Information Security Analyst
2 months ago
TITLE Information Security Analyst
EOE STATEMENT
CFG is an Equal Opportunity Employer. We provide equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, veteran status, or any other legally protected characteristic. We are committed to ensuring a diverse and inclusive workplace, and all employment decisions are based on merit, qualifications, and business needs. If you require accommodations during the application process, please contact Human Resources.
LOCATION CFG Corporate Office
DESCRIPTION
COMPANY SUMMARY:
We provide comprehensive commercial, personal, and online banking solutions to businesses in the Mid-Atlantic region and the national healthcare market. Our culture is characterized by authenticity, entrepreneurship, and compassion. We defy conventional banking norms with a bold and innovative approach, venturing into new territories and executing groundbreaking deals. Recognized as the Best Place to Work by the Baltimore Business Journal in both 2022, 2023, and 2024, our #1 goal is to make people feel that working here was the best decision they have made. Join us at CFG, where your bold, entrepreneurial, and tenacious spirit will thrive, and together we will achieve success and make a lasting impact.
POSITION SUMMARY:
The Information Security Analyst performs a critical role in managing CFG’s information security environment. The Analyst oversees the successful implementation and maintenance of the information security program and actively engages in ongoing third-party risk management activities. The Analyst will be responsible for ensuring Bank compliance with information security and third-party risk-related laws, regulations, and industry standards. A successful candidate will be a skillful communicator, capable of clearly articulating complex topics in written form.
ESSENTIAL DUTIES AND RESPONSIBILITIES:
Information Security Program (ISP):
- Promoting information security awareness across business units.
- Establishing and maintaining information security policies and procedures.
- Reviewing audit logs, events, reports, and alerts, formulating responses with thoroughly evidenced and well-reasoned discussion of appropriate resolution.
- Monitoring and reporting on patch and vulnerability management strategies.
- Identifying areas of non-compliance or risk and presenting recommendations for remediation.
- Participating in systems and controls risk assessments.
- Managing the social engineering awareness program, including suspicious message review, periodic training and testing deployment, and reporting functions.
Third Party Risk Management (TPRM) Program:
- Participating in the active management and oversight of the TPRM lifecycle.
- Conducting TPRM risk assessments, proactively identifying and addressing potential 3rd and 4th party risks.
- Collecting and reviewing documentation associated with third party relationships.
- Completing comprehensive written evaluations of vendor provided documentation.
- Ensuring timely completion of oversight tasks in alignment with established requirements.
- Contributing to TPRM policy and procedure development, ensuring compliance with laws, regulations, and industry best practices.
- Providing regular progress reports.
QUALIFICATIONS AND REQUIREMENTS:
- Bachelor's degree in information technology or related field, or equivalent relevant work experience. Related professional certifications will also be considered.
- 3-5 years’ information security related experience, preferably in a financial institution setting.
- Excellent written and verbal communication skills including the ability to conduct thorough, documented research and present findings clearly and comprehensively.
- Strong analytical and critical thinking capabilities.
- Strong work ethic and ability to achieve individual results within a team environment.
- Ability to work independently and manage multiple concurrent tasks while meeting deadlines.
WORK ENVIRONMENT: We offer a hybrid schedule, with 3 days inoffice and 2 days remote after the initial 90-day period.
CFG Bank is an Equal Opportunity Employer. We provide equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, veteran status, or any other legally protected characteristic. We are committed to ensuring a diverse and inclusive workplace, and all employment decisions are based on merit, qualifications, and business needs. If you require accommodations during the application process, please contact Human Resources.
ABOUT THE ORGANIZATION
CFG BANK HAS ESTABLISHED POLICIES AND PROCEDURES TO FULFILL THE REQUIREMENTS OF THE BANK SECRECY ACT (BSA), USA PATRIOT ACT (CUSTOMER IDENTIFICATION PROGRAM) AND ECONOMIC SANCTIONS PROGRAM (OFAC). IN ORDER TO ENABLE ITS EMPLOYEES TO ACHIEVE THE OBJECTIVES AND RESPONSIBILITIES OUTLINED IN THESE POLICIES AND PROCEDURES AND TO COMPLY WITH THE REQUIREMENTS OF THESE ACTS AND LAWS, THE BANK HAS SET FORTH UP-TO-DATE CURRENCY TRANSACTION REPORTING AND SUSPICIOUS TRANSACTION REPORTING PROCEDURES INTENDED TO ASSURE THE PREPARATION AND FILING OF COMPLETE AND ACCURATE CURRENCY TRANSACTION REPORTS (CTR) AND SUSPICIOUS ACTIVITY REPORTS (SAR) FOR EACH AND EVERY REPORTABLE TRANSACTION AND HAS PROVIDED CURRENT OFAC LISTS FOR NEW CUSTOMERS AND LOAN APPLICANT COMPARISONS.
AS AN EMPLOYEE OF CFG BANK YOU ARE REQUIRED TO BE:
• DEDICATED TO ACHIEVING THE OBJECTIVE OF ASSISTING BANK MANAGEMENT IN THEIR EFFORTS TO IDENTIFY REPORTABLE TRANSACTIONS; AND
• DEDICATED TO ACHIEVING THE OBJECTIVES AND REPORTING REQUIREMENTS OUTLINED IN THE BANK'S BSA, CUSTOMER IDENTIFICATION PROGRAM AND ECONOMIC SANCTION PROGRAM POLICES.
THE MANDATORY TRAINING TO COMPLY WITH THE REQUIREMENTS OF THE BANK'S BSA, USA PATRIOT ACT AND ECONOMIC SANCTIONS PROGRAM WILL BE PROVIDED WITHIN 90 DAYS OF ACCEPTING THIS POSITION.
PI435063ee220e-31181-34734556
We have other current jobs related to this field that you can find below
-
Information Security Analyst
2 weeks ago
Baltimore, United States CFG BANK Full timeTITLE Information Security Analyst EOE STATEMENT CFG is an Equal Opportunity Employer. We provide equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, veteran status, or any other legally protected characteristic. We are committed to ensuring a diverse...
-
Mid Security Analyst
2 weeks ago
Baltimore, United States Iron Vine Security Full timePosition Title: Security_Analyst_(Mid) Location: Baltimore, MD Hours: 9 am - 5pm Position Summary: Iron Vine Security is a rapidly growing information security and information technology company in Washington, DC. We are looking to hire a Junior Security Analyst to provide a full range of cyber security services on a long-term contract in Baltimore, MD. The...
-
Information Security Analyst
3 weeks ago
Baltimore, MD, United States CFG BANK Full timeInformation Security Analyst We provide equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, veteran status, or any other legally protected characteristic. If you require accommodations during the application process, please contact Human Resources. ...
-
Information Systems Security Officer
2 days ago
Baltimore, Maryland, United States CGS Federal (Contact Government Services) Full timeCGS is seeking an Information Systems Security Officer (ISSO) with DIACAP and/or RMF experience who has deep expertise in security assessment documentation to support Dept. of Commerce systems and efforts to achieve their Authorization to Operate (ATO).Provide security guidance and IS validation using the National Institute of Standards and Technology (NIST)...
-
Information Systems Security Officer
2 days ago
Baltimore, United States CGS Federal (Contact Government Services) Full timeCGS is seeking an Information Systems Security Officer (ISSO) with DIACAP and/or RMF experience who has deep expertise in security assessment documentation to support Dept. of Commerce systems and efforts to achieve their Authorization to Operate (ATO).Provide security guidance and IS validation using the National Institute of Standards and Technology (NIST)...
-
Information Security Risk Analyst
2 months ago
Baltimore, United States The BayTech Group Full timeWe are seeking an Information Risk and Controls Analyst to join our client's team for a 6+ month consulting opportunity. The ideal candidate will have 3-5 years of experience in audit, audit response, and cyber controls. Preferred experience in finance or investment management fields. This role involves ensuring compliance with regulatory standards,...
-
Information Security Risk Analyst
2 months ago
Baltimore, United States The BayTech Group Full timeWe are seeking an Information Risk and Controls Analyst to join our client's team for a 6+ month consulting opportunity. The ideal candidate will have 3-5 years of experience in audit, audit response, and cyber controls. Preferred experience in finance or investment management fields. This role involves ensuring compliance with regulatory standards,...
-
Information Systems Security Officer
1 month ago
Baltimore, United States SCD Information Technology Full timeSCD Information Technology is currently seeking an Information Systems Security Officer (ISSO) to join our team in Columbia, MD. SCD Information Technology is a cutting-edge technology company specializing in providing innovative solutions to clients in various sectors, including government agencies and defense organizations. SCDIT prides itself on...
-
Cyber Security Analyst
2 months ago
Baltimore, United States Peak Partners Full timePeak Partners has a regional healthcare client seeking to hire a Cyber Security Analyst. The Analyst will be required to identify, analyze, prioritize, and resolve system issues as they arise as well as develop reports on vulnerability.The position is a remote work environment but might require a monthly or quarterly visit to headquarters in Baltimore,...
-
Cyber Security Analyst
2 months ago
Baltimore, United States Peak Partners Full timePeak Partners has a regional healthcare client seeking to hire a Cyber Security Analyst. The Analyst will be required to identify, analyze, prioritize, and resolve system issues as they arise as well as develop reports on vulnerability.The position is a remote work environment but might require a monthly or quarterly visit to headquarters in Baltimore,...
-
Deputy Incident Response Analyst
3 months ago
Baltimore, United States Iron Vine Security Full timePosition Title: Deputy Incident Response Analyst Location: Baltimore, MD Hours: 8 am - 4pm (On-Call as Needed) Position Summary Iron Vine Security is a rapidly growing information security and information technology company in Washington, DC. We are looking to hire an Deputy Incident Response Analyst to provide a full range of cyber security services on a...
-
Information Systems Security Officer IV
4 weeks ago
Baltimore, United States Peraton Full time**Responsibilities** As the worlds leading mission capability integrator and transformative enterprise IT provider, we deliver trusted and highly differentiated national security solutions and technologies that keep people safe and secure. Peraton serves as a valued partner to essential government agencies across the intelligence, space, cyber, defense,...
-
Information Systems Security Officer
4 weeks ago
Baltimore, United States Helm Point Solutions Full timePosition Details: As an ISSO with Helm Point Solutions you will be responsible for ensuring that the appropriate operational security posture is maintained for an information system. You'll support continuous monitoring of networks to detect and correct areas of security non-compliance, unmitigated vulnerabilities, and other risks. You will also need to...
-
Information System Security Officer
2 weeks ago
Baltimore, United States Livanta Full timeSummary Livanta LLC is looking for a qualified Information Systems Security Officer (ISSO) to join our organization. As an ISSO, you will be responsible for developing and implementing security measures to protect our computer systems, networks, and digital information. You will work closely with the IT team and management to identify potential security...
-
Information Security Specialist(SAAS)
3 weeks ago
Baltimore, United States 4A Consulting, LLC Full timeResponsibilities:1. The purpose of this position is to serve at the primary technical support lead that actively participates in the planning and design, installation, administration, operations, and day-to-day activities of multiple SAAS platforms as noted in the offeror & resource qualifications section. This position will ensure stable, scalable,...
-
Information Security Specialist(SAAS)
1 day ago
Baltimore, United States 4A Consulting, LLC Full timeResponsibilities:1. The purpose of this position is to serve at the primary technical support lead that actively participates in the planning and design, installation, administration, operations, and day-to-day activities of multiple SAAS platforms as noted in the offeror & resource qualifications section. This position will ensure stable, scalable,...
-
Information Systems Security Officer
2 weeks ago
Baltimore, United States belaytech.com Full timeBelay Technologies has been voted Baltimore Business Journal's (BBJ) Best Places to Work 2019, runner up in 2020 and a finalist in 2021! Belay Technologies is seeking an Information Systems Security Officer to join our intel team. The candidate will provide support for a program, organization, system, or enclave's information assurance program....
-
Information Security Platform
4 weeks ago
Baltimore, United States NavitsPartners Full timeJob DescriptionJob DescriptionJob Title: Information Security Platform Location: Annapolis, MD (Initially on-site, potential for hybrid work)Duration: 1 yearDescription: The client is seeking an experienced Information Security Platform Administrator to join our team. This role is crucial in managing and supporting our SaaS security platforms, ensuring...
-
Information Systems Security Officer 1
4 weeks ago
Baltimore, United States ARSIEM Corporation Full timeAbout ARSIEM Corporation At ARSIEM Corporation we are committed to fostering a proven and trusted partnership with our government clients. We provide support to multiple agencies across the United States Government. ARSIEM has an experienced workforce of qualified professionals committed to providing the best possible support. As demand increases, ARSIEM...
-
Information Systems Security Officer 3
4 weeks ago
Baltimore, United States ARSIEM Corporation Full timeAbout ARSIEM Corporation At ARSIEM Corporation we are committed to fostering a proven and trusted partnership with our government clients. We provide support to multiple agencies across the United States Government. ARSIEM has an experienced workforce of qualified professionals committed to providing the best possible support. As demand increases, ARSIEM...
