FirstBank Jobs

DESCRIPTION

The Security Compliance Analyst assesses, communicates, and reduces risk to the organization focusing on identifying risk based on team input, proactive compliance activities, and vendor risk management. The Security Compliance Analyst works in support of IT Security compliance requirements and company risk tolerance.

"/>

RESPONSIBILITIES

• The Security Compliance Analyst supports the security compliance program, tracking completion and remediation of compliance activities, and documenting compliance program evidence.

• Investigates and determines where threats exist based on input from the Security Operations Center (SOC) team, current policy requirements, and threat hunt information.

• Responsible for company-wide security awareness and education programs that are aligned with security policy, standards, regulatory requirements, and industry practices.

• Assists with vulnerability management reporting including patch management tracking and software code analysis reports.

• Collaborates with teamto develop compliance program strategy.

• Evaluates the security of vendors and hosted solutions based on approved Information Security standards.

• Determines risk and potential impact based on emerging security threats.

• Supports the security compliance program, ensuring the identification, tracking, prioritization, and remediation of all internal and external compliance requirements; also supports Internal Audit activitiesand remediation requirements.

• Ensures adequate and effective IT controls exist to meet applicable current and future security compliance requirements found in laws, regulations, frameworks such as requirements to comply with SOX (Sarbanes-Oxley), SOC II, and state / federal privacy law.

• Supports and updates a centralized repository of security controls aligned with corporate,regulatory, security framework requirements.

• Coordinates the information security compliance efforts of all internal and outsourced functions that have one or more information security-relatedresponsibilities, to ensure that organization-wide information security compliance efforts are consistent.

• Collaborates with share service areas (internal controls, risk management, legal andHR) on the maturation of policies/procedures related to compliance activities.

• Assists with identity management reviews from automated and manual systems.

• Part of rotational on-call support for Tier 2

• Perform other duties as required and/or assigned.

QUALIFICATIONS

• 5 to 7 Years of experience in Information Security

• Bachelor’s degree in computer science or related field.

• Experience with laws, regulations, frameworks such as requirements to comply with SOX (Sarbanes-Oxley), SOC II, and state / federal privacy law.

• Proven information security audit experience

• Experience with vulnerability management

• Experience with third-party risk management and enterprise risk assessments

• Experience with security awareness and training functions and tools

Minimum Qualifications-Knowledge, Skills, and Abilities

• Proven analytical, strategic vision drawing on strong problem-solving abilities.

• Able to prioritize and execute tasks in a high-pressure environment.

• Strong written, oral, and interpersonal communication skills.

• Ability to present ideas in business-friendly and user-friendly language appropriate to both executive and managerial audiences.

• Highly self-motivated and directed.

• Keen attention to detail.

• killed in working within a team-oriented, collaborative environment.

Work Environment and Physical Requirements

The work environment characteristicsdescribed are representative of those an employee may encounter while performing the essential functions of this job. Job may require moderate physical effort including lifting materials and equipment weighing less than 50 pounds. This position involves viewing a computer monitor for more than 30% of the time. Personal protective equipment may need to be worn. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

ABOUT US

Acosta, and its subsidiaries, is an Equal Opportunity Employer

Job Category: Administration

Position Type: Full time

Business Unit: Corporate

Salary Range: $72,600.00 - $90,800.00

Company: Acosta Services, Inc

Req ID: 1588