Senior Information Security Analyst

US-CA-Rancho Cucamonga
Req No.
2017-1851
Category
Risk
Type
Full-Time

Overview

CO-OP Financial Services provides technically superior products and services to financial institutions across the nation. We are seeking a talented Senior Information Security Analyst to be responsible for creation and maintenance of the Information Security policies, standards and security controls testing program. The analyst executes on the vendor and project security risk assessment program to ensure that risks are identified, tracked and reported. This role also is responsible for developing the Information Security Awareness program covering training including role based training.

 

RESPONSIBILITIES:

 

      • Create and maintain InfoSec policies and standards that are compliant with ISO 27001, FFIEC, PCI and SOC II requirements.
      • Design, create and maintain risk based InfoSec metrics.
      • Design, maintain, execute and report of the InfoSec vendor and project risk assessment processes.
      • Develop and deliver an InfoSec awareness program including role based training.
      • Coordinate and report status of InfoSec compliance activities (including PCI and SOC II).
      • Coordinate, consult and report compliance of InfoSec controls to their objectives using control testing methodologies and reporting.
      • Providing support as needed to the team in the execution of the Information Security objectives.
      • Other duties as assigned.
      • Information Security expertise around implementation and best practices around ISO 27001, FFIEC, PCI and SOC II.
      • Information Technology concepts such as Operating Systems, programming languages, networking and databases.
      • Expertise in the creation of effective InfoSec awareness programs, including creation and measuring effectiveness.
      • Knowledge of control development, monitoring and reporting in enterprise environments.
      • Ability to write business aligned, achievable InfoSec requirements in the form of Policies and Standards.
      • Ability to develop and execute on plans for compliance with InfoSec requirements (ISO 27001, FFIEC, PCI & SOC II)
      • An understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business
      • Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one
      • Demonstrated technical expertise in InfoSec, Cyber Security and IT systems and an ability to keep pace with changing security and IT technologies
      • Strong interpersonal skills, with an emphasis on the ability to effectively influence others A team-focused mentality with the proven ability to work effectively with diverse stakeholders
      • An ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily-understood, authoritative, and actionable manner
      • Aptitude for understanding internal organizational environments and their relationship to the external business environment.
      • Ability to develop a full and deep understanding of the business operations
      • Developed understanding of how business initiatives create value and risk for organizations
      • Strong ability to convey complex information risk and security issues in a manner that is easily understood and actionable and constructively challenges prevailing thoughts and processes
      • Able to consistently, effectively defend ideas and solutions

 

 

 

 

Qualifications

  • 5 years of experience in information security
  • 3 years of experience in another IT function, especially IT Audit
  • 3 years of experience with regulatory compliance and information security management frameworks (e.g., IS027000, FFIEC,PCI, etc.).
  • BA/BS in Computer Science, Information Security, or a related field (e.g., IT Audit, Enterprise Risk Management, etc.)
  • 8 years of experience in information security, especially in a IAM role
  • 5 years of experience in another IT function, especially IT Audit5 years of experience with regulatory compliance and information security management frameworks (e.g., IS027000, FFIEC,PCI, etc.)

If you are highly motivated, team oriented, and would enjoy the diversity of challenges and opportunities, please submit your resume, cover letter, and salary requirements.

 

About Us

CO-OP Financial Services is the technology engine that provides access and convenience for credit unions. With over 35 years of credit union service, CO-OP connects credit union members to their accounts through Debit, Credit, ATM, Shared Branching, Member Interaction Services, Mobile, Virtual, and Bill Pay services. CO-OP serves a total of 3,500 member credit unions, 50 million cardholders, 30,000 surcharge-free ATMs, and more than 5,500 shared branches. Handling three billion-plus annual transactions, CO-OP is the nation’s largest credit union service organization—offering resources that enable deeper member engagement to help credit unions prosper.

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed