Information Security Specialist
Androscoggin Savings Bank | Lewiston, ME
Information Security Specialist
The Information Security Specialist is a technician who works on the day-to-day monitoring and coordination of information security processes. This critical role works in conjunction with the Risk Management Division to identify threats and coordinates their timely remediation with the IT department. The IS Specialist is a key player in keeping our customer and company data safe and secure.
Our IS Specialist works closely with the Bank’s Information Security Officer (ISO) to fully understand the Bank’s Information Security-related policies, procedures and risk profile. Leveraging best-in-class tools and vendors, the incumbent routinely responds to audit findings and vulnerability scans related to our IS posture ensuring we remain compliant with those policies and procedures while improving the Bank’s overall risk profile.
Our successful candidate will have experience working in information security and/or network administration in a federally regulated and compliance-driven environment, such as in a financial or medical industry. It is critical that applicants have solid experience working with firewalls and Windows Servers/PC’s as this role constantly works to resolve vulnerabilities in those systems. Experience working with routers and switches strongly preferred.
Completes or assists with the following key duties:
Uses system reporting tools for security monitoring and carrying out vulnerability remediation priorities.
Monitors and respond to security alerts and incidents. Cooperates with the larger team to examine any security incidents or breaches to determine their root cause and carry out the determined remediation.
Ensures IT’s compliance with existing policies & procedures including verification of completed backups and data storage.
Helps evaluate information security compliance and risk to recommend improvements. Implements, or monitors implementation of approved changes in the following areas:
- Cybersecurity measures and controls; protocols for protecting digital files and information systems against unauthorized access, modification and/or destruction
- The Bank’s vulnerability management program
- Disaster recovery testing
- The Bank’s incident response process
- Vulnerability monitoring of Bank devices
Maintains and monitors:
- Vulnerability scanning tools, threat remediation tracking & reporting
- Intrusion protection and detection systems
- Access permissions to bank information
Coordinates internal and external testing including designing and performing phishing tests.
Participates in Information Security internal/external audits and exams providing requested data and information. Manages any required remediation.
Assists in the IT vendor selection process, specifically to verify that vendors comply with existing bank information security standards.
Serves on related internal committees as required.
Bachelor’s Degree in Information Systems, Information Technology or related Field is preferred. Previous experience in network administration or information security is required.
The successful candidate may possess some of the following certifications or be willing to pursue them with the Bank’s support:
- CISM: Certified Information Security Manager
- CompTIA Security+
- CompTIA CySA+
- CISSP: Certified Information Systems Security Professional
- GSEC: SANS GIAC Security Essentials
Benefits include paid time off, holiday pay, 401k participation with a generous match, and access to Androscoggin Bank's full insurance benefit package (medical, dental, vision, life, and disability). Additionally, Androscoggin Bank offers a tuition reimbursement opportunity, and paid Parental Leave for new Moms and Dads.
Hoping you could advance your career and your education? We can help. Androscoggin Bank is committed to supporting employee development, and employee benefits include tuition and education reimbursement.
- Androscoggin Bank is an Equal Opportunity Employer that offers an outstanding work environment, advancement and training opportunities, and an exceptional benefits package. EOE/Minorities/Females/Vet/Disabled