Cybersecurity Analyst in North Liberty, Iowa at GreenState Credit Union

POSITION SUMMARY:

The Cybersecurity Analyst is responsible for executing the security program at GreenState. They monitor security controls, track and gather security metrics, analyze vulnerabilities, promote security awareness, manage risk, and respond to security threats. This position provides security guidance to project teams delivering business solutions, performs risk assessments of technology-related assets, and researches industry threat trends. Additional duties include maintenance and improvement of the security program.

GREENSTATE CULTURE:

At GreenState, we exist to create lasting value for those we serve. We do this by putting immense value into our employees, members and communities. We empower our employees to create endless opportunities, which will then impact the lives of our members and enhance the vitality of our communities.

Salary range for this position is $103,793.30 - $121,346.42 with a progressive benefit package.

1. Adheres to the Credit Union's core values and Service Standards in conducting GreenState's mission and vision.
2. Demonstrates a positive member service (internal and external) focus at all times.
3. Demonstrates teamwork in all interactions with coworkers and in the completion of all duties and responsibilities.
4. Ensures confidentiality of member information.
5. Supports a diverse and inclusive work environment.
6. Identifies and analyzes security vulnerabilities in systems and applications
7. Implements and manages security tools and technologies
8. Identifies, assess, tracks, and develops mitigation strategies for security risks
9. Conducts comprehensive risk assessments for new and existing systems
10. Develops and delivers security awareness training programs for employees
11. Assess security risks associated with third-party vendors
12. Develops, implements, and maintains security policies, standards, procedures, and guidelines
13. Prepares and maintains comprehensive security documentation
14. Collects, analyzes, and reports security metrics to measure the effectiveness of the security program
15. Monitors framework controls and regulatory issues (NIST CSF, PCI, etc.)
16. Collects and organizes evidence for internal and external audits and assessments
17. Advises and assists with operational and information security incidents
18. Provides information security input in support of organizational project initiatives
19. Performs other duties as assigned

1. College degree in a relevant field or equivalent work experience in a related field
2. Minimum of 0-2 years of experience in a related cybersecurity role
3. Strong written and verbal communication skills
4. Detail-oriented, self-starting, and motivated
5. Strong documentation skills
6. Ability to assess risk and make control recommendations
7. Experience with security frameworks (NIST CSF, PCI, etc.)
8. Experience working with Windows OS, Linux, and Active Directory
9. Experience with cybersecurity tools (scanners, EDR, SIEM, etc.) preferred
10. Proficiency in networking and operating systems preferred