Information Security Analyst II (Hybrid - Indianapolis Area)
Indianapolis, IN, United States
Are you a successful Information Security Analyst looking to join a great company in the Indianapolis area?
Our client offers some amazing benefits::
Flexible hybrid schedule: Onsite three days a week and two days remote PLUS five fully remote weeks per year!
Fantastic, competitive pay and total rewards
Industry-high 401(k) match: up to 6% PLUS...an additional 4% contribution!
Tuition reimbursement assistance: To help you continue to develop personally and professionally.
Student loan repayment assistance: That's right, we will help you repay outstanding student loans!
Awesome Benefits Package: Medical, dental, vision benefits and even pet (you read that right) insurance!
Generous time off: Vacation, paid federal holidays, birthday month floating holiday, volunteer day and summer hours program
"Dress for your day" dress code: You choose the appropriate work attire based on what your day looks like.
Job Summary:
The Information Security Analyst II works within the Information Security Governance team and closely with Bank management and members of the Information Security Department to execute a Bank-wide information security management program. This position is responsible for identifying, evaluating, and reporting on information security risks in a manner that meets compliance and regulatory requirements, and aligns with and supports the risk posture of the enterprise. This position also is responsible for information security awareness and training, evaluating third party security risk, user access management certifications and data classification certifications.
Responsibilities : Monitor the effectiveness of the Bank's enterprise information security management program to ensure that the integrity, confidentiality, and availability of information that is owned, controlled or processed by the organization. This includes monitoring and creating metrics, key risk indicators, management action plans, and other reports to identify risks and breakdowns in processes and/or controls in addition to evaluating the effectiveness of management action plans.
Assist with the development, training, and dissemination of security policies.
Execute training and awareness campaigns in alignment with the Information Security Training Plan.
Assist with Identity governance and access management tool implementation for user access certifications.
Perform the information security vendor due diligence process in support of the Vendor Management Policy.
Manage the maintenance and updating of the data classification schedule to ensure accuracy and completeness of the inventory.
Identify incidents through monitoring of the Bank's Data Loss Protection systems.
Identify non-compliance through monitoring of the Bank's user access activities.
Assist in identifying Information Security control gaps.
Collaborate with the Bank's second and third line of defense as needed.
Requirements: Bachelor's degree in information systems, information security or equivalent work experience.
Three years minimum prior experience in information security, information systems audit, information systems risk management, information technology or other related positions.
Achieved or are in pursuit of Information Security Certifications such as COMPTIA Security +, CISA (Certified Information Systems Auditor) CISM (Certified Information Security Manager), CISSP (Certified Information Systems Security Professional) or CRISC (Certified in Risk and Information Systems Control) or GIAC SANS certifications or equivalent are preferred.
Understanding of current Information Security theory, frameworks and industry best practices. Knowledge of CIS Controls a plus.
Prior experience with managing phishing simulation campaigns and training. KnowBe4 knowledge a plus.
Strong verbal and written communication and presentation skills, including the ability to interact with all levels of staff in a professional/tactful manner.
Knowledge and experience in information security risk management performing information security risk assessments or third-party risk assessments, standards and practices. Prior experience with governance, risk, and compliance software such as LogicManager a plus.
Ability to consistently meet deadlines while simultaneously managing multiple projects.
Must not have been convicted on any civil or criminal charge that would suggest a risk to Bank security.
This is a direct hire opportunity with amazing pay and benefits!
Location: Indianapolis, IN (hybrid work schedule)
Compensation: $75,000 - $85,000 + bonus
Headquartered in North Central Indiana and founded in 2009, TalentSource is a sole source recruiting firm offering an awesome team of subject matter experts in talent acquisition! We are recruiting generalists and provide professional job placement in a wide range of disciplines and industries, including temporary and perm placement, payroll, and specialty staffing solutions to a wide variety of top notch clients! TalentSource is committed to establishing a long-term relationship with both their clients and candidates. They achieve their mission of providing superior customer service through customized talent solutions, with an emphasis on quality and continuous improvement. To learn more about TalentSource please visit us at www.talentsourcestaffing.com! TalentSource is an Equal Opportunity Recruiting Firm. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.