Sr. Information Security Analyst

SAG-AFTRA Federal Credit Union was founded in 1962 to support the financial needs of individuals who work in the entertainment industry and their families. Credit union membership is open to members of SAG-AFTRA, the American Federation of Musicians, Writers Guild of America, Producers Guild of America, IATSE and many more organizations! Talented team members succeed in our organization by demonstrating a commitment to our shared values of accountability, friendliness and respect, a passion for delivering great service, and pursuing personal growth. We are seeking an Sr. Information Security Analyst to join our team. Come grow with us and be part of the SAG-AFTRA Federal Credit Union Family! Basic Functions The ideal candidate will perform a variety of basic and essential duties. The role may involve both general and specialized tasks, offering a dynamic work environment. This position will assist with maintaining the Information security program and processes to help mitigate overall risks to the organization. The Information Security Analyst will be responsible for assisting with all IT related audits and assessments, document gathering, and remediation. The Analyst will also be responsible for reviewing security controls and providing operational insight to management of cyber threats. This position is a backup to other areas within the IT department. Essential Serving as a Project Manager for risk assessments, pen tests, new security tool implementations and recommendations/findings remediation. Supervising external consultants or vendors performing security audits and technical assessments. Compiling detailed management reports and presentations to translate technical risks into business-level insights for senior leadership. Administer and maintain cybersecurity training for all staff, educating employees on phishing, social engineering tactics, and acceptable use policies to mitigate insider threats. Assist with implementing and maintaining Information security program deliverables. Assist with directing the program components for Information security incident response plan activity. Perform regulatory compliance support and analysis activity in meeting National Credit Union Administration (NCUA) and Federal Financial Institutions Examination Council (FFIEC) regulatory compliance obligations. Actively participate in third party IT audits, IT Reviews, and IT risk assessments. Assist with annual updates and maintenance of the Business Continuity Plans and BIA. Assist with the annual Vendor reviews. Support Business Leaders in performing IT security risk assessments for technology and vendors. Assist in managing the development and maintenance of SAG-AFTRA FCU’s information security program. Participate in ongoing assessments to periodically re-evaluate security of SAG-AFTRA FCU’s systems, foreseeable risks, and mitigation strategies. Notify the appropriate personnel of any suspected incidents in a timely manner and assist in the investigation of incidents as necessary. Report directly to the CIO on status of IT related audit remediation items and matters involving IT Audits, assessments, and findings. Provide support for security reviews of new and existing systems. Collaborate with IT and Business units on annual IT risk assessments and remediation. Recommend specific improvements to security and internal controls and follow up on all recommendations. Coordinate with internal and external vendors to conduct periodic vulnerability scans and penetration tests. Work with IT staff to remediate any discovered issues and report progress to the CIO. Assist as a liaison between Gladiator and SAFCU, participating in quarterly services reviews, reviewing incidents opened by Gladiator, and reviewing Gladiator reports. This job description is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications required of employees assigned to this job. Other duties as assigned by management. Training and Experience Bachelor’s degree required in Information Security, Computer Science, or related field. A minimum of 3-5 years of related experience in Information security functions. Information security certifications Security+ or equivalent. Experience with industry affiliations such as Information Systems Audit Control Association (ISACA), Information Systems Security Association (ISSA), Financial Service-Information Sharing and Analysis Center (FS-ISAC). Proven experience in Project Management. Knowledge of managing security and technology controls. Skill with building and executing Information security programs. Experience with security incident response process and program. Know-how to perform risk analysis activities. Advanced problem-solving skills in detecting errors, system problems, and transforming functional requirements into technical solutions. Excellent analytical, detail, communication, presentation and interpersonal skills. High attention to detail. Ability to receive and maintain confidential information. Ability to work independently under minimal supervision. Physical Requirements Must be able to meet the following physical requirements, with or without reasonable accommodation: 1) Sit, walk, stand, use hands to manipulate, handle, feel, and control items or equipment; 2) Reach with hands and arms; 3) Talk and hear; 4) See and be able to read, write, and interpret text, spreadsheet, and graphical documents. Pay Grade Info To provide greater transparency to candidates, we share base pay ranges for all our job postings regardless of State. We set standard pay ranges for all roles based on function and level of expertise, benchmarked against similar stage growth companies. Final offer amounts are determined by multiple factors including, skills, depth of work experience and relevant licenses/credentials, and may vary from the amounts listed below. The base range for this position is: $37.30 to $50.00 hourly. Benefits Competitive pay Subsidized health care including medical, dental and vision FSA and HSA Vacation and Sick time Holidays 401K Retirement Savings Plan SAG-AFTRA Federal Credit Union is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability, or any other characteristic protected by Law or SAG-AFTRA Federal Credit Union policy. SAG-AFTRA Federal Credit Union will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of the Los Angeles Fair Chance Ordinance for employers and the Fair Chance Initiative for Hiring (Ban the Box) Ordinance. #J-18808-Ljbffr