IT Security and Risk Analyst

THIS POSITION IS LOCATED ON-SITE IN SALT LAKE CITY, UTAH -

About the Company - Continental Bank (the "Bank") is a digital-only, FDIC-insured, Utah-chartered bank headquartered in downtown Salt Lake City, Utah. Continental is a national burgeoning leader in providing online, consumer, small business loans and deposit accounts made directly, and in partnership with, fintech?s, retailers and finance companies.

About the Role - The IT Security and Risk Analyst provides support to the Banks Chief Information Officer to ensure quality organization and execution of IT security and risk projects. The analyst is responsible for the day-to-day management of the information security and IT risk functions at the Bank. Additionally, the analyst is responsible for IT Risk and IT audit support of the bank?s Strategic partnerships. This role will also provide information technology support for the company?s employees, vendors, and clients.

Responsibilities
? Manage Information Security Monitoring platforms and reporting, responding to potential events.
? Maintain Information Security reports for ITO, Management, Board of Directors, Auditors and Regulators.
? Maintain the Bank FFIEC Cybersecurity Risk Assessment supporting the Bank?s maturity level.
? Support system and infrastructure hardening goals.
? Complete regular reviews of firewalls and network configurations.
? Performs risk assessments, audits, and tests to ensure proper functioning of system activities and security measures.
? Lead Vulnerability and patch management for the organization.
? Monitors and restricts access to sensitive, confidential, or other sensitive customer or company data.
? Support Penetration Testing and help resolve any findings identified in the penetration testing.
? Coordinate Management Detection and Response systems for the Bank.
? Manage Physical Security Monitoring platforms and reporting.
? Monitor and track incidents through resolution.
? Support Strategic Partnerships by reviewing partner security and IT policies and procedures.
? Provide continued monitoring and review of Strategic Partner security and IT functions.
? Review Strategic Partnership due diligence information including (SOC II, ISO 27001, HIPAA, PCI, and other documentation)
? Update and maintain security documentation and controls for the Bank in accordance with banking regulations.
? Support the Bank Vendor Management program for IT including reviewing SOC II, ISO, and other IT audit reports, policies.
? Proactively identify potential threats and develop recommendations for corrective actions based on industry research and patterns identified within the network.
? Support Information Systems Administration (User Reaccreditation; User Provisioning).
? Provide support to company?s employees, vendors, and clients.
? Provide support to the organization phone, alarm, and camera systems.
? May support the annual test of Business Continuity and Disaster Recovery Plans.
? May provide support to system upgrades and updates.
? May support employee information systems training (including hardware, software, and security training).
? Respond after hours to remediate issues or incidents.
? Other duties as assigned.

Qualifications
? BS in Computer Science, Computer Engineering, Information Systems, Information Technology, or comparable experience. Graduate degree preferred.
? 5+ years? experience in Cybersecurity, information technology, IT risk management, or IT audit preferably in a banking/finance industry.
? GIAC, ISC2, ISACA or other recognized certifications preferred.
? Experience implementing and maintaining cybersecurity controls, preferably in the financial industry.
? Knowledge and understanding of NIST, CIS, FFIEC, PCI, SOC II, ISO, and other industry standards.
? Experience securing cloud technologies (Azure, AWS, Google).
? Experience in IT Audit and/or IT Risk Assessment.
? Experience supporting Information Security functions.
? Experience with Jira or other ticketing systems.
? Excellent communication skills.
? Strong financial and analytical capabilities.
? Ability to identify and problem solve many different issues.

Personal Attributes
? Sound sense of responsibility, diligence and commitment to position and company values.
? Strong interpersonal skills, ability to communicate and manage well at all levels of the organization and with staff at remote locations essential.
? Solid problem solving and creative skills and the ability to exercise sound judgment and make decisions based on accurate and timely analyses.
? High-level of integrity and dependability with a strong sense of urgency and results-orientation.
? Competent life-long learner to stay current and conversant with technologies necessary to run a financial organization.

Other Skills & Abilities
? PC high-level of competency is essential.
? Competency in all Microsoft applications including Word, Excel and Outlook.
? Organizational, verbal and written communication skills a must.
? Attention to detail and ability to multi-task is an asset.

Come Help Us Grow!
? Competitive salary and 401k with employer contributions
? Employee profit-sharing plan
? Paid medical, dental, and disability insurance
? HSA program, vision, voluntary and group life, and AD&D
? Tuition reimbursement options
? Paid Time Off and Company Holidays
? On-site Gym Access

Apply Job!