HRTMS Job Description Management 
| Senior IT Security Engineer Job Description | | |
. JOB INFORMATION | Title: | Senior IT Security Engineer | Officer Title: | | Grade: | 32 | FLSA Classification: | Exempt | Date Last Edited: | 3/11/2025 | Reports To: | AVP Platform Engineering | Department: | IT | URL Link | https://hvfcu.jdxpert.com/ShowJob.aspx?EntityID=2&jobcode=1088 | | | | PRIMARY FUNCTION | | | | Design, implement, and maintain security systems to protect the organization's computer networks and data from unauthorized access, cyber threats, and breaches. This includes coordinating and ensuring remediation of identified vulnerabilities, participating in all internal and external security audits and penetration testing, creating or enhancing security policies, procedures, and standards, and partnering with other teams at HVCU to mature our cyber security program. | | | | | | |
ESSENTIAL JOB DUTIES AND RESPONSIBILITIES | | • | Develop and implement security architectures, including firewalls, access controls, encryptions standards, and intrusion detection systems. | • | Ensure cyber security tools and solutions are highly available and up to date | • | Accountable for remediation of any Security Incidents, Identified Vulnerabilities, an implementation of any security system Hardening activities | • | Create and enforce IT Cyber Security Standards and Practices | • | Champion collaboration between IT teams, Risk Management, and 3rd party Security Partners |
• | Adhere to all Credit Union policies, procedures, and regulatory agency requirements. Participate in all required and recommended training and development including, but not limited to, Bank Secrecy Act training (BSA) and demonstrate attained knowledge. Participate on Credit Union teams, projects and strategic initiatives when the opportunity arises. Perform additional duties and special projects as assigned. | • | Embrace and apply HVCU’s guiding principles to all activities and responsibilities. This includes the Credit Union’s Mission, Vision, Core Values, Employee and Member Value Propositions, Sales and Service Model, and commitment to Lean Six Sigma practices. Support the Credit Union’s initiatives by demonstrating teamwork and professionalism. | • | Responsible for regular and predictable attendance including punctuality. |
EDUCATIONAL REQUIREMENTS | Education Level | Education Details | Pref | Req | Associate’s Degree | Cybersecurity | | X | Bachelor’s Degree | Computer Science, Information Security | X | |
LICENSES AND CERTIFICATIONS | Licenses/Certification Details | Pref | Req |
WORK EXPERIENCE | Experience | Experience Details | Pref | Req | Minimum 10 Years | Working in IT Cyber Security | | X | Minimum 8 Years | Working as an IT Cyber Security Engineer | | X | Minimum 4 Years | Working in Financial Services (Banking, CU, Fintech, annuities, other) | | X | | Familiarity with regulatory and industry standards (NIST or CIS) | | X | | Certified Information Systems Security Professional (CISSP) | X | | | ITILv3 Foundation or higher | X | | | System Security Certified Practitioner (SSCP) | X | | | CompTIA Security+ | X | |
KNOWLEDGE, SKILLS, AND ABILITIES | | • | Ability to think critically and problem solve with minimal supervision. | • | Advanced proficiency in Microsoft Office Software (Word, Excel, Outlook, PowerPoint, etc.) | • | Leadership experience in an IT environment, including managing relationships with internal partners and external vendors. | • | Strong leadership skills that foster collaborative teamwork and high-quality output. | • | Advanced verbal, written and presentation skills. | • | Must be able to demonstrate advanced analytical, communication and interpersonal skills. | • | Demonstrated project management experience. | • | Ability to work in a fast-paced environment and deal with a variety of internal/external customer and vendor situations. |
| | PHYSICAL DEMANDS | Frequency | Physical Demand | Weight (lbs.) | Frequently | Sit for prolonged periods of time | | Frequently | Required to communicate verbally | | Frequently | Normal range of vision and hearing abilities required | | Occasionally | Lift and/or move objects | 30 | Occasionally | Travel outside of work location to attend meetings and training programs | | Frequently | Required to skillfully operate a computer, telephone and other standard office equipment | | | | | |
| WORK ENVIRONMENT | | • | Typically the noise level in the work environment is low to moderate. | • | May experience occasional job stress in dealing with difficult situations and/or high volume. | • | High energy, high impact atmosphere. | • | There are no significant hazardous conditions. |
COMPETENCIES | Name | Description | Prof | Behavior Statements | Service Excellence | Consistently incorporates Hudson Valley's member and employee value proposition, reinforcing organizational culture and brand differentiators. | Level 3 | 1. Creates a sense of accountability and personal ownership for employees and self. 2. Designs strategies to inspire peers and business unit to raise the bar of customer service delivery. 3. Monitors industry for trends in enhancing member service with special attention to financial services. 4. Establishes best practices for internal and external service excellence. 5. Systematically identifies potential problems when designing systems/processes using techniques including brainstorming and cost/benefit analyses to reduce the chances of unnecessary problems. | Results Driven | Drives critical activities to completion. Meets organizational goals and customer expectations. | Level 2 | 1. Clearly communicates expected results. Uses motivational tactics to generate team buy in. Consistently measures progress and refocuses efforts to ensure attainment. 2. Implements specific policies or practices based on laws or regulations governing these practices. 3. Makes effective use of technology to achieve results. Ensures access to and security of technology systems. 4. Takes full responsibility for results, keeping stakeholders properly informed of status, issues and potential problems. 5. Understands the organizations influence dynamics and uses that information to establish alliances to achieve organizational goals and objectives. | Resiliency | Adapts positively to changing environments in order to achieve business results. | Level 2 | 1. Anticipates the impact of change in markets, politics, and culture on the organization and its clients. 2. Deals effectively with pressure; remains optimistic and persistent, even under adversity. 3. Develops new insights into situations; questions conventional approaches. 4. Implement change initiatives so as to minimize adverse impacts on people. 5. Understanding of the necessity of continuous personal growth; ability to gauge one's strengths, limitations and interests, and use of this knowledge for purposes of performance effectiveness and self-development. | Leadership | Leads people towards meeting the organization’s vision, mission, and goals. Provides an inclusive workplace that fosters diversity, development, teamwork and continuous improvement. | Level 2 | 1. Creates a connection to demonstrate how daily actions contribute to organizational outcomes. Coaches team to assume full responsibility for shared goals and objectives. 2. Develops the ability of others to perform and contribute to the organization by providing ongoing feedback and opportunities to learn through formal and informal methods. 3. Implements the organization’s workforce development/planning strategies within business units. 4. Makes well-informed, effective and timely decisions, even when data is limited. 5. Takes a stand, maintains integrity and tactfully defends position in the face of significant opposition. | Information Security Architecture | Knowledge of the tools and techniques used for creating software, hardware, networking and application infrastructure; ability to meet information security objectives while using these. | Level 3 | 1. Designs security architecture for multiple functions or units. 2. Develops mechanisms used to react to incidents that endanger information assets. 3. Consults to others on how to proactively identify potential threats, prioritize solutions and determine preventive actions. 4. Evaluates the cost-effectiveness of proposed alternative solutions for security breaches. 5. Designs and champions structural changes to enhance facility security. 6. Develops and seeks approval for budgets aimed at enhancing security architecture. |
NOTE TO APPLICANT | This job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities that are required of the employee in this position. Additional functions and requirements may be assigned by supervisors as deemed appropriate, with or without notice. Nothing contained in this material creates a contract of employment between an employee and Hudson Valley Credit Union or otherwise alters the at-will nature of the employment relationship. Are you able to perform the essential functions listed in this job description with or without reasonable accommodation? YES_______ NO_______ By signing below you certify that you have received this job description and understand the requirements, essential functions and duties of the position. If you are currently employed in this position, your signature acknowledge that this job description accurately describes the position, including its essential functions. Name: _____________________________________________ Signature: _____________________________________________ Date: _____________________________________________ Please also note that Hudson Valley Credit Union respects the religious beliefs and practices of employees and will, on request, reasonably accommodate its employees when a reasonable accommodation is available that does not create an undue hardship on the Credit Union’s business. Therefore, unavailability for work due to religious observances or practices may not be a bar to employment. |
|