Job Type
Full-time
Description
Job Title: Senior Info/Sec Identity Access Management Analyst – Onsite/Chatsworth
Overview:
- The Senior InfoSec / Identity Access Management Analyst is responsible for designing, implementing, and maintaining security controls that protect the credit union’s systems, infrastructure, and data.
- Ensures security capabilities are preventive, detective, and responsive, while maintaining compliance with regulatory requirements. The engineer works closely with IT, Infrastructure, Cloud, and Application teams to embed security into daily operations and ensure audit readiness.
- Implements the enterprise Identity and Access Management (IAM) framework, governing how employees, contractors, and temporary staff are granted role-based access to systems and applications.
- Maintains the documentation for certification and accreditation of each information system in accordance with Federal Financial Institutions Examination Council (FFIEC) requirements. Assess the impacts on system modifications and technological advances. Additionally, review systems in order to identify potential security weaknesses, recommend improvements to amend vulnerabilities, implement changes and document upgrades and familiarization with National Institute of Standards and Technology (NIST).
What You Will Do:
- Design, implement, and maintain security controls across network, endpoint, server, cloud, and identity platforms.
- Configure, tune, and support security tools including (but not limited to): Endpoint Detection and Response (EDR/XDR), Network security controls (firewalls, segmentation, IDS/IPS) Identity and Access Management (IAM), MFA, and privileged access controls Vulnerability management and configuration hardening tools.
- Monitor security alerts, investigate suspicious efforts.
- Work with IT teams to prioritize remediation based on risk, exposure, and business impact. Track remediation progress and validate corrective actions.
- Participate in security incident response activities, including detection, investigation, containment, and recovery, forensic data collection and evidence preservation as required.
- Document technical controls, configurations, and operational procedures in an audit-ready manner.
- Provide technical input into risk assessments, vendor reviews, and exception requests.
- Review system designs and architecture for security risks and control gaps.
- Develop and implement IAM framework. Partner with various stakeholders in the credit union to ensure that proposed processes meet regulatory requirements and best practices.
- Help team members to determine security requirements for business processes and technology systems based upon generally accepted risk analysis methods, functional and performance requirements, information security architecture principles, and market-leading solutions.
- Support the team in the creation, tracking, and completion of any compliance findings related to identity and access management.
- Participate in audit related activities as they pertain to IT access for internal and external audits.
Requirements
What We Are Looking For:
- Bachelor’s degree in information security, Computer Science, Information Technology, or equivalent experience
- Certification required in one or more of the following: ISC2 Cybersecurity (CC), Certified Information Security Manager (CISM), GIAC or Security+.
- Minimum 5 years of experience in information security engineering, infrastructure security, or related roles with experience in developing and implementing access management frameworks. Must have experience with Microsoft Active Directory and Agile, DevSecOps and ITIL practices.
- Knowledge of identity lifecycle and governance processes. Understanding of Technology and solutions for financial services such as Jack Henry.
- Cross-functional understanding of the organization and all lines of business.
- Hands-on experience securing, Windows and/or Linux server environments, Network infrastructure and firewalls. Identity systems and privileged access management.
- Strong understanding of cybersecurity principles including least privilege, defense-in-depth.
- Ability to document technical controls clearly for audit and executive audiences.
- Experience in a financial institution or highly regulated environment.
- Familiarity with ISO, NIST Cybersecurity Frameworks, CIS Controls, or similar standards.
- Experience with cloud security (Azure & AWS). Security certifications such asISC2 CC/ SSCP/CCSPCISM, GIAC, Security+, or vendor-specific credentials.
- Experience supporting security tooling such as SIEM, PAM, vulnerability scanners, and/or EDR platforms.
- Extremely detailed oriented. Ability to think outside the box to create unique solutions to specific needs.
- Powerful oral, written and presentation capabilities adapted to communicate clearly and concisely with executive, business, and technical audiences.
- Must be able to work bank hours onsite daily.
Pay Grade Info:
The base pay range for this position is: 96k – 120k annually
Perks Important to You:
Our Team Members enjoy the following rewards and benefits:
- · Competitive pay
- · Subsidized health care including medical, dental and vision
- · FSA and HSA
- · Company-Paid Life and A&D insurance
- · Discounts on loans (must be a member)
- · Paid Vacation, Holiday, and Sick time
- · 401k Retirement Saving Plan with a 6% safe harbor employer match
- · Educational Assistance Program and more!
Premier America Credit Union will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of the Los Angeles Fair Chance Initiative for Hiring (Ban the Box) Ordinance.
Equal Opportunity Employer – Veterans / Disabled
Drug-free Workplace