Discover Financial Services - Deerfield, IL
posted 3 months ago
At Discover, be part of a culture where diversity, teamwork, and collaboration reign. Join a company that is just as employee-focused as it is on its customers and is consistently awarded for both. We're all about people, and our employees are why Discover is a great place to work. Be the reason we help millions of consumers build a brighter financial future and achieve yours along the way with a rewarding career. As a Vulnerability Analyst, you will play a critical role in enhancing the security posture of our organization. Your primary responsibility will be to write comprehensive cybersecurity risk assessments that identify threats and vulnerabilities, while also recommending effective remediation strategies. You will conduct formal, systematic threat modeling of IT systems using the STRIDE methodology, ensuring that our cybersecurity measures are robust and effective. In this position, you will apply your deep knowledge of procedure-based controls within a cybersecurity program, which includes qualitative risk analysis steps, vulnerability and patch management, threat modeling, and Identity and Access Management (IAM). Familiarity with cybersecurity frameworks such as NIST CSF, PCI-DSS, and CIS will be essential. You will also practice expert-level assessment skills using technology-based controls, including cloud security, Artificial Intelligence/GenAI risks, penetration testing results, cryptography, network security fundamentals, malware defense, data loss prevention, and endpoint security. Your role will involve compiling professional security assessment reports and leading discussions to effectively communicate risks and remediation options to partners. You will demonstrate sound knowledge of Incident Management Respond and Recover functions from a cyber resiliency perspective, ensuring that our organization is prepared to respond to incidents effectively. This position requires you to work independently to identify vulnerabilities in the deployment of technologies, assess their severity and impact, and recommend risk-based options for remediation. You will actively collaborate with business partners, application architects, and partner security teams to research and build security solutions that align with business goals. Additionally, you will be expected to learn advanced cybersecurity concepts, including new and modern threat exploitation techniques used by threat actors. As a Vulnerability Analyst, you will also be responsible for achieving team commitments and influencing others to do the same by utilizing informal leadership and advanced communication skills. You will actively manage and escalate risk and customer-impacting issues within your day-to-day role to management, demonstrating excellent technical writing skills. Furthermore, you will have the opportunity to mentor novices by providing learning tasks and guiding them in their professional growth, while also leading cybersecurity discussions at Discover and providing oversight on security programs that impact decision-making.