What are the responsibilities and job description for the IT Security Engineer position at Virginia Credit Union?

Job Description : PRIMARY FUNCTION :

The Security Engineer provides technical leadership in designing, engineering, testing, and deploying security architectures, configurations, and controls to meet VACU security needs. This role ensures secure design of VACU's computer systems, infrastructure, and network connections. Maintains security best practices and solutions while possessing an understanding of risk and compliance. Identifies security measures to maintain security and privacy compliance. This position will analyze and resolve security breaches and vulnerability issues in a timely and accurate fashion, and conduct user activity audits where required. Individual will be responsible for the implementation and daily monitoring of information security controls and work with the Information Technology staff and the Information Security Analyst to assess system security.

JOB DUTIES AND RESPONSIBILITIES :

Ensure high-level integration of IT Systems development with security policies and information protection strategies
Deploy, manage and maintain all security systems and their corresponding or associated software, including firewalls, intrusion detection systems, and cryptography systems.
Conduct security reviews, evaluations, risk assessments, and develops recommendations for improvements as appropriate
Monitor and evaluate emerging security alerts / issues, recommend remediation alternatives
Design, perform, and / or oversee penetration testing of all systems in order to identify system and application vulnerabilities.
Monitor server logs, firewall logs, intrusion detection logs, and network traffic for unusual or suspicious activity
Coordinates information protection activities and projects with other groups within VACU, business partners, vendors of information protection services, and other organizations to ensure effective definition, development, and implementation of appropriate information protection measures
Recommend, schedule (where appropriate), and guide recovery procedures, and any other measures required in the event of a information technology security incident
Assist VACU's Information Security Analyst and Information Technology management in the development and implementation of appropriate security controls to maintain compliance with security and / or privacy regulations.
Acts as team member in the development, maintenance and testing of the Business Resumption plan (as it relates to Information Systems Security).
Conduct research on emerging products, services, protocols, and standards in support of security enhancement and development efforts.
Effectively plan and manage assigned activities to ensure that objectives and schedules are met.
Other duties may be required and assigned by the supervisor
Complete all required BSA and OFAC training. Report all suspicious activity to Security.
Assist in development and management of the IT Budget

JOB QUALIFICATIONS : Knowledge :

Significant knowledge of the following :

IPSec and VPN

IDS / IPS

Firewall configuration

Various filtering and access control techniques

Email and external messaging protocols and security techniques

InfoSec Policies and establishing associated controls

Penetration Testing

Incident handling / response

Security auditing

SSL Certificates

Wireless security

Security architecture

Multi-factor authentication

Defense in depth methodologies

Desktop, Server, and application security best practices

In-depth knowledge of network, PC, and platform operating systems.

Working technical knowledge of current systems software, protocols, and standards.

Knowledge of applicable practices and laws relating to data privacy and protection.

Skills : Abilities :

Ability to identify and prioritize issues and provide strong customer service.

Ability to collaborate and influence to persuade others to comply with established security policies.

Ability to handle proprietary and sensitive information in a confidential manner.

High level of analytical and problem-solving abilities; attention to detail.

Minimum Education and Experience :

Bachelor's degree in the field of computer science, information security and / or equivalent work

Certified Information Systems Security Professional (CISSP), or other security certifications a plus.

Hands-on experience with firewalls, intrusion detection systems, anti-virus software, data encryption, and other industry-standard security related technologies, techniques and practices.

Experience or familiarity with virtualization, SAN, clustering, redundant and high availability systems, TCP / IP stack.

Experience responding to information security incidents

Experience with IT Security Audit Logging, Detection, Aggregation, Analysis, Response and Mitigation; experience with Security Incident Management processes.

Experience working in a team-oriented, collaborative environment.

Experience with using security penetration testing tools, vulnerability scanners, scripting and other techniques used to identify network and host vulnerabilities

Experience supporting technical security audit teams during execution of security audit plans and Security Testing and Evaluation plans

PHYSICAL REQUIREMENTS :

This job requires the ability to sit for long periods of time.

This job requires occasionally lifting up to 50 pounds and / or up to 30 pounds frequently.

Apply for this job

Receive alerts for other IT Security Engineer job openings

IT Security Engineer

What are the responsibilities and job description for the IT Security Engineer position at Virginia Credit Union?

What is the career path for a IT Security Engineer?

Job openings at Virginia Credit Union

Not the job you're looking for? Here are some other IT Security Engineer jobs in the Midlothian, VA area that may be a better fit.

We don't have any other IT Security Engineer jobs in the Midlothian, VA area right now.

AI Assistant is available now!