Information Security Risk Analyst bei Peoples Security Bank & Trust Company

Description

Our Information Security Risk Analyst plays a critical role in safeguarding the bank’s information assets by identifying, assessing, and mitigating cybersecurity risks. Reporting directly to the Information Security Officer, this position supports the development and execution of the bank’s information security risk management program, ensuring compliance with regulatory requirements and alignment with industry best practices and the bank’s risk appetite.

In Office or Hybrid

Essential Duties:

• Conduct regular risk assessments of information systems, third-party vendors, and business processes.
• Evaluate threats, vulnerabilities, and potential impacts to determine risk levels.
• Maintain and enhance the bank’s risk register and risk scoring methodology.
• Monitor key performance and risk indicators (KPIs and KRIs) and escalate emerging risks to management.
• Support the development, implementation, and enforcement of information security policies, standards, and procedures.
• Monitor compliance with FFIEC, GLBA, NIST, and other applicable regulatory frameworks.
• Assist in preparing for internal and external audits and regulatory examinations.
• Contribute to the development and maintenance of risk management policies, procedures, and frameworks.
• Support the implementation of enterprise risk management (ERM) initiatives.
• Participate in the incident response process, including investigation, documentation, and post-incident reviews.
• Monitor security alerts and threat intelligence feeds to identify emerging risks.
• Conduct security reviews of vendors and service providers.
• Collaborate with procurement, vendor management, and legal teams to ensure appropriate security clauses are included in contracts.
• Prepare risk reports and dashboards for the Information Security Officer and executive leadership.
• Communicate technical risks in business terms to non-technical stakeholders.
• Stay current with evolving cybersecurity threats, trends, and technologies.
• Recommend enhancements to security controls and risk management processes.
• Work closely with business units, compliance, internal audit, and IT to identify and mitigate risks.
• Provide risk advisory support for new products, services, and strategic initiatives.

Benefits Offered to Peoples Security Bank Employees

**Our College Tuition Reimbursement Benefit can help you achieve your long-term career and educational goals**

• Medical Plans
• Dental Plan
• Vision Plan
• Life Insurance
• Disability Insurance
• 401(K) Plan
• Paid Time Off
• Paid Holidays
• Volunteer Time Off
• Employee Assistance Program
• Banking Classes
• Internal Advancement Opportunities

Company Overview

Community has and always will be our purpose. We were founded on the principle to be a bank that people can trust. We would not be where we are today without the dedication that our employees have had since we first opened our doors. Our values still hold true to this day and we are making strides to continue to grow with our amazing team.

We believe that operating with a core set of values will be integral to the success of Peoples Security Bank & Trust for our employees, customers, shareholders and communities.

• PEOPLE | Working together for a common good by engaging our customers and communities.
• SERVICE | Consistently deliver a safe, reliable and positive banking experience for our customers.
• BETTER | A commitment to excellence in every interaction.
• TRUST | Integrity, accountability, guidance, and support form the foundation for every customer engagement.
  

We believe our team is what makes our organization successful. Hearing their stories show a path of growth and enrichment in their careers. Every single team member truly makes a difference within our company and we're grateful for each employee who chooses to work with us.

Peoples Security Bank and Trust Company is an Equal Opportunity Employer

Requirements

Education/Training: Formal education in Information Security, Cybersecurity, Information Technology, or a related field preferred. Professional certifications such as CRISC, CISA, CISSP, or Security+ preferred.

Skill(s): Must demonstrate oral/written communication skills; proficient interpersonal relations skills; the ability to perform problem/situational analysis and reason analytically is required; the ability to demonstrate a functional knowledge of Information Security risk and industry best practices; project management skills; the ability to maintain confidentiality in regard to information processed, stored, or accessed by the systems is required; the ability to work with and train people possessing differing levels of technical knowledge is required.

Experience: 3+ years of experience in information security, risk management, or IT audit, preferably in the financial services industry. Familiarity with regulatory requirements such as FFIEC, GLBA, and NIST Cybersecurity Framework preferred.

Physical Requirements: The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this position. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. While performing the essential job functions of this position, the employee is regularly required to sit, stand, talk, hear, walk, use hands and fingers, handle or feel objects, and reach with hands and arms. At times required to stoop, kneel, bend, crouch and lift up to 25 pounds. This position requires regular use of a computer.