ERM IT & Cyber Security Senior Analyst

Western Alliance Bank - Novi, MI

posted 5 days ago

Full-time - Senior
Novi, MI
51-100 employees
Credit Intermediation and Related Activities

About the position

The ERM IT & Cyber Security Senior Analyst at Western Alliance Bank Corporation plays a crucial role in the second line of defense for technology and information security risk management. This position involves supporting IT/IS risk management functions, conducting risk assessments, managing issues, and developing reporting trends to safeguard the bank against various risks. The successful candidate will collaborate with multiple stakeholders to ensure effective communication and coordination across the three lines of defense.

Responsibilities

  • Monitor external industry trends and regulatory changes impacting risk oversight in Technology and Information Security.
  • Assist in managing Penetration Testing and Physical Security testing with external vendors.
  • Create frameworks and communications for internal stakeholders, manage vendor deliverables for testing activities, finalize reporting, and manage identified issues.
  • Report internal metrics for IT/IS.
  • Perform targeted assessments of first line functions, including research on frameworks and regulatory guidance.
  • Review and challenge first line Information Security and Technology functions, including policies and standards.
  • Support the risk and control inventory review for first line technology and information security functions.
  • Engage with stakeholders to ensure effective communication and coordination between the three lines of defense.

Requirements

  • Bachelor's degree and 10+ years of experience in Finance, Risk Management, Cybersecurity, Computer Science, or a related field.
  • Master's degree preferred.
  • Minimum of 5 years' experience with Information Security and/or Information Technology functions.
  • In-depth knowledge of information security and technology principles in a regulated environment.
  • Experience in creating and presenting to various organizational levels.
  • Understanding of risk management practices, including risk definitions and development of controls.
  • Strong analytical skills for process and data trending.
  • Effective communication skills to engage and influence stakeholders.
  • High degree of organization and personal accountability in a fast-paced environment.
  • Knowledge of regulatory guidance for Third-Party, Technology, and Cybersecurity functions.
  • Familiarity with external frameworks for technology and cybersecurity (NIST, ITIL, COBIT, etc.).
  • Understanding of risk management principles in a regulated organization.
  • High level of speaking and writing skills.
  • Proficiency in risk management tools and advanced Microsoft Office Suite skills.
  • Professional certification in Project Management, Technology, or Cybersecurity (CISM, CRISC, CISSP, PMP, etc.).
  • Knowledge of the three lines of defense model in financial services.

Nice-to-haves

  • Experience with the Factor Analysis of Information Risk (FAIR) quantification methodology.

Benefits

  • Competitive salaries
  • Ownership stake in the company
  • Medical and dental insurance
  • Time off
  • 401k matching program
  • Tuition assistance program
  • Employee volunteer program
  • Wellness program

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service