Position : Information Security Engineer II

　　Location : Kansas City, Kansas

　　Requisition ID: : 24522

　　Work with the Information Security team to plan, engineer and maintain the security environment of the Cooperative’s IT network systems and infrastructure. In a cloud-based environment, prevent possible security threats and identify areas of weakness in network systems. Cultivate a culture of security awareness and education to ensure security policies are adhered to.

　　Job Duties and Responsibilities:

　　Respond promptly and effectively to network security incidents and possible breaches, conducting incident response analyses when needed

　　Document security processes and procedures, and write Wikis for any internal security changes

　　Implement, manage, and upgrade security controls and policies for the protection of the data systems and network, identifying security gaps and implementing enhancements when needed

　　Monitor and ensure compliance to standards, policies, processes and procedures

　　Evaluate network and security technologies, developing requirements for local area networks (LANs), wide area networks (WANs), virtual private networks (VPNs), routers, firewalls and related security devices, adhering to industry standards

　　Test and identify network and system vulnerabilities, and lead remediation projects

　　Collaborate with the Information Security Architect on security solution proof of concepts and log analyses for the SIEM system to ensure policies and security requirements are met

　　Work with Information Security Architect to produce security metrics for the security management team

　　Collaborate with other departments to ensure that best security practices are followed at all times

　　Collect, analyze and summarize data trends to assist with preparing system security reports

　　Update job knowledge by tracking and understanding emerging security practices and standards, participating in educational opportunities, reading professional publications and participating in professional networks

　　Participate in change management processes, such as taking ownership for new requests, or proactively exploring opportunities to add value

　　Work with IT infrastructures using firewalls, VPN, data loss prevention, IDS/IPS, web-proxy and security audits

　　The requirements herein are intended to describe the general nature and level of work performed by employee, but is not a complete list of responsibilities, duties, and skills required. Other duties may be assigned as required.

　　Bachelor’s degree in Information Technology, Computer Science or related field preferred

　　2 – 5 years of experience with information security frameworks and/or IT risk management with a focus on security, performance and reliability

　　Experience with engineering, implementing and troubleshooting information security solutions for IT security controls

　　Knowledge of NIST, ISO 27001, or other security frameworks

　　Knowledge of security networking, engineering, protocols, cryptography, authentication, authorization and access

　　Able to interact effectively with broad cross-section of personnel to communicate and enforce security measures, educate and problem-solve

　　Knowledge and understanding of IT as it relates to business risk

　　Able to balance security and functionality

　　Knowledge of complex technical issues with ability to manage and resolve in a timely manner

　　Able to use creative thinking to secure DFA data, systems and network

　　Strong written and verbal communication skills

　　Must be able to read, write and speak English

　　Able to travel 15-25% of the time

　　An Equal Opportunity Employer