Sr Information Security AnalystThe Sr Information Security Analyst drafts, communicates, implements, enforces and monitors the organization's security controls to protect technology assets from intentional or inadvertent modification, disclosure or destruction. Under limited supervision, this job works independently to manage and monitor the organization's IT systems and networks to ensure the security and safety of the organization's information.Key Responsibilities and Duties
Ensures implementation of secure operating systems, networks and databases for the organization.
Performs complex risk assessments and executes tests of data processing system to ensure functioning of data processing activities and security measures.
Drafts plans to safeguard computer files against accidental or unauthorized modification, destruction, or disclosure and to meet emergency data processing needs.
Encrypts data transmissions and erect firewalls to conceal confidential information as it is being transmitted and to keep out tainted digital transfers.
Facilitates risk audits and assessments and provides recommendations for application design to ensure operating effectiveness.
Monitors analysis of system access logs, ensuring only permitted individuals have access to company information.
Reviews violations of computer security procedures and discusses procedures with violators to ensure violations are not repeated.
Trains users and promotes security awareness to ensure system security and to improve server and network efficiency.
Educational Requirements
University (Degree) Preferred
Work Experience
3+ Years Required; 5+ Years Preferred
Physical Requirements
Physical Requirements: Sedentary Work
Career Level7ICPreferred Experience:
Third Party Risk Assessments: Conduct comprehensive cyber risk assessments of third-party vendors and partners to identify potential security vulnerabilities and risks, including cyber contract language gap analysis.
Cyber Program Maturity and Application Assessments: Conduct and support cyber risk assessments on applications and overall cyber program, evaluating the organization’s cyber maturity and identifying areas of improvement.
Risk Mitigation: Collaborate with vendors and application owners to develop and implement risk mitigation strategies and ensure compliance with security standards and regulations.
Continuous Monitoring: Maintain continuous monitoring processes to track and evaluate the security posture of third-party vendors.
Reporting: Prepare and present detailed reports on third-party risk assessments and risk mitigation efforts to senior management and stakeholders.
Stakeholder Engagement: Work closely with internal teams, including legal, procurement, and compliance, to ensure third-party risk management aligns with organizational goals and regulatory requirements.
Training and Awareness: Assist in the management of Bank-wide cyber awareness program.
Regulatory Compliance: Stay updated on relevant industry standards, regulations, and best practices related to third-party risk management and ensure compliance.
Preferred Skills:
Certifications (e.g., CISSP, CISM, CRISC, CISA) preferred.
Technical Skills: Proficient in using risk assessment tools and methodologies, understanding of cybersecurity frameworks (e.g., NIST, CRI), and knowledge of regulatory requirements.
Analytical Skills: Strong analytical and problem-solving skills, with the ability to assess complex security issues and develop effective mitigation strategies.
Communication: Excellent verbal and written communication skills, with the ability to present complex information to technical and non-technical audiences.
Collaboration: Demonstrated ability to work effectively with cross-functional teams and manage multiple projects simultaneously.
Attention to Detail: High level of attention to detail and accuracy in assessing and reporting risk.
Posting end date: 6/7/24#LI-Hybrid #LI-CM1Company SummaryEverBank provides nationwide banking services to consumer and commercial clients through a variety of channels, including online and mobile applications, as well as its Florida-based financial centers.VEVRAA Federal ContractorBenefits SummaryEverBank is committed to the well-being of its associates. That's why we offer a comprehensive Total Rewards package commensurate with the position and job-related qualifications, skills and knowledge. EverBank strives to pay wages competitive with those prevailing in our geographic areas and industry.EverBank's Total Rewards package includes superior benefits such as, health, wellness and work life offerings that can help you achieve and maintain your best possible physical, emotional and financial well-being.EverBank prohibits pay discrimination on the basis of any protected characteristic.EverBank may require a background check as a condition of employment. Qualified applicants with arrest and/or conviction records will be considered in accordance with applicable federal, state, and local laws and regulations, including, but not limited to, any laws and regulations specifically pertaining to banks and federal contractors.EverBank seeks priority referrals of protected veterans for jobs at all locations within the state.Pay Range $97,300 to $131,600EEO StatementEverBank, N.A. is an equal opportunity (EEO) employer, dedicated to maintaining a work environment free of bias, harassment, discrimination and retaliation. As an EEO employer, EverBank expressly prohibits discrimination, harassment and retaliation based on protected characteristics such as race, creed, ethnicity, color, age, religion, sex, sex stereotype, pregnancy, sexual orientation, gender, gender identity, gender expression, transgender status, marital status, national origin, ancestry, physical or mental disability, genetic history and information, or military or veteran status. Providing a safe, inclusive environment is a priority at EverBank and, consistent with that mission, EverBank considers all qualified applicants for employment regardless of protected status.Pay Transparency Non-Discrimination ProvisionWe will not discharge or in any other manner discriminate against associates or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another associate or applicant. However, associates who have access to the compensation information of other associates or applicants as a part of their essential job functions cannot disclose the pay of other associates or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by us, or (c) consistent with our legal duty to furnish information. If you believe that you have experienced discrimination, contact OFCCP at 1.800.397.6251. TTY 1.877.889.5627. www.dol.gov/ofccp (https://urldefense.com/v3/http:/www.dol.gov/ofccp;L8-7AA!WETVLfn333rqXNYi0-qITSUktDEWiFnQqvstF1J-gO8B03ANdCf4ucPkrvzeJpXk8bwyTvLqjEa8-JEpoxwcjXaB$) .Machine Readable FilesThe Transparency in Coverage Final Rules require certain group health plans to disclose on a public website information regarding in-network provider rates and historical out-of-network allowed amounts and billed charges for covered items and services in two separate machine-readable files (MRFs). The MRFs for the benefit package options under are linked below:Machine Readable Files (MRFs) - Aetna