Information Security Analyst I

Our ideal candidate: We are seeking candidates deeply committed to our mission: to transform the banking industry from within. We lead by example, collaborate with and invest in change-makers and build sustainable prosperity in our communities.

Who we are: Beneficial State is one of only a handful of B-Corp banks in the nation and one of the highest-rated B-Corps on the planet. That means that we subscribe to a rigorous evaluation standard that measures our positive impact, not just our profitability. We demonstrate how a bank can combine social equity, environmental sustainability, and business stability to create a better financial system - a system that drives inclusive prosperity to benefit people and the planet. #BCorp #WeAreBCorps

Join our team: If you are ready to do challenging and transformative work that will build a brighter future for us all, and you are hungry to bring your passion and energy to the table, we welcome your application.

TITLE:

N/A

JOB CODE:

FLSA:

Exempt

SALARY GRADE:

7

CATEGORY:

Full-time

UNION REPRESENTATION:

NA

SCHEDULE:

LOCATION:

Monday-Friday (+ on call, Holidays and weekends as needed)

Hybrid

SUPERVISORY ROLE Y/N:

REVISION DATE:

N

11.2025

POSITION OVERVIEW

The Information Security Analyst I plays a critical role in safeguarding the organization's systems and information assets. This position supports the development and implementation of security strategies, tools, and guidelines to protect against unauthorized access, data breaches, and system disruptions.

Responsibilities include monitoring and responding to Information Security-related alerts, supporting audit and risk assessment activities, evaluating internal controls, and recommending improvements to enhance security posture.

The analyst assists in migrating non-compliant environments to meet regulatory standards and ensures adherence to data protection laws and banking industry compliance requirements. This role is foundational to maintaining the confidentiality, integrity, and availability of sensitive financial data and supporting the organization's overall cybersecurity framework.

ESSENTIAL DUTIES

Identity and Access Management

• Support access provisioning, modification, and termination processes to ensure timely and secure access control.
• Conduct administrator activity and user access reviews across IT systems, including privileged access audits and firewall/cloud app usage monitoring.
• Maintain asset and access inventories, perform recurring audits of critical systems, and reconcile against endpoint and network tools.

Security Monitoring and Incident Response

• Monitor and respond to alerts from SIEM, IDS, firewalls, and endpoint protection systems.
• Conduct vulnerability scans, track remediation efforts, and facilitate related meetings.
• Maintain readiness for incident response activation, including participation in tabletop exercises.

System Administration and Tool Management

• Administration of cloud computing environments, conditional access, and guest provisioning following established best practices.
• Manage software controls, browser extensions, and patching processes.
• Administer security camera system and ensure system uptime.
• Administer Mobile Device Management system.

Threat Intelligence and Continuous Improvement

• Stay informed on emerging threats in the banking sector and contribute to threat intelligence reporting.
• Research and test new security tools, controls, and AI applications to enhance the Bank's security posture.
• Correctly identify true and false positives in alerting systems and tune these systems for continuous improvement.

Security Awareness and Training

• Support phishing simulations and training campaigns, track completion, and report metrics to management.

Documentation and Reporting

• Log findings, remediation efforts, and audit results in a structured ticketing system.
• Assist with vendor management program administration and reporting.

Data Protection and Compliance

• Ensure compliance with GLBA, FFIEC, and other applicable regulations through log retention, configuration management oversight, and DLP monitoring.
• Administer data classification tools and respond to violations involving PII or sensitive data.
• Audit VPN usage and test controls across email, endpoint, and network security platforms.
• Completes mandatory compliance training in accordance with established deadlines.

The position performs duties specific to the position and other functions as assigned.

ROLE COMPETENCIES/SKILLS

• Attention to Detail
• Collaboration & Communication
• Diversity & Inclusion
• Execution & Ownership
• Time Management
• Compliance
• Innovation

• Systems Thinking
• Data Analysis & Management
• Information Security
• Network Operations
• Critical Thinking
• Consulting
• Analytical Thinking

ENVIRONMENT, PHYSICAL & MENTAL ACTIVITIES

• The incumbent is in a non-confined office-type setting in which they are free to move about at will. It may include some minor annoyances such as noise, odors, drafts, etc. For Hybrid and Remote roles, work may also be performed away from BSB worksites depending on the position and requirements. For Hybrid/Remote work, employees are required to have an environment when working at home that has a dependable, high-speed internet connection and environment conducive to frequent phone or internet calls where private, confidential or other information is not visible, able to be overheard, or physically or electronically accessible to anyone else.
• The incumbent in the course of performing this position spends time writing, typing, speaking, listening, lifting (up to 10 pounds), driving, carrying, seeing (such as close, color and peripheral vision, depth perception and adjusted focus), sitting, pulling, walking, standing, squatting, kneeling and reaching.
• The incumbent for this position may operate any or all of the following: personal computer, cellular telephone, printer, fax, and other standard office equipment.
• The incumbent in this position must be able to accommodate reading documents or instruments, detailed work, problem solving, customer contact, reasoning, math, language, presentations, verbal and written communication, analytical reasoning, stress, multiple concurrent tasks and constant interruptions.
• The work environment characteristics, physical and mental demands described here are representative of those an employee encounters while performing the essential functions of this job.
• Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

POSITION REQUIREMENTS

Minimum Qualifications

• Bachelor's degree in Information Technology, Cybersecurity, or a related field, or equivalent combination of education and experience.
• 5 years of professional experience in IT support or related technical roles.
• Foundational understanding of cybersecurity principles, including access control, endpoint protection, and network monitoring.
• Familiarity with Microsoft 365, Active Directory, and basic system administration tasks.
• Ability to conduct audits, manage tickets, and document findings accurately.
• Strong analytical and troubleshooting skills.
• Effective communication skills and ability to collaborate across departments.

Preferred Qualifications

• Bachelor's degree in Information Technology, Cybersecurity, or a related field.
• Experience with banking industry compliance standards (e.g., GLBA, FFIEC).
• Hands-on experience with security tools such as SIEM, DLP, IDS/IPS, EDR, Email Filtering, and Firewalls.
• Exposure to vulnerability management platforms and identity/access management processes.
• Familiarity with Microsoft cloud services and Mobile Device Management.
• Experience supporting or administering phishing simulations, security awareness programs, or similar efforts.
• Knowledge of vendor management platforms and data classification tools.

Management reserves the right to change this position description at any time according to business needs. #LI_Hybrid

COMPENSATION

The posted pay range is the lowest to highest compensation we reasonably in good faith believe we would pay at posting for this role but may include ranges from the different geographies where this position may be based. New employees' starting pay is usually from the start of the range to approximately 25% of the max, more qualified and/or experienced employees may start near the middle of the range for their geography. We may ultimately pay more or less than this range.

Compensation for our organization is based on factors that include the role, required knowledge, skills, abilities and competencies, and candidates' relevant education, qualifications, certifications, experience, skills, seniority, location, performance, union contract and business needs. Our pay ranges are based on national living wage indexes, such as MIT's living wage index, to enable us to pay our employees beyond what are standard practices for many employers, and also take into account geographically-specific recent compensation market survey data for each position.

BENEFITS

Beneficial State Bank's benefits include a comprehensive package designed to support you and your eligible dependents. We focus on the holistic health of our team members and promote work-life balance.

Our benefit package includes:

• Medical / Dental / Vision / Basic Life / STD / LTD
• Vacation Days: 2-4 weeks depending on role
• Sick Days: 12 days per year
• Holidays: 11 days per year
• 401(K) / ROTH / FSA / HSA / EAP
• Education and Adoption Assistance
• Bank-Wide Annual Discretionary Bonus Program
• Production-based incentive program available for some roles.
• Paid Volunteer Time: 4 days per year / annual match of qualifying employee donations
• Paid Sabbatical Program after 5 years of service
• Pet Benefits

For detailed information about our benefits, please visit http://www.beneficialstatebank.com/about-us/careers

You are welcome here at Beneficial State Bank. We are an equal opportunity employer and all qualified applicants will receive consideration for employment regardless of race, color, religion, sex, sexual orientation, national origin, gender identity, disability or veteran status.

---