at First American Bank in Elk Grove Village, Illinois, United States
Job Description
Senior Information Security Analyst - Assurance & Compliance - Remote
Org Structure : Job Posting Location
Elk Grove Village, IL - 1650 Louis Ave
Category
Information Technology
Type
Regular Full-Time
Job Description
First American Bank was founded in Chicago, and over the years has expanded throughout Wisconsin and Florida. As the largest privately held bank in Illinois, we now have over 60 locations and assets of $5+ billion. We are a community bank at heart with international expertise, traditional values, and a forward-looking philosophy. Our employees have the experience and vision to meet the needs of savers, borrowers, and businesses in the 21st century. First American Bank can offer employees a level of visibility, career growth, and stability that is difficult to find in many larger corporations.
The Senior Information Security Analyst - Assurance & Compliance is responsible for security assurance and compliance activities to achieve business goals by evaluating, deploying, and managing of security technologies. This individual is expected to have outstanding problem-solving skills, meticulous attention to detail, and a sound understanding of cybersecurity and the financial sector requirements. In addition, be fully aware of the enterprise's security goals as established by the regulatory landscape, company policies, procedures, and guidelines and partner cross-functionally towards achieving and optimizing those objectives.
Duties & Responsibilities
Lead Information Security Assurance & Compliance including cross functional assessments of information resources, processes, tools.
Oversee application compliance cross functionally to ensure risks to the organization are identified and processed in accordance with the Information Security Risk Management Program.
Partner with key stakeholders in the Business Units, Technology, Compliance, Internal Audit, Legal and Third Parties to review and provide security guidance on current and new processes, maintain evidence and artifacts for internal and external audits.
Identify and analyze new and emerging requirements for policy impacts; develop and update policies, procedures, standards, and guidelines.
Serve as the primary point of security assurance and compliance management activities, including but not limited to, analyzing, quantifying, validating, testing, and tracking identified information security compliance and risks as well as reviewing, documenting, and tracking risk exception requests and facilitating risk management discussions with key stakeholders.
Manage and track cybersecurity audit engagements and due diligence activities. Utilize working knowledge of information security best practices to ensure sufficient IT controls are in place to meet our external audit and client requirements.
Process Information Security due diligence requests and ensure compliance to policies, procedures, and regulations both internally and for third parties.
Manage Information Security Awareness initiatives.
Evaluate and recommend improvements to the company's information systems control environment, risk management and Information Security audit processes to reduce duplicate audit requests in addition to minimizing Process Owner dependency to obtain control evidence.
Facilitate the ongoing management of Information Security Policies, Standards, Guidelines and Procedures and coordinate awareness cross functionally.
Analyze and measure compliance objectives and foster initiatives with established Information Security policies and procedures by examining IT records, reports, operating practices, and documentation.
Create and maintain dynamic dashboards and/or scorecard for visibility of Information Security Governance activities.
Provide security recommendations to other team members, management, and business stakeholders for solutions, enhancements to existing systems, and new security tools to help mitigate security vulnerabilities and automate repeatable tasks.
Maintain up-to-date detailed knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and the development of new attacks and threat vectors.
Assess system configurations of company solutions as per the established baselines, for those security systems solutions that are partially or wholly operated by the InfoSec team.
Identify security requirements, based upon need or as the result of a security issue that puts organizations systems at risk.
Participate in the monitoring all in-place security solutions for efficient and appropriate operations.
Aid in the design and execution of vulnerability assessments, penetration tests and security audits.
Participate in the identification of security breaches detected by security systems, and in the tracking, investigation,... For full info follow application link.
First American Bank is an Equal Opportunity Employer (Minorities/Females/Disabled/Veterans).
