This job is closed
We regret to inform you that the job you were interested in has been closed. Although this specific position is no longer available, we encourage you to continue exploring other opportunities on our job board.
Sr. Information Security Risk Analyst (Hybrid/Remote)
UMB Financial Corporation Pierre, SD - Pierre, SD
posted 3 months ago
About the position
The Sr. Information Security Risk Analyst at UMB Bank plays a crucial role in supporting the organization's Information Security Program. This position focuses on identifying and mitigating threats, vulnerabilities, and risks to protect the organization's people, information, and services. The analyst will collaborate with various teams to ensure data protection initiatives are effectively implemented and understood, while also maintaining compliance with relevant regulations and standards.
Responsibilities
- Collaborate and drive security initiatives across multiple teams and diverse functions.
- Advise business units and technology leaders on information security risks and propose acceptable risk treatment options.
- Support the information security program by collecting performance indicators, metrics, and communicating actionable recommendations to leadership.
- Assist in PCI-DSS compliance and assessment activities, supporting internal technology and business teams.
- Maintain a current understanding of information security best practices, regulations, and industry trends.
- Respond to internal/external audits, including third-party security assessments.
- Manage multiple workstreams and provide timely communication of issues, concerns, risks, and status.
Requirements
- At least 5 years of experience in information security, security audit, or information security risk management/compliance.
- Bachelor's degree in Management Information Systems (MIS), Computer Science, or a related discipline, or equivalent work experience.
- Strong knowledge of risk and controls, including standards and frameworks such as COSO, COBIT, ISO, NIST, and ITIL.
- Ability to thrive in a changing environment and manage multiple tasks simultaneously.
- Understanding of and practical experience with information security risk assessments and audits.
Nice-to-haves
- CISSP, CRISC, SEC+, PCI-DSS ISA/PCIP or applicable certifications/accreditation.
- Strong understanding of information security regulatory requirements and best practices.
- General understanding of banking and financial services processes and related risks.
Benefits
- Paid Time Off
- 401(k) matching program
- Annual incentive pay
- Paid holidays
- Comprehensive company-sponsored benefit plan including medical, dental, vision, and other insurance coverage
- Health savings, flexible spending, and dependent care accounts
- Adoption assistance
- Employee assistance program
- Fitness reimbursement
- Tuition reimbursement
- Associate wellbeing program
- Associate emergency fund
- Various associate banking benefits
