ERM IT & Cyber Security Senior Analyst

Western Alliance Bank - Phoenix, AZ

posted 4 days ago

Full-time - Senior
Phoenix, AZ
Credit Intermediation and Related Activities

About the position

The ERM IT & Cyber Security Senior Analyst at Western Alliance Bank Corporation plays a crucial role in the second line of defense for technology and information security risk management. This position involves supporting IT/IS risk management functions, conducting risk assessments, managing issues, and reporting on technology and cybersecurity risks. The analyst will contribute to the bank's risk management framework and help safeguard the institution against various risks.

Responsibilities

  • Monitor external industry trends and regulatory changes impacting risk oversight in Technology and Information Security.
  • Assist in managing Penetration Testing and Physical Security testing with external vendors, including creating frameworks and communications for stakeholders.
  • Report internal metrics for IT/IS.
  • Perform targeted assessments of first line functions, researching frameworks and regulatory guidance.
  • Review and challenge first line Information Security and Technology functions, including policies and standards.
  • Support the risk and control inventory review for first line technology and information security functions.
  • Manage issues from identification through review and validation for closure.
  • Develop, document, and support department standards and processes.
  • Engage with first, second, and third-line stakeholders to ensure effective communication and coordination.

Requirements

  • Bachelor's degree and 10+ years of experience in Finance, Risk Management, Cybersecurity, Computer Science, or a related field; Master's degree preferred.
  • Minimum of 5 years' experience with Information Security and/or Information Technology functions.
  • In-depth knowledge of information security and technology principles in a regulated environment.
  • Experience in creating and presenting to various organizational levels.
  • Understanding of risk management practices, including risk definitions and development of controls.
  • Strong analytical skills for process and data trending with recommendations for enhancements.
  • Effective communication skills to engage and influence stakeholders.
  • High degree of organization, initiative, and accountability in a fast-paced environment.
  • Knowledge of regulatory guidance for Third-Party, Technology, and Cybersecurity functions.
  • Familiarity with external frameworks for technology and cybersecurity (NIST, ITIL, COBIT, etc.).
  • Understanding of risk management principles in a regulated organization.
  • High level of speaking and writing skills.
  • Proficiency in risk management tools and advanced Microsoft Office Suite skills.
  • Professional certification in Project Management, Technology, and/or cybersecurity (CISM, CRISC, CISSP, PMP, etc.).
  • Knowledge of the three lines of defense model in financial services.
  • Experience with the Factor Analysis of Information Risk (FAIR) quantification methodology desired but not required.

Nice-to-haves

  • Experience with the Factor Analysis of Information Risk (FAIR) quantification methodology.

Benefits

  • Competitive salaries
  • Ownership stake in the company
  • Medical and dental insurance
  • Time off
  • 401k matching program
  • Tuition assistance program
  • Employee volunteer program
  • Wellness program

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service