Job Description

Description :

About connectFirst Credit Union

As a credit union, we\'re different than a bank - and we like it that way.

At connectFirst, we spend our days helping our members achieve their financial aspirations through a community-focused approach to banking that\xe2\x80\x99s true to our co-operative principles. You\xe2\x80\x99re our member, not a number. We\xe2\x80\x99re your neighbours and your partner. Over 80 years ago we started from humble beginnings. Through the years, we\xe2\x80\x99ve grown to become one of Alberta\xe2\x80\x99s leading financial institutions through a desire to connect the dots between your dreams, your goals, your community, and your financial wellness and we echo these desires through our new, consolidated connectFirst brand.

We believe that banking is about more than money - it\xe2\x80\x99s a cornerstone of every vibrant community and that our members should expect us to positively impact the financial success and viability of the communities that we call home. We invest meaningfully in the potential and well-being of our employees, and what matters most to our members. We have honest conversations about real things, as real people. Our members are owners, they have a say in how we operate, they earn dividends on common shares and investment shares, and they have access to an extensive array of financial products and services.

• Our mission: Make money make a difference.
• Our vision: Do what\'s right for every member.
• Our values: Think big, act local, take charge, and make it easy.

We\xe2\x80\x99re committed to providing remarkable experiences to our members, our communities, and our employees, and we\xe2\x80\x99re proud to be regarded as one of the best:

• Named among Canada\xe2\x80\x99s Most Admired Corporate Cultures\xe2\x84\xa2 by Waterstone Human Capital
• Recipient of Canada\xe2\x80\x99s Best Managed Companies award for 21 consecutive years
• $12.3 billion book of business (Deposits=45%, Loans=43%, Wealth Management=10%, Syndicated Loans=2%)
• 750 employees
• $585 million in Member\'s equity

What You\xe2\x80\x99ll Be Doing:

The role will actively support identification and management of cyber risk by:

• Establishing a threat intelligence program to identify and understand the threat landscape relative to the financial service industry and connectFirst\xe2\x80\x99s cyber risk appetite.
• Ensuring effective and complete scanning of connectFirst\xe2\x80\x99s environment(s).
• Defining and hardening application and platform controls.
• Performing cyber security compliance assessments of endpoints, servers, and data stores.
• Conducting and providing regular reporting on connectFirst and Partners patch management program and overall status of patch compliance.
• Executing, coordinating, and documenting network discovery scans and vulnerability scans for operating system and/or database assets, including performing ad-hoc vulnerability scans and/or reports.
• Assessing network defense technologies and policies relative to connectFirst cyber risk appetite and financial service industry compliance requirements.
• Leading cyber security investigations to assess risk and manage security incidents.
• Developing methods to identify and manage vulnerabilities/threats.
• Working with cross functional team to implement and mitigate identified threats and vulnerabilities.
• Engaging project stakeholders, as needed, to help drive remediation of vulnerabilities on infrastructure before new applications or updates go live.
• Overseeing the Security Operations Centre (SOC) service provider to ensure SOC performance, threat intelligence, incident analysis and reporting.
• Establishing, gathering, and reporting metrics to communicate the state of the vulnerability management program and findings across connectFirst.
• Overseeing internal and external penetration testing, as well as implementation of remediation actions in response to identified vulnerabilities.

What You\xe2\x80\x99ll Bring to the Role:

• 3 - 5 years\xe2\x80\x99 experience in infrastructure operations or cyber security.
• Understanding of vulnerability management processes, including scanning, reporting, and remediation (knowledge of Windows operating system, Linux operating systems, network devices).
• Completion of a relevant certificate, diploma, degree, or designation program.
• A combination of education and experience may also be considered.
• The following professional certifications are considered a strong asset: CISSP, CISM, CRISC, GSLC.
• Knowledge and experience in developing and implementing vulnerability management programs, initiatives, and capabilities.
• Experience as a leader or individual contributor in configuring and executing compliance and/or vulnerability assessment scans.
• Experience with MS365/Azure Security & Compliance considered a strong asset.
• Experience with cloud technology, distributed infrastructure, systems, and applications.
• Experience with Vulnerability Management tools such as Qualys, Rapid7, Tanium.
• Experience working with senior leadership teams considered an asset.
• Familiarity with PCI DSS considered an asset.
• Familiarity with NIST Cyber Security Framework considered an asset.
• Familiarity with scripting languages as well as data analysis tools.

Additional Skills That\xe2\x80\x99ll Support Your Success:

• Ability to work independently, as well as within a team environment.
• Good communication and presentation skills; both written and verbal.
• Ability to communicate security concepts in plain language meaningful to different audiences.
• Demonstrated ability to collaborate to solve problems and actively incorporate information from a variety of sources.
• Strong critical thinking and analytical skills; procedural, concrete, abstract, including the ability to research, analyze, and present vulnerability findings.
• Excellent organizational, multi-tasking and time-management skills.
• Excellent attention to detail to ensure all artifacts produced are concise and accurate.
• Project management skills.
• Proficiency in Microsoft Office applications and ability to learn other programs.
• Accustomed to a team-oriented, dynamic, and fast-paced technology environment.
• An understanding and appreciation of the business impact of security tools, technologies, and policies.
• Passion for maximizing value and efficiency using innovative methods and technologies.
• Strong business acumen to help manage business relationships.

Work Conditions:

• Flexible work environment in Calgary, AB.

Qualified applicants are invited to apply online.

We thank all applicants for their interest. Please note applications will only be accepted online and only those applicants under consideration will be contacted.

For more information on Connect First Credit Union Careers, please visit

connectFirst