IT Infrastructure & Security Analyst - REMOTE na Quorum Federal Credit Union

Who is Quorum  

At Quorum Federal Credit Union, we are a cutting-edge credit union that operates as a technology company, delivering innovative financial solutions to our members. As a remote organization, we thrive on collaboration and recognize outstanding performance. We are the ideal workplace for self-motivated individuals who are committed to organizational success and eager to join a dynamic team of professionals. We stand out as a best-in-class employer, offering a unique and supportive work environment that fosters personal and professional growth. Our culture is built on valuing teamwork, recognizing achievements, and providing the tools and resources needed to excel. If you are looking for a place where you can make a meaningful impact, enjoy a flexible and fulfilling work experience, and be part of a forward-thinking team, Quorum Federal Credit Union is the perfect fit for you. 

Job Description Summary  

We strive for innovation and new ways to solve complex problems to deliver on our promise in creating Banking That’s Good.  For You. As an IT Infrastructure & Security Analyst you will be responsible for maintaining and securing the organization's IT infrastructure. This role ensures the reliability, performance and security of systems, networks and data while supporting business operations and compliance requirements. The position will hold a hybrid role, providing technical expertise and oversight of our IT Infrastructure and Managed Service Provider (MSP) while taking ownership of several high-level Information Security roles and responsibilities.

The IT Infrastructure & Security Analyst will work closely with both internal teams and the MSP to ensure servers, network devices, endpoints and related infrastructure and software support Quorum business needs. The IT Infrastructure & Security Analyst shall work independently, managing and/or supporting projects and deliverables related to infrastructure, Azure Cloud and M365 platforms and tools. In addition, the IT Infrastructure & Security Analyst shall provide help desk troubleshooting and end-user client services desktop support as needed.

The IT Infrastructure & Security Analyst will provide first-line support for Information Security related incident response and “Business As Usual” (BAU) activities. The IT Infrastructure & Security Analyst will oversee outsourced service delivery, prepare reports on security posture (patching, vulnerability scans, etc.) and threat intelligence. In addition, the IT Infrastructure & Security Analyst will be responsible for producing regular security education and awareness training in the form of bimonthly InfoSec postings in Teams and SharePoint. 

Key Responsibilities – Systems Infrastructure and Admin

1.  In conjunction with MSP, supports the End User Computing Environment:
• M365 Applications and Services including Exchange Online, Teams and SharePoint.
• Hybrid AD / Entra IdP (including SSO and Conditional Access Policies).
• Intune Endpoint Management (including hardware and software deployment, policy deployment and MDM).
• VDI - Citrix Cloud, Microsoft AVD.
2. In conjunction with MSP, supports Azure Hosting Environment:
• Azure Compute / Virtual Machines.
• Azure and General Networking (Routing, DNS, DHCP).
3. Provides helpdesk and desktop client support to all staff, including remote users:
• Triage, respond to and manage tickets in Quorum’s Service Desk system.
• Respond to general hardware and software incidents and requests.
4. Provides oversight of external vendors and MSP:
• Provide oversight of technical details related to outsourced projects and service delivery.
• Open and track incidents and requests for services managed by the MSP.
• Regularly reviews tickets that come into the MSP for handling issues or escalation.
5. Provides Project Management in support of IT goals and objectives:
• Functions as a project lead on small to medium IT initiatives.
• Leads discovery and information gathering sessions, conducts analysis and presents recommendations to IT Management.
• Contributes subject matter expertise in assigned areas, executes assigned deliverables.  

Key Responsibilities – Information Security

1. Provides first-line Incident Response to Alerts generated by our MSP SOC or related system (Business Risk / Dark Web).
2. Performs vendor due diligence (i.e. information security risk assessments) and SOC audit reviews.
3. Responsible for a variety or Information Security related “Business As Usual” Tasks:
   • Patch Management - Review Reports, Identify Issues & Trends.
   • Vulnerability Management - Review Reports, Identify Remediation Actions.
   • DLP - Review Reports, Identify Possible Incidents.
   • Endpoint Agent True-Up (Recon endpoint security and management agents to host inventory).
   • Quarantined "High Confidence Phish" Email - Review and Release.
   • Suspected / Reported Phishing email & campaigns - Review, Assess and Respond.
   • Threat Intel - Monitors and analyzes threat intelligence sources and provides reports to IT management.
   • Software Inventory Review (EoL / PuP).
   • Website / Email Whitelist Requests (Advise on Approval).
4. Information Technology Policies: Create, review and maintain assigned information security policies, procedures and controls to align with Cyber Security best practices.
5. Manages the organizations Information Security Training and Awareness Programs:
   • InfoSec Educational Posting - Security education and awareness training for Employees and IT administrators (bi-monthly)
   • Phishing Program (Select campaigns, compile results and perform training). 

Other Responsibilities

1. Promotes and maintain a positive work atmosphere by behaving and communicating in a manner consistent with professional standards.
2. Stays abreast of technology and credit union industry standards and developments as well as proactively seeks opportunities to apply new developments within the organization to add value.
3. Ensure adherence to company policies and procedures and Banking/Credit Union regulations.
4. Perform additional duties as required.        

Scope

The IT Infrastructure & Security Analyst works under minimal supervision exercising independent judgment. This person must be action oriented, self-motivated and creative while being highly functional. 

Essential Skills, Knowledge and Requirements

1. Bachelor’s degree in computer science, information technology or other related degree is strongly preferred; however a combination of education and related work experience may be considered.
2. Five plus years of related technology infrastructure experience administering and maintaining IT infrastructure and systems.
3. Two plus years of demonstrated experience supporting a Microsoft Azure and M365 based user environment including:
   • Microsoft M365 Exchange Online Email (in a hybrid on-prem / Cloud environment)
   • Microsoft Intune Mobile Device Management for iOS and Android
   • Microsoft Intune AutoPilot and Endpoint Manager
   • Microsoft Teams support and administration
   • Microsoft SharePoint support and administration
   • Microsoft OneDrive support and administration
   • Microsoft Entra ID (Azure AD) IdP including hybrid Active Directory Sync, SSO and SAML
   • Microsoft MFA and Conditional Access Policies
   • Microsoft Office M365
   • Microsoft Azure compute, storage, networking and security technologies
   • Microsoft AVD VDI (Citrix Cloud and XenDesktop experience a plus)
4. Fundamental understanding of Information Security and Cyber Security concepts
   • Familiarity with common concepts and frameworks, e.g. SOC2, ISO 27001/27002, CIS18 and NIST
   • Experience with SIEM investigations and KQL a plus
5. Experience supporting virtualized environments, particularly Virtual Desktop Infrastructure and Cloud hosted environments.
6. Previous experience with the following is a plus:
   • Cloud PaaS and SaaS technologies (e.g. Azure Files and Managed SQL).
   • Cloud-based VOIP solution.
7. Fundamental understanding of network protocols including but not limited to TCP/IP, DNS, DHCP, SIP, BGP and SDWan.
8. Demonstrated experience managing and implementing Infrastructure projects. Must have familiarity with PC hardware and software.
9. Excellent problem-solving, organizational, analytical, verbal and written communication skills.
10. Excellent multi-tasking and time management skills.
11. Results driven, service oriented, self-motivated and able to work independently.
12. Trustworthy with the ability to maintain the highest level of integrity and trust.
13. Previous experience with financial services, banking or credit union institutions is a plus. 

Environmental / Physical / Mental Requirements

The IT Infrastructure & Security Analyst performs a major portion of his/her duties through verbal and written communications.  It is critical that he / she possess the ability to communicate with clarity, while understanding and explaining complex situations to team members and outside contacts.  Accuracy is essential and he / she must possess the ability to proofread documentation and correspondence to ensure it is free of errors and fraud.   The person will spend a good portion of the day seated at a workstation, but may also be mobile throughout the credit union for purposes of meetings, working with others, etc. Position may require lifting up to 25 pounds.

Compliance/legal requirements  

• Quorum is an Equal Employment Opportunity employer. Qualified applicants will be considered for employment without regard to race, color, religion, gender, sexual orientation, national origin, age, marital status, protected veteran status, or disability status. 
• Quorum will make reasonable accommodations in compliance with the Americans with Disabilities Act of 1990. Reasonable accommodations are available upon request for applicants and/or employees with qualifying disabilities throughout the application and employment process.
• Qualified Applicants with arrest or conviction records will be considered for employment in accordance with all applicable federal, state, city and local laws, rules, and regulations.
• This job description in no way states or implies that these are the only duties to be performed by the employee(s) incumbent in this position. Employee(s) will be required to follow any other job-related instructions and to perform any other job-related duties requested by any person authorized to give instructions or assignments. The company reserves the sole right and discretion to make changes to this job description.
• Each employee is required to uphold the Credit Union's compliance with all policies, procedures, and required regulations including the Bank Secrecy Act and our Anti-Money Laundering policy.
• This document does not create an employment contract, implied or otherwise, other than an "at-will" relationship.

**PLEASE NOTE**

We are not able to consider candidates for this role who reside in Montana, Nebraska, Rhode Island, or Puerto Rico

Quorum's opportunities are based in the US and US work authorization is required. We are not able to support current or future sponsorship.

Salary Range: $110,000 - $120,000 per year.  Individual salary will vary based on skills and experience.  Discretionary incentive compensation may be available based on company and individual performance.

Benefits: Medical, Vision, Dental, Retirement Benefits, and Paid Time Off (PTO)

#LI-Remote