Lead Cybersecurity Analyst

Overview

State Department Federal Credit Union is seeking a Lead Cybersecurity Analyst to take ownership and make an impact. In this role, the analyst serves as the go-to expert for all things cybersecurity, helping shape standards, strengthen defenses, and protect members’ data. The Lead Cybersecurity Analyst works closely with IT and business teams to drive innovation, identify risks, and stay ahead of evolving threats.

Responsibilities include leading security audits, developing remediation plans, and implementing identity and access management solutions to ensure that both on-premises and cloud environments remain secure. This position also involves mentoring team members, collaborating with vendors, and contributing ideas that improve processes and enhance cybersecurity practices. The ideal candidate is passionate about cybersecurity, able to lead by example, and ready to influence an organization that values innovation and trust.

• Diversity and Inclusion:
  Work in an environment that values and respects all team members
• Paid Holidays:
  Enjoy 12 paid holidays a year, including your birthday
• Flexible Work Options:
  Potential work-from-home options after the introductory period
• Generous Paid Time Off:
  Ample vacation and personal days to maintain a healthy work-life balance
• Tuition Reimbursement:
  Support for your ongoing education and career development
• Parking
  
  Incentives:
  
  Financial incentives for your daily parking
• Comprehensive Insurance:
  Access to excellent medical, dental, and vision insurance packages
• Gym Reimbursement:
  Stay healthy with our gym membership reimbursement program
• Team Bonding:
  Participate in company and team bonding events that foster a collaborative work environment

• Provide technical direction for data security, incident response, emerging technologies and industry best practices.
• Work with vendors, business units, and application owners to ensure all SDFCU on-prem and cloud-based environments are secure and maintain appropriate risk posture.
• Provide guidance and support to team members.
• Work with internal teams and vendors to ensure security vulnerabilities and risks are properly understood, prioritized, and remediated in a timely manner.
• Plan, implement, and manage identity and access management solutions.
• Provide configuration, maintenance, and monitoring oversight of existing network and security technologies.
• Provide support to investigations and incident management team on matters of information security, intrusion mitigation/detection and computer forensics.
• Support internal and external compliance assessments/audits and establish mitigation plans for any findings.
• Identify and define system security requirements and assess gaps in coverage. Evaluate and partner with vendors to implement new security solutions as needed.
• Develop and publish metrics and dashboards demonstrating security posture and event activity

• Bachelor’s Degree in a program related to Computer Science, Information Security, or Risk Management.
• 5-7 years of overall relevant IT experience. Including 3+ years of hands-on technical experience in some combination of cloud security, infrastructure security, incident response, network security, identity management, security tools, architecture reviews, etc.
• Solid grounding in information security and risk management principles. Thorough understanding of IAM solutions, best practices, and Zero-Trust concepts and methodologies.
• Working knowledge of security frameworks, standards, and best practices, such as ISO, NIST, CSF and FFIEC.
• Proficiency/experience with vulnerability scanning tools (e.g. Nessus, Qualys, Rapid7 etc).
• Experience with E/M/X/DR, SOAR and related solutions/concepts (e.g. Splunk, Log Rythm, etc.).
• An organized and attention-to-detail approach (strong tactical execution), effective problem-solving skills, and the ability to make sound decisions in a self-directed and fast-paced environment.
• Ability to provide leadership and guidance to junior staff
• Excellent communication skills (written, verbal, presentation, and interpersonal).
• Ability to interact and negotiate internally and across departments.