What you should know about the role
Information Security Specialist implements, tests, maintains, monitors and reports on the organization's Information Security and IT Compliance to protect the credit union's assets and maintain regulatory compliance of the information technology areas. They collaborate with the IT, Audit, and Risk Management departments to ensure compliance and robust application of security technologies, strategies, and policies. They assist with the implementation of business systems to ensure high security standards. They understand and drive results toward strategic business objectives. This is accomplished by providing outstanding service to both internal and external members as defined by living and demonstrating the core values of the credit union; Act with Integrity, Drive Progress, Build & Strengthen Relationships and Keep People at the Core.
What you should know about Advia
Advia is a fast-growing Credit Union that is positioned in the top 3% of credit unions across the United States with nearly 2 billion in assets. We offer very similar product and services as the big banks with a focus on saving our members money while providing financial advantages. We are rooted in our communities and believe we have a responsibility to give back outside of our four branch walls through volunteering and charitable donations. The work environment at Advia is fast-paced, performance based and fun infused. We certainly live by the saying "work hard, play hard." As an employee of Advia, you can expect regular and constructive feedback, development opportunities, great benefits, excellent co-workers and engaged managers.
As a Information Security Specialist, you will have opportunities to:
Get creative to find extraordinary ways to support internal and external members.
Be mentally simulated and provided with the opportunity to use problem solving skills.
Be a part of a collaborative team.
The Information Security Specialist implements, tests, maintains, monitors and reports on the organization's information security in order to protect the credit union's assets and prevent unauthorized access to credit union systems. This includes implementing strategies which mitigate risk to IT systems from internal and external exposures.
Work closely with vendors, fellow employees, and management to provide timely statuses on network security, project implementations and support resolutions.
Utilize the vulnerability management system to identify and resolve hardware and software system risks. Utilize computer investigative techniques and forensic methods to identify active or potential vulnerabilities. Conduct penetration testing and audits to ensure adequate protection of the organization's assets.
Conduct regular security monitoring and reporting of systems to ensure adequate security defenses, systems and settings are in place to protect against intrusion, theft, destruction or misuse of credit union information.
Support the business and technology teams to cover infrastructure security, disaster recovery, management of data, network architecture and design, user access management, and management of third parties. Monitor regulations and trends that affect financial institutions and establish effective restrictions to cybercrime. Provide ad hoc support on special Information Security hot topics for the business.
Provide assistance to IT Audits. Assist management in preparation for audits and assisting with remediation on established timelines. Assist with coordination of information security efforts with the Internal Audit and Risk Management departments.
To maintain IT Compliance and Information Security standards in adherence with federal, state, CUNA, information security and risk management policies, standards and guidelines. Maintain IT Security policies, procedures, manuals and guidelines ensuring they are updated, compliant. Complete forms and documentations that support the policies and procedures for compliance, security, and maintenance of IT systems. Maintain the necessary support documentation for the organization to ensure secure operations.
Strictly adhere to and enforce system security policies and follow all company standards. Must comply with applicable laws and regulations, including but not limited to, the Bank Secrecy Act, the Patriot Act, and the office of Foreign Assets Control, in addition to all company policies.
Physical Requirements
Is able to bend, sit, and stand in order to perform primarily sedentary work with limited physical exertion and occasional lifting of up to 50 lbs. Must be able to travel to other branches or regions. Must be capable of climbing / descending stairs in an emergency situation. Must be able to operate routine office equipment including computer terminals and keyboards, telephones, copiers, facsimiles, and calculators. Must be able to routinely perform work on computer for an average of 6-8 hours per day, when necessary. Must be able to work extended hours or travel off site whenever required or requested by management. Must be capable of regular, reliable and timely attendance.
Working Conditions
Must be able to routinely perform work indoors in climate-controlled shared work area with minimal noise.
Mental and/or Emotional Requirements
Must be able to perform job functions independently or with limited supervision and work effectively either on own or as part of a team. Must be able to read and carry out various written instructions and follow oral instructions. Must be able to complete basic mathematical calculations, spell accurately, and understand computer basics. Must be able to speak clearly and deliver information in a logical and understandable sequence. Must be capable of dealing calmly and professionally with numerous different personalities from diverse cultures at various levels within and outside of the organization and demonstrate highest levels of customer service and discretion when dealing with the public. Must be able to perform responsibilities with composure under the stress of deadlines / requirements for extreme accuracy and quality and/or fast pace. Must be able to effectively handle multiple, simultaneous, and changing priorities. Must be capable of exercising highest level of discretion on both internal and external confidential matters.
Acknowledgement
Nothing in this position description restricts management's right to assign or reassign duties and responsibilities to this job at any time. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. This job description is not a contract and should not be construed as a guarantee of employment for any specific period of time. Advia Credit Union is an Equal Opportunity Employer and does not discriminate against employees or applicants based on race, color, religion, sex/gender, national origin, disability, age, or any other category protected by law.
Experience
4 years of relevant experience and an Associate degree in Computer Science, Information Systems, Cyber Security, Engineering, Business Administration, or equivalent experience preferred.
2 years of relevant experience and a Bachelor's degree in Computer Science, Information Systems, Cyber Security, Engineering, Business Administration, or equivalent experience preferred.
Education/Certifications/Licenses
4 years of relevant experience and an Associate degree in Computer Science, Information Systems, Cyber Security, Engineering, Business Administration, or equivalent experience preferred.
2 years of relevant experience and a Bachelor's degree in Computer Science, Information Systems, Cyber Securi