Exempt: The annual base salary range for this role is: $101,164 – $161,862. POSITION SUMMARY: The Sr. Information Security Analyst is part of the Wescom Information Security department. This position is responsible for supporting and maintaining all necessary functions of Wescom’s information security program. The analyst is responsible for security compliance, risk assessments, vulnerability management, security awareness and security operations. This opportunity will provide exposure to wide range of security technology in a supportive organization where data security is a company priority. As a senior member of the team, this position will provide guidance to other team members on technical and business-related issues. ESSENTIAL POSITION FUNCTIONS: Lead the evaluation, implementation, selection, implementation, and maintenance of new solutions for the credit union. Provide technical guidance to other team members. Identify opportunities for improvement within the information security program. Conduct security risk assessments that analyze both security controls and technical vulnerabilities. Develop, implement and maintain security and risk policies and procedures aligned with industry and PCI security compliance. Conduct third party security assessments in support of Wescom’s Vendor Management Program. Apply secure configurations to hardware and software following industry standards. Monitor server logs, firewall logs, intrusion detection logs, and network traffic for unusual or suspicious activity. Interpret activity and make recommendations for resolution and/or prevention. Manage and maintain security systems and their corresponding or associated software, including intrusion detection systems, Network Access Control, Antivirus, Web Application Firewall and SIEM. Keep current with emerging security issues trends and tools. Execute Security Awareness activities including internal phishing campaigns. Assist with vulnerability management program including internal and external penetration tests and vulnerability scans. Assist with gathering information security metrics to measure the effectivity of the security program. EDUCATION AND EXPERIENCE: Bachelor’s Degree, HS Degree or GED. Relevant proven experience will be considered in place of a bachelor’s degree. CISSP and / or security certifications strongly preferred. 4-6 Years of experience in the Information Technology field, with a strong focus in performing IT Security related activities. OTHER SKILLS AND ABILITIES: Strong troubleshooting and analytical skills. Excellent written and verbal communication skills. Knowledge of conducting risk assessments and testing of controls. Strong knowledge of network protocols, traffic log analysis and network security architecture. Strong knowledge and experience of managing next generation firewalls, IDS/IPS, content filtering solutions and Network Access Control. Ability to audit firewall rules and make recommendations in accordance with best practices. Knowledge of applying secure configurations to hardware and software. Skilled in configuring, deploying, and monitoring corporate security tools. Familiarity with Incident Response processes and procedures. Knowledge of vulnerability management lifecycle. Ability to handle multiple tasks with attention to detail, and perform duties with minimal supervision. Ability to use discretion when handling confidential information. Self-motivated and frequently demonstrates initiative by going “above and beyond” performing what is required for the position. MATHEMATICAL SKILLS: Able to add, subtract, multiply and divide in all units of measure, using whole numbers, common fractions and decimals. Able to compute rates, ratios and percent and to draw and interpret bar graphs. PHYSICAL DEMANDS: The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. While performing the duties of this job, the employee is frequently required to stand; walk; sit; use hands to finger, handle or feel; reach with hands and arms, climb or balance, stoop kneel, crouch, crawl; talk or hear and taste or smell. The employee must occasionally lift and/or move up to 25 pounds. Vision abilities required by this job include close vision, distance vision, color vision, peripheral vision, depth perception and ability to adjust focus. WORK ENVIRONMENT: This position may qualify as Remote or Hybrid with a home base at one of Wescom’s offices. The Remote or Hybrid status may be discontinued by Wescom in its sole discretion at any time and for any reason or no reason, with or without notice by Wescom or Employee. The work environment characteristics described here are representative of those an employee encounters while performing functions of this job. The noise level in the work environment is moderately quiet. It is a non-smoking environment. The above job requirements are representative of minimum levels of knowledge, skills, and abilities. The marginal functions have not been included. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. This job description in no way implies that these are the only duties to be performed. An employee will be required to follow any other job-related instructions and duties as requested by the supervisor and/or management.