Hamlyn Williams | IT Security Compliance Analyst - ...

The IT Security Compliance Analyst will have exposure to multiple security and technology areas within the Security Risk and Compliance team and the Bank. Additionally, you will be joining a growing financial services firm with strong culture for excellence with respect to People, Performance and Possibilities. The IT Security Compliance Analysts primary focus is supporting ongoing cybersecurity compliance functions including metric reporting, security policies/procedures, security risk assessments and security education and awareness initiatives. This role requires an individual with knowledge of cybersecurity risk and control frameworks, as well as basic understanding of control testing. Additionally, the role will work closely with other cybersecurity functions to identify opportunities for program and process improvement and supporting implementation of those ideas. ** This is a hybrid role 4X a week in their Downtown Phoenix Location. No relocation candidates at this time** What we are looking for: Responsibilities Support ongoing cybersecurity compliance functions including reporting, security risk assessments and security education and awareness initiatives. Collect, validate, and develop reporting on department key risk indicators for senior leadership Maintain and report department metrics and tracking tools for various cybersecurity compliance programs. Maintain procedures and desk instructions to reflect enhancements and changes to the programs within the department. Support requests from internal audit and second line functions. Comfort level in asking questions, taking initiative, and building relationships within the team and with other key stakeholders across the company. Qualifications Bachelors degree in computer science, accounting, finance, or other degrees with relevant information/cyber security work experience. At least three to five years of experience in an audit, information security, or cybersecurity risk and controls related role. Awareness of cybersecurity and financial services industry. Computer proficiency in programs such as SharePoint and the Microsoft Office Suite (Excel, Word, Powerpoint, etc.) Practical recent experience with information security frameworks, such as NIST CSF. Industry certifications (CISA, CRISC, CISM, etc.) preferred but not required. Self-starter with interest in internal controls, technology, and information security. Must be a US Citizen or Greencard Holder

Created: 2024-11-27