Information Security Engineer (On-Site)

HAPO Community Credit Union

$104K — $181K *
Information Technology
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • 2+ years of experience in an information security role or 7+ years of related experience
  • Bachelor's degree in Computer Science preferred
  • High School Diploma or GED required
  • Expertise in cybersecurity threat analysis and prevention
  • Proficient in security frameworks like PCI-DSS and NIST
  • Strong communication skills for technical and non-technical audiences
  • Ability to work independently and collaboratively with a team

Responsibilities

  • Design and implement security strategies to protect information systems
  • Conduct risk assessments and recommend solutions for vulnerabilities
  • Deploy security system configurations adhering to best practices
  • Perform and schedule vulnerability scans and penetration testing
  • Serve as a knowledge resource for Information Security Analysts
  • Stay updated on cybersecurity trends and threats
  • Assist in information security incident response and forensics

Benefits

  • Opportunity for a remote-hybrid schedule after 90 days
  • Supportive team environment focused on growth
  • Work-life balance with a Monday to Friday schedule
  • Innovative work culture promoting 'Be in the Moment' and 'Defy Expectations'
Full Job Description
Job Description

HAPO is now accepting applications for an Information Security Engineer in Richland, WA. We are seeking an individual who is ambitious, self-motivated and who strives to represent HAPO's core commitment "Be in the Moment" and standard of service "Defy Expectations" with our members, community as well as the team they are a part of. The Information Security Engineer is responsible for designing and reviewing security strategy and controls that safeguard and protect the organizations computer networks, systems and sensitive information. This position also serves as an expert resource for the Information Security Analyst role. Additional responsibility is assigned for ensuring information security best practices are implemented and enforced through cross-department technologies under the direction of Information Security Management. The InfoSec Engineer is responsible for designing and scheduling vulnerability scans, conducting penetration testing, conducting risk assessment and recommending solutions to identified risks and vulnerabilities.

Essential Job Functions include but are not limited to:
  • Deploy and maintain security system configurations according to standards and best practices
  • Develop system security standards
  • Comply with process change control requirements for any additions and/or modification to systems
  • Conduct Information Security based risk assessments
  • Provide investigative support in information security incident response and forensics
  • Design and implement vulnerability scanning processes and schedules
  • Staying current with information security threats, trends and tactics
  • Perform vendor information security assessments
  • Process information security support requests
  • Identify, design and deploy new security solutions and controls as required
  • Develop and maintain information security procedures
  • Serve as a source of knowledge and reference for the Information Security Analyst
  • Become subject matter expert over the systems within the responsibility of the Information Security Engineer
  • When needed and under the direction of Information Security Management, provide assistance in the following areas supporting the Information Security Analyst role:
    • Assist in monitoring and analyzing information from logging and alerting systems
    • Assist in investigating and escalating security alerts
    • Assist in monitoring information security systems availability and performance
    • Assist in performing threat hunting activities
    • Assist in conducting vulnerability scans reviews
    • Assist the Information Security Analyst conducting phishing campaigns
    • Assist in processing information security support requests
    • Assist Information Security Management with developing and maintaining information security policy


Skills & Abilities:
  • Expertise in cyber security threat analysis, detection and prevention.
  • Expert in Cyber security risks, threats and prevention technologies.
  • Highly skilled in risk assessment and management approaches
  • Advanced knowledge of IDS/IPS, SIEM, DLP, Attack Mitigation and Prevention
  • Proficient in Security Frameworks (PCI-DSS, NIST 800-53, NIST CSF, CIS Top 20)
  • Proficient in Third Party Risk reviews
  • Exceptional communicator with both technical and non-technical audiences.
  • Windows knowledge and skills.
  • Programming and scripting skills
  • Web application security skills
  • Knowledge of the principles of secure network design
  • Supportive and reliable team member
  • Self-motivated to insure technical and industry knowledge is current
  • Ability to work independently as well as with a team
  • Understanding of penetration testing/ethical hacking concepts


Requirements:
  • High School Diploma or General Education Development (GED) certificate
  • A Bachelor degree in Computer Science with at least 2 years of experience (preferred), or 7+ years related experience in an information security role

Location: On-Site Richland (WA)

Schedule: Must be able to work M-F, 35-40 hours a week between the hours of 8:00am - 5:00pm.

*Opportunity for remote-hybrid schedule based on performance after 90 days

Starting Hourly Pay Range (DOE): $104,579.49 - $181,001.60

*Typically, Selected candidates are hired between the minimum and midpoint range, based on applicable experience and qualifications.

*Please note that only candidates selected to move forward in the interview process will be contacted. Thank you for your understanding.

Similar Jobs

More Information Technology Jobs

Find similar Information Security Engineer (On-Site) jobs: