Skip to main content
Portrait of a young businessman working at his desk in a modern officePortrait of a young businessman working at his desk in a modern office

Specialist, Information Security

Apply Now
Apply Now

Description

The Information Security Senior Analyst is responsible for driving the identification, assessment, measurement, monitoring and management of security risks. The Senior Analyst will focus primarily on the maintenance of an effective Information Security program and ensure proper controls are in place to manage the identified risks. The ideal candidate will be up to the challenge of selecting and configuring new security tools/applications, completing security testing, implementing data loss prevention plans, providing audit support and responding to due diligence requests.
This role will work closely with Information Security leadership to protect the safety and security of information systems, assets, and customer data. A well-qualified candidate will be comfortable working with executive and technical leadership to track remediation plans based on security testing, lead the security training and awareness program and complete application risk reviews.  Responsibilities include:

  • Design and implement processes that allow for effective information security risk monitoring, management and mitigation; effectively and quickly adapting to the security needs of a highly agile organization.
  • Work closely with leaders in IT and Operations functional areas to ensure security standards, policies, and procedures are deeply embedded and understood.
  • Develop and implement information security risk reporting for management teams and governance committees.
  • Support the implementation, testing and business continuity efforts for information security applications. Administer and configure security tools.
  • Lead risk-focused culture and process change through training and interaction with key leaders. Be part of a team which promotes a culture of security and privacy awareness; positively influencing desirable behavior and actual implementation of policy in daily practice. 
  • Continually learn and stay current with industry trends related to cyber security, privacy and information security risk.
  • Clearly articulate issues and communicate in an effective and personable manner; demonstrating strong written and verbal communication and organization skills.
  • Define business and functional requirements, provide support to business and technology teams, including requirements gathering and project management for new development and integration projects with little or no direction.
  • Maintain regular and punctual attendance. Comply with all company policies and procedures.

  • Experience in Information Security and Information Risk Management
  • Certified Information Systems Security Professional (CISSP) preferred
  • Knowledge of the following frameworks/compliance regimes; CIS 20, NIST, PCI, SOC, and GDPR compliance preferred
  • Experience driving collaboration and agreement across departments
  • Strong external and internal stakeholder management skills
  • Experience leading and performing information risk assessments and/or audits
  • 5 years experience in Financial Services; Mortgage experience preferred


#LI-VV1

#CB