Information Security Program Analyst II

2 months ago


Spring, United States Woodforest National Bank Full time

Take the next step toward your new career today

Become a part of the diverse and inclusive team within our nationally recognized award-winning Bank that is one of the strongest in the nation. Woodforest National Bank is privately owned, and our Employee Stock Ownership Plan is the largest shareholder. We focus on building relationships and discovering opportunities to better serve our communities and understand the financial needs of every customer we serve. At Woodforest we care and prove it by volunteering with local charities and foodbanks to give back to the communities we serve. By joining Woodforest you will become a part of one of the largest employee-owned banks in the country

The Information Security Program Analyst II will work closely with the Information Security Manager to ensure the IS Program is in alignment with the Bank’s regulatory and industry compliance requirements. The position is responsible for developing and implementing the organization’s governance, risk management, and compliance framework. This role involves identifying risks, ensuring regulatory compliance, and promoting a culture of compliance throughout the organization. The position will also provide program oversight and work with business owners to validate Information Security controls are working as designed.

Key Responsibilities: · IS Program Oversight: · Within the GRC tool assign, review, and approve Information Security controls quarterly in compliance with the Information Security Program. · Assist in the coordination of internal and external resources, and achievement of the banks Report on Compliance for the annual PCI attestation. · Contribute to the annual review of policies and assist in keeping policies current. · In conjunction with business owner/s and database team, conduct database access review for key databases containing customer and cardholder data. · Assist in conducting quarterly and annual business application access reviews. · Perform a sample of branch security reviews on a quarterly basis to ensure adherence with expected policies and procedures including PCI Requirement 9 – Physical Access to Cardholder Data. · Assist in conducting remote access and mobile access reviews. · Participate in password, vulnerability scanning (external, internal, application), card holder data testing to ensure compliance with bank standards. · Assist in reviewing configuration of DLP, HIPs, Encryption, and EDR systems and reports including monthly scans to ensure cardholder data and systems are secure. · Participate in reviewing system configurations and generated reports to ensure server hardening meets applicable standards. · Participate in the inspection and reviewing of sampling (PCI) firewall, router, switch, IDS/IPS configurations to ensure compliance with PCI standards. · On an ongoing effort develop enhancements and make recommendations to controls, policies, and processes that will assist in the maturity of the Information Security Program. · Additional Responsibilities: · Coordinate vendor requested Information/Cybersecurity Attestations as needed. · Attend monthly Information Security Committee meetings as required. · Participate in industry/peer group/conferences as necessary to stay current with Information Security trends and best practices and/or Governance, Risk, and Compliance frameworks. · Complete assigned industry and/or job-related training as required. Competencies: · Experience in cybersecurity risk management including threat and vulnerability management, aligning controls to frameworks, and improving cyber security maturity. · Strong knowledge in regulatory requirements and audit frameworks, such as but not limited to PCI, NIST, and GLBA. · Good leadership and project management skills.

Minimum Qualifications/Experience: · 3 years’ experience in information technology and/or information security governance required. · 2 years’ experience in cybersecurity risk management and compliance with risk management frameworks required.

Formal Education & Certification: · Bachelor’s degree in an Information System, Information Technology, or a related discipline preferred, or an equivalent amount of directly related work experience. · One or more of the following certifications is preferred: · Certified Information Systems Auditor (CISA) · Internal Security Assessor (ISA) · Security

Work Status: · Full-time.

Supervisory Responsibility: · None.

Travel: · Less than 10% - Occasional local travel may be expected.

Working Conditions: · Conditions involve lifting no more than ten pounds, sitting most of the time, but may involve walking, moving, or standing for brief periods, and occasionally lifting and carrying articles like files, ledgers, folders, etc.

Disclaimer: This job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee. Nothing herein restricts management’s right to assign or reassign duties and responsibilities to this job at any time.

Woodforest is an Equal Opportunity / Affirmative Action employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status, or other status protected by law or regulation.

Job: *Technology Services

Organization: *Texas - Houston

Title: Information Security Program Analyst II

Location: Texas-The Woodlands

Requisition ID: 065494



  • Silver Spring, United States Proliance Consulting Full time

    The Information Security Analyst administers, monitors, and maintains security infrastructure, which includes but is not limited to application and container security tools, security orchestration solutions, security information and event monitoring (SIEM), Network Security Tools, system logging and analysis, endpoint security tools, and vulnerability...


  • Silver Spring, Maryland, United States Children's National Health System Full time

    About This OpportunityWe are seeking a highly skilled Information Security Analyst II to join our team at Children's National Health System. As a member of our cybersecurity team, you will play a critical role in protecting our digital assets and ensuring the confidentiality, integrity, and availability of sensitive data.The successful candidate will have a...


  • Silver Spring, United States LanceSoft, Inc. Full time

    Value Proposition:Good opportunity to get wide rang of security experience ranging from EDR, SIEM, SOAR, and Vulnerability Management.Daily Responsibilities: Build and maintain complex technical infrastructure that supports a secure platform that protects our data at rest and in transit.Work closely with Enterprise and business owners to identify endpoint...


  • Silver Spring, United States Mindlance Full time

    Job Description: Business Unit/Group: Information Security Engineering Contract Duration: 6-months What We Do As the portfolio continues to grow - around the world and across platforms - the Enterprise Technology & Operations team is building media technology and IT systems that meet the world class standard for which is known. ET&O builds, implements and...

  • Security Analyst

    2 weeks ago


    Spring, United States World Wide Technology Full time

    This job is part of WWT’s Strategic Resourcing services. The candidate will support a WWT customer and be employed by one of WWT’s preferred partners.Why WWT?At World Wide Technology, we work together to make a new world happen. Our important work benefits our clients and partners as much as it does our people and communities across the globe. WWT is...


  • Spring, United States Vaco Full time

    Oracle Fusion Security experience needed Houston based - hybrid role - North Houston Long term contractGlobal company is starting a greenfield implementation of Oracle Fusion Cloud ERP (Cloud ERP) and is building a new team to support the program. This global implementation will begin in Q4 2024, with the current implementation plan expected to continue...

  • Sr. Security Analyst

    4 weeks ago


    Spring, United States INSPYR Solutions Full time

    Title: Sr. Security AnalystLocation: Spring, TX (Hybrid – 3 days onsite in 77389)Duration: Contract (Long-Term, potential to convert)Work Requirements: US Citizen, GC Holders or Authorized to Work in the US

  • Business Analyst II

    3 weeks ago


    Silver Spring, United States EagleBank Full time

    Business Analyst IILocation : Location US-MD-Silver SpringID 2024-1508Location : Address11900 Bournefield WayPosition Type Full Time RegularBusiness Unit Description Bank OperationsOverviewWe are a values driven organization putting Relationships FIRST. EagleBank is focused on being Flexible, Involved, Responsive, Strong, and Trusted. By prioritizing...


  • Spring, United States Tekgence Inc Full time

    Job Title: Sr Offensive Security Analyst – Special Ops Duration: 6 month Location: Onsite, Spring, TX (Greater Houston)Job Description:This role provides offensive cybersecurity expertise within the organization, leading the most complex and high-stakes security initiatives. You will bring advanced technical skills, strategic vision, and leadership by...


  • Spring, Texas, United States World Wide Technology Full time

    **Job Overview**We are seeking a highly skilled Information Security Specialist to join our team at World Wide Technology. This role provides offensive cybersecurity expertise within the organization, leading complex security initiatives.The ideal candidate will have advanced technical skills, strategic vision, and leadership experience in offensive...


  • Silver Spring, Maryland, United States Attainx Full time

    About the Job DescriptionAs an IT Cybersecurity Specialist, you will work closely with our team to identify and mitigate potential security risks to our Government client's information systems.You will analyze information security systems and applications, recommend and develop security measures to protect information against unauthorized modification or...


  • Silver Spring, Maryland, United States Children's National Health System Full time

    This exciting opportunity requires a seasoned professional to lead the security efforts at Children's National Health System. As a Manager of Information Security Platforms, you will oversee the development of a holistic program that recognizes the critical role of platform engineering in next-generation care delivery, research, and science.You will be...


  • Silver Spring, Maryland, United States ERP International Full time

    Job Summary:ERP International is seeking a highly skilled Research Scientist II/Principal Investigator to support the Walter Reed Army Institute of Research in Silver Spring, MD. The successful candidate will be responsible for designing and conducting experiments and program evaluations to develop evidence-based knowledge products and interventions to...

  • Analyst II

    6 months ago


    Lake Spring, United States American Lebanese Syrian Associated Charities Full time

    Description If you're passionate about data, thrive in a dynamic environment, and want to make an impact with your expertise, we invite you to apply for this exciting opportunity. Help us shape the future of digital products and drive innovation. As an Analyst II - Digital Product Analytics , you will be responsible for specifying, monitoring,...

  • Sr. Security Analyst

    4 weeks ago


    Spring, TX, United States INSPYR Solutions Full time

    Title: Sr. Security Analyst Make your application after reading the following skill and qualification requirements for this position. Location: Spring, TX (Hybrid - 3 days onsite in 77389) Duration: Contract (Long-Term, potential to convert) Work Requirements: US Citizen, GC Holders or Authorized to Work in the US Key Points: This position is hybrid in...


  • Silver Spring, United States Trustpoint.One Full time

    As a global media organization continues to grow worldwide and across platforms, the Enterprise Technology & Operations (ET&O) team plays a critical role in building and maintaining media technology and IT systems to deliver exceptional products. This includes enabling a variety of platforms, from pay-TV to online services, to reach broader audiences. Within...


  • Silver Spring, United States Trust Point Inc. Full time

    As a global media organization continues to grow worldwide and across platforms, the Enterprise Technology & Operations (ET&O) team plays a critical role in building and maintaining media technology and IT systems to deliver exceptional products. This includes enabling a variety of platforms, from pay-TV to online services, to reach broader audiences. Within...

  • Business Analyst II

    2 weeks ago


    Silver Spring, MD, United States EagleBank Full time

    Business Analyst II Location: US-MD-Silver Spring ID: 2024-1463 Position Type: Full Time Regular Business Unit Description: Bank Operations Overview We are a values-driven organization putting Relationships FIRST . EagleBank is focused on being Flexible, Involved, Responsive, Strong , and Trusted . By prioritizing meaningful connections with our...


  • Spring, United States HP Development Company, L.P. Full time

    Workforce Planning Program Analyst Description - This role is responsible for leading processes and projects that develop and drive labor strategies to support HP's global workforce needs, contributing to effective workforce evolution and agility. This role involves 50% data analysis and model development, and 50% project/program management. Responsibilities...


  • Spring, United States Disability Solutions Full time

    Brief Job DescriptionOur client is in need of a Senior Security Program Manager who can manage a ton of complexity, has organizational agility and political acumen, while still being able to ingest, comprehend, consolidate, report on, and drive 30 projects simultaneously.Top Skills' Details5+ years of large scale program management experience, preferably...