Information Security Compliance Analyst
Rethink what’s possible with SwitchThink! SwitchThink Solutions is an IT Services CUSO from Desert Financial.
As a collaborative partner for innovation, SwitchThink Solutions offers technology solutions that help credit unions achieve their transformational goals. Our knowledgeable development, infrastructure, and IT operations experts work hand-in-hand with our clients to maximize the benefits of their technology and speed their results.
Who you are...
You enjoy a fast-paced environment, managing and prioritizing multiple initiatives such as information security, computer operations, software development, project management, and managed services. You excel at building relationships and adjusting your communication style to your audience.
Your confidence shows when you're leading small to medium-sized teams and business meetings, and you work across functions to coordinate and lead all activity surrounding IT-related audits.
Sounds like you? Read on to learn more about how you can make your mark as a Security Compliance Assurance Analyst at SwitchThink Solutions.
A typical day might include the following...
Support, facilitate, and coordinate audits and regulatory examinations on behalf of SwitchThink, Desert Financial Credit Union, and its subsidiaries.
- Internal Audits
- External Audits
- PCI AOC and ROC
- SSAE18 SOC Type1 and Type 2 Reports on Compliance
Centrally manage evidence collection, submission, communication, management response development, and remediation tracking for all audits and examinations
Perform risk assessments of vendors, software solutions, and system architectures based on known frameworks (NIST, PCI, SOC, etc).
Track Information Security related risks and corresponding action plans with due dates to ensure that issues are resolved.
Maintains and enhances Information Security Policy and Standards documentation and manages exception to standards.
Make recommendations for customized policies, procedures, and controls to improve compliance and risk exposure.
Partner with Learning & Development to enhance the organizational Security Awareness Program to include the development of new content, changes to existing content, and scheduling annual training activities.
Present monthly summary of overall organizational risk and compliance based on policies, exceptions, and current risk exposures.
Perform other job-related duties as assigned.
This might be for you if you have...
5 years of compliance-related or information security-related experience (preferably in the financial/banking industry).
Experience building dashboards highlighting trends, progress, gaps, and other Information Security metrics.
Broad information security knowledge across common industry standards (ISO, NIST, COBIT, PCI, FFIEC, etc.).
Experience managing and maintaining a Governance Risk and Compliance platform (Archer, Allgress, LockPath, etc.).
Experience with Microsoft Office (Outlook, Word, Excel and Power Point, SharePoint, and Visio).
Bonus points if you have...
Bachelor’s degree in Business or Information Technology preferred.
PCI Professional (PCIP) or Internal Security Assessor (ISA) certification. If not currently certified, you must obtain within 6 months of hire.
CISSP, CISA, CISM, or GIAC certifications preferred.
We are considered leaders in the local credit union space, and we are growing like crazy. We’ve got a culture focused on smarts, kindness, continuous learning...and our people love it. A full 93% of our employees would recommend us to their friends. Come find out why! Learn more at jobs.desertfinancial.com or www.switchthink.com/careers
We are proud to be an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.