Security Operations & Threat-Detection Engineer

Overview As a Security Operations Engineer , you will be responsible for ensuring the security of our electronic data and systems, using your expertise in security engineering, architecture, analysis, and threat hunting. You will also work with cutting‑edge technologies, collaborate with other security professionals, and lead security projects as part of your day‑to‑day responsibilities. You will have the opportunity to make a positive impact on our organization and our members by protecting them from cyber threats. Responsibilities Security Engineering Responsible for implementing and maintaining security solutions that protect and/or reduce risk to the business, brand, and members of the credit union. Contribute to security projects and risk assessments. Provide technical guidance and mentorship to team members. Develop multilevel security strategies, plan security upgrades, address technical issues, respond to intrusions, and anticipate future problem areas. Design, implement, tune, and manage security solutions for development, applications, platforms, and environments (cloud, on‑prem, SaaS) while integrating existing security tools. Interact with technology staff and managers to define, design, evaluate, test, and implement changes and enhancements to existing security technologies and systems. Security Architecture and Design Responsible for designing and developing security solutions that protect and/or reduce risk to the business, brand, and members of the credit union. Contribute to all phases of development, including design, recommendation of new technologies, testing, integration, and deployment. Provide direction for the research, development, and implementation of UWCU process improvements, and new products or services, by representing the department on project teams, as needed. Contribute to the development of network, endpoint, and server security standards and procedures. Contribute to the development of “best security practice” configuration management for operating systems and networking equipment builds. Become proficient in innovative new security technologies as they develop and incorporate these technologies into our security design roadmap when they can deliver value to the organization. Reduce risk by designing security infrastructure to utilize a defense‑in‑depth approach that is aligned with the priorities of approved control frameworks. Define and document the impact of implementing a new system or establishing new interfaces/connections between systems on the security posture of the current environment. Conduct security assessments, pinpoint deficiencies in security infrastructure, and formulate a plan for managing security risks. Security Analysis Oversee and evaluate the security status of the systems, networks, and endpoints and react to security incidents and violations. Report and advise on information security issues to ensure internal security controls are appropriate and operating as intended. Study threat actor techniques and network with other researchers in the security community. Develop new techniques and detection capabilities to uncover threats in network traffic and endpoint systems. Actively manage and elevate risk and member‑impacting issues within the day‑to‑day role to management. Monitor and maintain networks and computer systems to prevent, detect, and investigate security breaches. Maintain an in‑depth and current technical knowledge of security industry trends, products, and events. Provide incident response handling assistance as needed for all phases of IR including preparation, identification, containment, eradication, and recovery. Diagnose security issues that may involve extensive analysis and recommend resolutions to management. Manage the analysis and reporting of security activities and metrics to management. Other Responsibilities Act as a tier 3 support resource for issues, incidents, or challenges within the security tool portfolio. Assist in developing meaningful metrics related to the effectiveness and performance of security tools and controls. Ensure system documentation (diagrams, processes, procedures) exist and are kept up to date. Provide security awareness training and assistance to others as needed including members and staff. Provide adequate job cross‑training to other IS/IT team members to ensure smooth ongoing operations. Assist others in the department as appropriate, fostering teamwork and quality of service. Develop and maintain appropriate vendor and support relationships. Develop required documentation for all system changes in accordance with the change management policy. Be an active participant in the Information Security Steering Committee meetings. Perform other duties as assigned. Qualifications Education & Experience Associate’s degree in Computer Science or similar technology related field, or equivalent work experience is required. Bachelor's degree or Master’s degree in Computer Science or similar technology related field is preferred. GSEC, Sec+ or equivalent certifications are required. GCIH, GPEN, CISSP, CISA, or equivalent information security certifications are preferred. 6 – 7 years of progressively responsible professional experience in a medium to large network environment is required. Skills Strong technical skills, problem‑solving skills, as well as knowledge of security platforms and tools used in the environment. Strong project management and communication skills, with the ability to lead and coordinate security initiatives across teams and stakeholders. Experience or familiarity with ITIL and ITSM processes and procedures. Hands‑on experience with or strong aptitude to quickly learn the following technologies: Network Security (NextGen Firewalls, IPS/IDS, NAC) Endpoint Security (NextGen AV/AM and EDR,DLP) Incident Response/Threat Hunting (SIEM, Threat Feeds, SOCaaS) Vulnerability Scanning (Vulnerability scanners, risk assessment tools) Email Security (Messaging gateways, Exchange Online, Authentication) Cloud Security (Basic understanding of cloud provider platforms) Web/DNS Security (URL filtering, DNS filtering) Others as required Strong mentoring and coaching skills, with the ability to train and develop team members. Ability to demonstrate excellent judgment in carrying out responsibilities, with minimal supervision required. Ability to effectively communicate within the team and across the department. Ability to exhibit a talent and passion for technology; is creative and resourceful in solving problems. Proven experience with analysis, design, scheduling, and deployment of security‑based solutions. Solid understanding of security frameworks such as CIS Critical Controls, NIST, and COBIT. Directly related experience with data network security development in a commercial environment. Familiarity with financial operations/industry is strongly preferred. Excellent verbal and written communication skills and the ability to adjust messages to the correct technical level of the target audience. Working at UW Credit Union Join one of Wisconsin’s premier financial institutions, a National Top Workplace and multi‑year recipient of Madison Magazine’s Best Places to Work, Wisconsin State Journal’s Top Workplaces, and Milwaukee Journal Sentinel’s Top Workplaces to receive: 21.5 days of annual time off (accrued per pay period) 2 weeks paid caregiver leave 2.5 weeks paid new child parental leave 2 days paid volunteer time Hybrid work environment: minimum 3 days a week on‑site 10 paid holidays (including your birthday!) 401k company match of up to 5%, plus approximately 4% discretionary match 457 deferred‑compensation plan Variable bonus reward Competitive Medical, Dental, and Vision plans, including domestic partner eligibility Employee Assistance Program And more! All employees must possess valid work authorization to work for UWCU on the date of hire. UWCU does not provide immigration sponsorship or support for employment authorization to include, but not limited to, sponsorship or support for H‑1B, F‑1 OPT, TN, or other visa category. #J-18808-Ljbffr