• Work closely with the H2 team members to implement the industrial security program ensuring company security requirements are met. • Interface with all levels of H2 personnel and government management personnel to ensure contract security compliance with National Industrial Security Operating Manual (NISPOM), DoD Manual 5205.07, Contract Security Classification Specification (DD254) and Program Classification Guides. • Self-starter with ability to work independently, customer service orientated • Be able to interpret company and government security policies and apply them to program operations • Provide clear guidance to company employees, and recommend modifications to operations policies or procedures as appropriate • Thorough working knowledge of the NISPOM, other relevant DoD security guidance standards • Thorough understanding of security databases such as NISS, NBIS, eQIP, eFCL and ISFD • Administer day-to-day security programs: personnel processing, program reviews, document control system, audits & self-inspections, violation investigations & reports • Experience creating and conducting initial security briefings, debriefings, indoctrinations, pre/post foreign travel briefings and refresher briefings, as appropriate • Ability to develop and establish an effective security awareness, training, and education program • Strong communication skills, both oral and written

Role Description We are seeking a System Security Engineer with 1-3 years of experience to join our Information Security Department. This role focuses on monitoring and maintaining SIG SAUER’s security tools, including: - DNS monitoring - Data Loss Prevention (DLP) - Spam/anti-phishing detection - Vulnerability scanners - Anti-virus systems Key responsibilities include: - Triaging alerts from security tools and coordinating remediation with the IT team and 3rd party vendors. - Supporting security incident response efforts as the Incident Scribe, the Cyber Incident Response Plan (CIRP). - Managing user requests via the ticketing system, including email investigations and access requests. This position requires foundational experience in information security, offering opportunities to enhance skills and contribute to a robust security program. Qualifications - Bachelor’s degree in cyber security, computer science or a related discipline - 1-3 years of experience in a cyber or information security role - Hands-on experience with security monitoring and incident response - Industry certification such as CompTIA Security+ or CySA+ preferred - Experience with Microsoft Intune preferred - Understanding of SIEM, DLP, spam filters and anti-virus tools - Experience running vulnerability scans and processing results - Understanding of security control frameworks and compliance standards (e.g., NIST) - Understanding of operating systems such as Microsoft and Linux - Ability to quickly adapt and change priorities as business needs change - Must be detailed and results-oriented - Ability to clearly express ideas and information to senior team members Requirements - Prolonged periods of sitting at a desk and working at a computer using a keyboard and mouse performing repetitive tasks. - Ability to open file cabinets, reach with hands and arms, bend, and twist, lift and move files. - Ability to lift up to 25 pounds. - Must wear required Personal Protective Equipment (PPE) where required. - Must comply with all work exposure EH&S training requirements and adhere to SIG SAUER Inc. Security Mandates. Company Description SIG SAUER, Inc. is a leading provider and manufacturer of firearms, electro-optics, ammunition, air guns, suppressors, remote controlled weapons stations, and training. For over 250 years, SIG SAUER has evolved and thrived by blending American ingenuity, German engineering, and Swiss precision. Today, SIG SAUER is synonymous with industry-leading quality and innovation which has made it the brand of choice amongst: - The U.S. Military - The global defense community - Law enforcement - Competitive shooters - Hunters - Responsible citizens Additionally, SIG SAUER is the premier provider of elite firearms instruction and tactical training at the SIG SAUER Academy. Headquartered in Newington, New Hampshire, SIG SAUER has over 3,200 employees across twelve locations in three states and is a certified Great Place to Work™.

Love + medicine is who we are, it's what we do, it's why people want to work here. If you’re looking for a job to love, apply today. Scheduled Weekly Hours: 40 Emplify Health is seeking a talented IT Security Engineer to join our team and focus on Identity and Access Management (IAM). In this role, you will play a key part in safeguarding our sensitive data by implementing and testing new security features, planning upgrades, and responding to security incidents. What's Available: - Full time, 80 hours bi-weekly (1.0 FTE) - Monday-Friday core business hours - Location: Remote eligible position, must reside in Wisconsin, Minnesota, Iowa. - Immigration sponsorship (e.g., H-1B) is not available for this position. - Starting salary of $83,000+ based on relevant work experience What You'll Need: - Bachelor's degree or equivalent years of experience and education. - 5–7 years of experience in IT Security - Strong understanding of IAM principles, including identity governance, authentication, and authorization - Hands-on experience with scripting and programming languages such as Python, PowerShell, and Java, used for automation, integrations, and security tooling - Experience implementing, enhancing, and supporting IAM solutions - Ability to stay current with IAM trends, security standards, and industry best practices - Strong communication, collaboration, and problem-solving skills In addition to the rewarding work, you'll receive: - A highly adaptable and mission-driven organization with a work environment that supports you personally and professionally and a work culture where you are valued and appreciated - Competitive Benefits: A comprehensive and generous benefits package (Medical, Dental, Life Ins, HSA/FSA) ensuring your comfort and well-being as a valuable team member - Substantial retirement contribution including a 401k match & annual discretionary base contribution - Work-Life Balance: Paid Time Off (PTO) combines vacation, sick, and personal days into one balance to allow you the flexibility to use your time off as you need - Professional Development: Support for your career growth through Professional Development Opportunities, our Tuition Investment Program, and our Career Development Center - Additional Employee Discounts and Perks Other benefits include a Wellness program with incentives, employer-paid life insurance and AD&D, optional short-term and long-term disability coverage, an employee assistance program, identity theft protection, pet insurance, Inspire & Celebrate colleague recognition and rewards program, a discount program, and more! PRACTICES AND PROMOTES BEHAVIOR CONSISTENT WITH THE MISSION, VISION AND VALUES: Mission: Together, we inspire your best life by relentlessly caring, learning and innovating. Vision: Leading with love, we courageously commit to a future of healthy people and thriving communities. Values: Belonging, Respect, Excellence, Accountability, Teamwork, Humility Emplify Health is comprised of two of the Midwest’s most respected healthcare systems, Bellin Health and Gundersen Health System. Once neighbors, we are now partners, united in our mission to provide exceptional care to our communities. As a not-for-profit, patient-centered healthcare network, we have headquarters in Green Bay and La Crosse, Wisconsin. Our extensive network includes 11 hospitals and more than 100 clinics, serving 67 cities and rural communities across Wisconsin, Iowa, Minnesota and Michigan’s Upper Peninsula. With over 4,500 dedicated nurses and providers, we are committed to delivering primary, specialty and emergency care, along with innovative medical education programs. Join us in making a meaningful difference in the lives of our patients and communities If you need assistance with any portion of the application or have questions about the position, please contact HR-Recruitment@gundersenhealth.org or call 608-775-0267. We inspire your best life by relentlessly caring, learning and innovating. This is our purpose. Together with our values — belonging, respect, excellence, accountability, teamwork and humility — our pillars set our foundation and our future. Equal Opportunity Employer

TITLE: INFORMATION SECURITY ENGINEER STATUS: EXEMPT REPORTS TO: MANAGER – INFORMATION SECURITY DEPARTMENT: IT – INFORMATION SECURITY CODE: 11264 GRADE: 21S PAY GRADE: $112,200.00 - $118,000.00 ANNUALLY GENERAL DESCRIPTION: The Information Security Engineer is responsible for securing our sensitive data and critical assets from current and emerging threats for Golden 1. This position utilizes business knowledge and technical experience of cybersecurity to provide a secure environment for Golden 1’s technology and information needs. The Information Security Engineer works closely with technology, application teams and business units to develop and test security structures designed to protect the computer and network infrastructure. This position is responsible for performing technical assessments of risks, threats and vulnerabilities related to new and existing information systems and supporting process within Golden 1 and external vendor connections. TASKS, DUTIES, FUNCTIONS: - Analyze, assess, and respond to various internal and external threats identified by intrusion detection system (IDS)/intrusion prevention systems (IPS), web application firewall, vulnerability scan results and other data sources. Provide recommendations to IT management and monitor to ensure that recommendations are effectively implemented. - Perform vulnerability assessments and penetration testing to identify exposures and risks, and report findings to management. Communicate and collaborate with partner teams, service owners, Information Security, and senior leadership to influence, prioritize, and drive the resolution of discovered security findings. - Provide consultative security guidance on a constant stream of new products and technologies as a subject matter expert on Golden 1 projects and initiatives - Advise and participate in the development of business systems designs, ensuring hardening standards and configurations meet information security policy and procedures. - Work in conjunction with IT to ensure appropriate procedures and processes are in place and effective in the detection and prevention of system intrusions as well as in establishing and managing a functional anti- virus/malware/DLP policy. - Determine ways to monitor, measure, test and report on the effectiveness and efficiency of information security controls as well as compliance with information security policies and procedure. - Implementation, administration, and maintenance of IDS/IPS, URL filter, email gateway, certificate issuance and control, network management, identity access control, and other information security infrastructure and controls as necessary. - Regularly review IDS/IPS/SIEM rules, wireless rogue access point detection configuration and procedures and practices to ensure optimal effectiveness of security in the business environment. - Participate in creating access privileges, control structures and resources to ensure optimal efficiency and adherence to information security standards. - Engage with internal - and external auditors during examinations, providing support and assistance in addressing audit recommendations. - Participate in the security development of network systems architecture, design, and ongoing review of system configuration in collaboration with relevant team members and external partners. - Keep management updated on outstanding issues that are not resolved in a timely manner in accordance with established escalation procedures. - Develop and maintain a clear understanding of the business area needs and incorporating these needs into technical solutions by updating, developing, and maintaining a thorough knowledge of credit union procedures, products, service, and data processing systems. - Monitor state and federal laws and regulations related to credit union compliance including Gramm-Leach-Bliley Act (GLBA), Payment Card Industry (PCI), Sarbanes-Oxley Act (SOX), etc. – and privacy laws. - Performs other job-related duties as necessary PHYSICAL SKILLS, ABILITIES, AND EXERTION UTILIZED IN THE PERFORMANCE OF THESE TASKS: - Demonstrate strong oral and written communication skills with a focus on troubleshooting and error identification. - Must possess sufficient manual dexterity to skillfully operate applicable computer hardware, a variety of hand tools and standard office equipment. ORGANIZATIONAL CONTACTS & RELATIONSHIPS: - INTERNAL: All levels of staff and management. - EXTERNAL: Vendors, service providers, organizational groups, and other financial institutions as needed. QUALIFICATIONS: - EDUCATION: Bachelor of Science in Computer Science, Management Information Systems, Information Security Information Assurance or equivalent work experience. - EXPERIENCE: - 3 years’ experience in organizational information security, cybersecurity, information assurance or providing security consulting services - Working knowledge of traditional security controls and technologies, such as SIEM systems, IDS/IPS, public key infrastructure (PKI), IDAM systems, antivirus, and firewalls, in addition to newer offerings such as endpoint detection and response (EDR), threat intelligence platforms, security automation and orchestration, deception technologies and application controls - Strong technical and analytical skills, with a background in technology design, implementation, and delivery - Working knowledge SIEM systems, firewalls, threat intelligence, security automation and orchestration solutions, IDS/IPS, data loss prevention (DLP) and other network and system monitoring tools - Demonstrates understanding of network systems and applications including: DNS, LDAP, virtualization, Database design/hardening, Email/secure messaging, Data Loss Prevention, and end point protection. - Demonstrate understanding of the NIST CSF and tracking KPIs to validate the cybersecurity program - Demonstrates understanding of Windows, Linux, and cloud computing technologies, including software-, infrastructure- and platform-as-a-service, as well as public, private and hybrid environments. - Strong sense of ethics, integrity, and professionalism - Demonstrates the ability to articulate methodologies and concepts; communicate effectively in providing technical guidance and expertise to management and other staff PHYSICAL REQUIREMENTS: - Prolonged sitting throughout the workday to accomplish tasks. - Availability for emergency and on call duty 24 hours a day, 7 days a week, as needed. - Occasional travel may be required. - Lift and carry communications equipment and computer hardware weighing up to fifty pounds. - Corrected vision in the normal range required to configure, test, and troubleshoot network server hardware and data. - Hearing within normal range. - May work additional work hours to accomplish tasks. LICENSES/CERTIFICATIONS: One of the following security certifications: CEH, Security +, SSCP, SANS GIAC, PCNSA, or equivalent Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records. THIS JOB DESCRIPTION PROVIDES AN OVERVIEW OF THE GENERAL SCOPE AND LEVEL OF WORK EXPECTED TO BE PERFORMED, BUT IT IS NOT AN EXHAUSTIVE LIST OF ALL DUTIES OR RESPONSIBILITIES ASSOCIATED WITH THE POSITION. THE CREDIT UNION RESERVES THE RIGHT TO MODIFY, ADD, OR REMOVE DUTIES AS NEEDED WITHOUT ADVANCE NOTICE. EMPLOYEES MAY BE REQUIRED TO PERFORM ADDITIONAL TASKS AND DUTIES AS DIRECTED BY THEIR SUPERVISOR, PROVIDED SUCH TASKS ARE WITHIN THE EMPLOYEE’S KNOWLEDGE, SKILLS, AND ABILITIES, OR CAN BE PERFORMED WITH REASONABLE TRAINING. NOTHING IN THIS JOB DESCRIPTION ALTERS THE AT-WILL EMPLOYMENT RELATIONSHIP OR LIMITS THE CREDIT UNION’S RIGHT TO ASSIGN OR REASSIGN DUTIES AND RESPONSIBILITIES TO THIS POSITION AT ANY TIME. REV. 4/21/2026