Information Security Compliance Analyst
Rethink what’s possible with SwitchThink! SwitchThink Solutions is an IT Services CUSO (Credit Union Service Organization) from Desert Financial.
As a collaborative partner for innovation, SwitchThink Solutions offers technology solutions that help credit unions achieve their transformational goals. Our knowledgeable Architecture/Engineering, and Operations specialists work hand-in-hand with our clients to maximize the benefits of their technology and speed their results.
Who You Are…
As the Security Compliance Analyst you'll take ownership of the ongoing re-certification process for compliance initiatives PCI ROC and SSAE18, maintenance of SwitchThink information security risk and compliance applications and programs, and coordination of all IT audit related activities and reporting.
A typical week might include the following...
Schedule, support, and coordinate audits and regulatory examinations on behalf of SwitchThink, Desert Financial Credit Union, and its subsidiaries. Including:
- Internal Audits
- External Audits
- PCI AOC and ROC
- SSAE18 SOC Type1 and Type 2 Reports on Compliance
Maintain and support the Information Security Allgress Governance, Risk, and Compliance (GRC) application and First Line of Defense initiative by gathering evidence for recurring audit items. Measure Information Security Policy (ISP) controls, coordinating the testing and validation of security controls, and reporting on any exceptions discovered.
Centrally manage evidence collection, submission, communication, management responses, and remediation tracking for all audits and examinations.
Create and maintain reporting dashboards highlighting trends, progress, gaps, and other Information Security metrics. Track Information Security related risks and corresponding action plans with due dates to ensure that issues are resolved.
Support the Information Security team analyzing incidents in the incident response ticketing system.
Perform other job-related duties as assigned.
This role might be for you if you have...
High School Diploma or GED
2 years of experience in a compliance information security-related role.
Broad information security knowledge and knowledge of common industry standards (ISO, NIST, COBIT, PCI, FFIEC, etc).
CISSP, CISA, CISM, GIAC
Strong communication skills and ability to communicate effectively (written and verbal) with all levels of staff and management
Confidence in leading small to medium-sized teams and business meetings
Attention to detail with the ability to prioritize work within time constraints.
Strong relationship-building, organization, and follow-up skills.
Participating in and enhancing an ongoing compliance program
Experience with Microsoft Office (Outlook, Word, Excel and Power Point, SharePoint, and Visio
Experience in a fast paced environment.
Bonus points if you have...
Bachelor's or Associate's degree in Business or Information Technology.
Experience managing and maintaining a Governance Risk and Compliance platform (Archer, Allgress, LockPath, etc).
Financial, Banking, or highly regulated environment.
PCI Professional (PCIP) or Internal Security Assessor (ISA). Must obtain PCI Professional (PCIP) or Internal Security Assessor (ISA) within 6 months of hire.
We are considered leaders in the local credit union space, and we are growing like crazy. We’ve got a culture focused on smarts, kindness, continuous learning...and our people love it. A full 93% of our employees would recommend us to their friends. Come find out why! Learn more at https://www.switchthink.com/careers
We are proud to be an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.
We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.