 years of relevant accounting work experience or a Master's Degree in Accounting and 0 years of work experience


    Technical or Specialized Knowledge/Skills:
    • Possesses a strong working knowledge of security principles, policies, tools, and procedures along with an understanding of the overall technical architecture of the organization.
    • Responsible for integration of standard and non-standard logs into log management solution
    • Strong knowledge of Security Tools, SIEM tool, and an Anti-virus Tool, Email Security, and DLP.
    • In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, and risk management
    • Proficient in Incident Management and Response
    • Ensure incident identification, assessment, quantification, reporting, communication, mitigation, and monitoring
    • Follows standard procedures to follow up on security incidents, collecting and reporting appropriate information.
    • Knowledge of Cloud products and Cloud Security
    • Experience with security device management
    • Demonstrates good understanding of the financial services industry.
    • Follows standard procedures to follow up on security incidents, collecting and reporting appropriate information.
    • Ability to handle high pressure situations with key stakeholders
    • Strong communication skills (written, verbal, and listening)
    • Good Analytical skills, Problem solving and Interpersonal skills
    • Proficient in preparation of reports, metrics, dashboards, and documentation
    • Demonstrated knowledge of data standards for data transmission, storage, PCI, and PII
    • Experience with Endpoint Protection tools and workflows

    Certifications Required:
    • CompTIA Security + or other security related certification. required
    • Certified Information Systems Security Professional (CISSP) or Security related certification preferred

    Environmental, Physical and Psychological Requirements
    • Standing - Occasionally
    • Walking - Occasionally
    • Sitting - Frequently
    • Lifting - Rarely (40 Lbs)
    • Carrying - Rarely
    • Pushing - Rarely
    • Pulling - Rarely
    • Balancing - Rarely
    • Stooping - Rarely
    • Kneeling - Rarely
    • Crouching - Rarely
    • Crawling - Rarely
    • Reaching - Occasionally
    • Handling - Occasionally
    • Grasping - Occasionally
    • Feeling - Occasionally
    • Talking - Frequently
    • Hearing - Frequently
    • Repetitive Motions - Frequently
    • Eye/Hand/Foot Coordination - Occasionally
    • Noises louder than normal speaking volume - Occasionally
    • Temperature Changes - Rarely
    • Atmospheric Conditions - Rarely

Additional Information

Salary Range: $92,622 to $121,561 (IT-16).  This position is eligible for our corporate bonus program. 

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities.

Benefits Summary Sheet - 2022

The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)

Privacy Notice