Security Risk and Compliance Associate
4 weeks ago
TriumphX provides a concentration of technology and project management resources the members of the Triumph Financial portfolio of brands - TriumphPay, Triumph and TBK Bank - via a shared service model. We're looking for top tech and project management talent to analyze, recommend and build strategic solutions that support Triumph Financial's mission to become a world-class, market-leading financial and technology company.
Position Summary
The Security Risk and Compliance Associate is a highly respected, influential and in-demand role within the business. The position is responsible supporting the security direction of the business and elevating the company's security posture. The associate is expected to support the security strategy of the business within new and existing information system capabilities. Consequently, the position requires both an understanding of legacy systems, as well as new technologies and requirements. The associate is also responsible for the planning and design of policies and maintenance.
The Security Risk and Compliance Associate position reports to the VP, IT Risk & Compliance and assists in the building, support and maintenance of the GRC program. The associate will engage in many facets of the information security and GRC programs while providing guidance and functioning as an experienced resource to control owners and business partners. The associate will be given the ability to work with various teams to identify risks, deficiencies, create controls and report progress. The associate should be someone who works well with others, leads, motivates others and has a passion for GRC.
The ideal candidate is technical and possesses at least one year of experience in security, compliance or risk management. The role oversees the business' security requirements and obligations mandated by standards and regulations such as the Federal Financial Institutions Examination Council (FFIEC), Gramm-Leach-Bliley Act (GLBA), and Sarbanes-Oxley Act (SOX). In tandem with security leadership, the associate consistently assesses and validates the assurance of the security program. As a primary point of contact for internal and external auditors, the associate monitors progress and enforces resolution of outstanding issues that may lead to non-compliance or security threats to the business. As a key member of the security team, the associate must focus on strong risk management and corporate resiliency, and not be driven solely by compliance.
Essential Duties & Responsibilities
- Assists in implementing, supporting and maintaining an effective and mature GRC program at Triumph
- Safeguards information system assets by identifying and solving potential and actual security and risk concerns
- Protects systems by defining role and attribute-based access privileges, control structures, and resources
- Engages with business partners and team members on risk and compliance issue identification and remediation processes
- Conducts risk and compliance assessments of IT and Security standards
- Maintain strong oversight of third parties, vendors and business partners to safeguard against undue risk presented by external entities. Escalate to security management and business unit leads when points of weakness are discovered
- Explains security controls with clarity to business and technical users
- Performs Control Self Assessments and communicates deficiencies to control owners and management
- Assists in the design, development and remediation of IT general controls
- Manages exceptions to IT and security policies.
- Prepares GRC metrics and effectively communicates this through Executive level presentation and reporting.
- Coordinates External (SOX, SOC1, SOC2, client and other regulatory) audits and Internal audits
- Upgrades cyber security program and capabilities by implementing and maintaining security controls
- Provides documentation and evidence to respond to audits
- Contributes to team objectives
- Bachelor's degree in Information Security, Information Systems, Computer Science, or equivalent work experience
- Less than three years of prior relevant IT risk, IT security and/or IT audit experience
- Pursuing CISA, CISM, CRISC, or CISSP certifications
- CIS 2.0 security and NIST 800-53 framework controls
- FFIEC Cyber Assessment Tool (CAT)
- Experience and understanding of various regulatory requirements and laws, including but not limited to FFIEC, SOX, and GLBA. Additional experience in one or more of the following: SOC1, SOC2, ISO 27001/2, CIS or NIST 800-53
- Ability to function with limited supervision
- Strong interpersonal skills
- Quality written and oral communication, and presentation skills
- Critical thinking and problem-solving skills
- Attention to detail, patience and flexibility
- Commitment to operational excellence and continuous process improvement
- Strategic project management and oversight of milestones and deliverables
- Knowledge of IT general controls
- SOC Reports (SOC1/SOC2) Type I and II
- Bank Federal and State Compliance regulations
- Strong knowledge of Cybersecurity and its relation to IT deployment and implementations
- Agile methodology
- Knowledge of Risk, Compliance and Cyber Frameworks, such as, NIST 800-53, CIS, COSO, SANS, ISO, COBIT, ITIL
- IT and security policy, standards and procedures creation and maintenance
- Identity Access Management and Privileged Access Management (IAM and PAM)
- Role and attribute-based access controls (RBAC and ABAC)
- Willingness to expand and apply security knowledge, skills, and abilities to department initiatives
#LI-JH1
We offer Medical, Dental, Vision, Paid Time Off, 401k and much more.
Go on. Do it. Apply Today
-
Security, Risk and Compliance Consultant
5 days ago
Dallas, United States SEI Full timeWHO WE LOOK FOR An SEI-er is a master communicator and active listener who understands how to navigate an audience. Self-aware, almost to a fault, SEI-ers keenly understand how to adjust their support and problem solving based on the situation. Following a logical, fact-based approach, SEI-ers possess the superior ability to see correlations others may not,...
-
IT Governance, Risk, and Compliance Manager
1 month ago
Dallas, United States TrinityRail Full timeTrinity Industries is hiring an IT Governance, Risk, and Compliance Manager in our Dallas, TX office. The IT Governance, Risk, and Compliance (IT GRC) Manager functions within the Information GRC (IGRC) team, reporting to the Senior Director of IGRC within the Information Risk Management organization. The IT GRC Manager will be responsible for the execution...
-
IT Governance, Risk, and Compliance Manager
4 weeks ago
Dallas, United States Trinity Industries, Inc. Full timeTrinity Industries is hiring an IT Governance, Risk, and Compliance Manager in our Dallas, TX office.The IT Governance, Risk, and Compliance (IT GRC) Manager functions within the Information GRC (IGRC) team, reporting to the Senior Director of IGRC within the Information Risk Management organization. The IT GRC Manager will be responsible for the execution...
-
IT Governance, Risk, and Compliance Manager
4 weeks ago
Dallas, United States Trinity Industries, Inc. Full timeTrinity Industries is hiring an IT Governance, Risk, and Compliance Manager in our Dallas, TX office.The IT Governance, Risk, and Compliance (IT GRC) Manager functions within the Information GRC (IGRC) team, reporting to the Senior Director of IGRC within the Information Risk Management organization. The IT GRC Manager will be responsible for the execution...
-
IT Governance, Risk, and Compliance Manager
4 weeks ago
Dallas, United States Trinity Industries, Inc. Full timeTrinity Industries is hiring an IT Governance, Risk, and Compliance Manager in our Dallas, TX office.The IT Governance, Risk, and Compliance (IT GRC) Manager functions within the Information GRC (IGRC) team, reporting to the Senior Director of IGRC within the Information Risk Management organization. The IT GRC Manager will be responsible for the execution...
-
IT Security Compliance Lead
4 days ago
Dallas, United States Business Centric Technology Full timeJob DescriptionJob DescriptionBCT is actively seeking a skilled IT Security Compliance Lead for a direct hire opportunity in Dallas.This is a onsite position. No sponsorship is offered and NOT open to C2C candidates.SALARY RANGE: Up to $155k base, depending on candidate experience, etc.WHAT OUR CLIENT OFFERS:The company is an employee-focused culture with...
-
Lead IT Security Compliance
3 days ago
Dallas, United States Atmos Energy Full timeLead IT Security Compliance page is loaded Lead IT Security Compliance Apply locations Texas - Dallas time type Full time posted on Posted 2 Days Ago job requisition id JR8252 At Atmos Energy, we enjoy an employee-focused culture with rewarding work, competitive pay, work-life balance, inclusion and diversity, and excellent benefits. Benefits offered...
-
Risk & Compliance Manager
3 weeks ago
Dallas, United States Axis Energy Administration Full timeDescription The Risk & Compliance Manager ensures that the organization conducts its business processes in compliance with laws and regulations, professional standards, and accepted business practices and is responsible for managing the risk insurance programs that ensure that our company remains fully compliant with relevant local, state, and federal...
-
Risk & Compliance Manager
4 days ago
Dallas, United States Axis Energy Services Full time***TO APPLY, VISIT OUR COMPANY WEBSITE:Job Postings | Axis Energy Services (axisofs.com)The Risk & Compliance Manager ensures that the organization conducts its business processes in compliance with laws and regulations, professional standards, and accepted business practices and is responsible for managing the risk insurance programs that ensure that our...
-
Executive Reporting Manager
1 week ago
Dallas, United States JPMorgan Chase Full timeJob Description Our Information Security professionals are passionate about information security and control solutions for computing environments. While managing a world-class team of technology experts, you'll partner with one or more disciplines, lines of business, regions or locations to respond to evolving business requirements and emerging threats....
-
Compliance Associate Director
2 days ago
Dallas, United States Larson Maddox Full timeWe are currently partnered a leading P&C insurance provider dedicated to innovative solutions and exceptional service. Position Overview: The Compliance Associate Director will manage the compliance program for our P&C insurance division, ensuring regulatory adherence and developing compliance policies. Compliance Associate Director Key...
-
Insurance Risk
3 days ago
Dallas, United States Axis Energy Services Full time***TO APPLY, VISIT OUR COMPANY WEBSITE:Job Postings | Axis Energy Services (axisofs.com)The Insurance Risk & Compliance Manager ensures that the organization conducts its business processes in compliance with laws and regulations, professional standards, and accepted business practices and is responsible for managing the risk insurance programs that ensure...
-
VP Corporate Compliance, Risk-based Functions
3 weeks ago
Dallas, United States Baylor Scott & White Health Full timeJOB SUMMARY Reporting to the SVP, Chief Corporate Ethics and Compliance Officer, the VP Corporate Compliance is responsible for planning, developing, and enforcing compliance programs for Baylor Scott and White Health (BSWH), which includes varied compliance risk-based functions and programs such as hospital regulatory compliance, provider compliance,...
-
Compliance Associate Director
3 days ago
Dallas, United States Larson Maddox Full timeWe are currently partnered a leading P&C insurance provider dedicated to innovative solutions and exceptional service. Position Overview: The Compliance Associate Director will manage the compliance program for our P&C insurance division, ensuring regulatory adherence and developing compliance policies. Compliance Associate Director Key Responsibilities:...
-
Compliance Associate Director
4 days ago
Dallas, United States Larson Maddox Full timeWe are currently partnered a leading P&C insurance provider dedicated to innovative solutions and exceptional service.Position Overview: The Compliance Associate Director will manage the compliance program for our P&C insurance division, ensuring regulatory adherence and developing compliance policies.Compliance Associate Director Key...
-
Risk, ERM – Risk Appetite
1 month ago
Dallas, United States Goldman Sachs Full timeThe Risk division is responsible for credit, market and operational risk, model risk, independent liquidity risk, and insurance throughout the firm. Team: Enterprise Risk Management Level: Associate Location: Dallas The Risk Division aims to effectively identify, monitor, evaluate, and manage the firm’s financial and non-financial risks in...
-
Cybersecurity Risk Compliance Assessor
5 days ago
Dallas, United States U.S. Bank Full timeAt U.S. Bank, we’re on a journey to do our best. Helping the customers and businesses we serve to make better and smarter financial decisions and enabling the communities we support to grow and succeed. We believe it takes all of us to bring our shared ambition to life, and each person is unique in their potential. A career with U.S. Bank gives you a wide,...
-
Risk Manager Liquidity
3 days ago
Dallas, United States ESR Healthcare Full timeRisk Manager Liquidity (Associate) Dallas or Jersey City, NJ Skills: Market Risk, Liquidity, Fixed Income Securities Job description Job insights Screening questions Candidate pipeline Experience level: Associate Experience required: 3 Years Education level: Bachelor’s degree Job function: Finance Industry: Financial Services Pay rate : View hourly payrate...
-
Business Compliance Associate Director
1 week ago
Dallas, United States DTCC Full timeAre you ready to make an impact at DTCC? Do you want to work on innovative projects, collaborate with a dynamic and supportive team, and receive investment in your professional development? At DTCC, we are at the forefront of innovation in the financial markets. We're committed to helping our employees grow and succeed. We believe that you have the skills...
-
Dallas, United States Goldman Sachs Full timeMORE ABOUT THIS JOB: RISK The Risk division is responsible for managing credit, market and operational risk, model risk, independent liquidity risk, and insurance throughout the firm. OVERVIEW The Risk Division is a team of specialists charged with managing the firms risk, and providing the overall financial control and reporting functions. Whether assessing...
