Jobs
>
Dallas

    Senior Security Risk - Dallas, United States - Triumph Financial

    Triumph Financial
    Triumph Financial Dallas, United States

    1 week ago

    Default job background
    Description
    Join TriumphX

    TriumphX, a member of the Triumph Financial portfolio of brands, provides a concentration of technology and project management resources the members of the Triumph Financial portfolio of brands - TriumphPay, Triumph and TBK Bank - via a shared service model. We're looking for top tech and project management talent to analyze, recommend and build strategic solutions that support Triumph Financial's mission to become a world-class, market-leading financial and technology company.

    Position Summary:

    The Senior Security Risk and Compliance Analyst is a highly respected, influential and in-demand role within the business. The position is responsible supporting the security direction of the business and elevating the company's security posture. The analyst is expected to support the security strategy of the business within new and existing information system capabilities. Consequently, the position requires both an understanding of legacy systems, as well as new technologies and requirements. The analyst is also responsible for the planning and design of policies and maintenance.

    The Senior Security Risk and Compliance Analyst position reports to the VP, IT Risk & Compliance and assists in the building, support and maintenance of the GRC program. The analyst will engage in many facets of the information security and GRC programs while providing guidance and functioning as an experienced resource to control owners and business partners. The analyst will be given the ability to work with various teams to identify risks, deficiencies, create controls and report progress. The analyst should be someone who works well with others, leads, motivates others and has a passion for GRC.

    The ideal candidate is technical and possesses at least three years of experience in security, compliance or risk management. The role oversees the business' security requirements and obligations mandated by standards and regulations such as the Federal Financial Institutions Examination Council (FFIEC), Gramm-Leach-Bliley Act (GLBA), and Sarbanes-Oxley Act (SOX). In tandem with security leadership, the analyst consistently assesses and validates the assurance of the security program. As a primary point of contact for internal and external auditors, the analyst monitors progress and enforces resolution of outstanding issues that may lead to non-compliance or security threats to the business. As a key member of the security team, the analyst must focus on strong risk management and corporate resiliency, and not be driven solely by compliance.

    Essential Duties & Responsibilities:
    • Assists in implementing, supporting and maintaining an effective and mature GRC program at Triumph.
    • Safeguards information system assets by identifying and solving potential and actual security and risk concerns
    • Protects systems by defining role and attribute-based access privileges, control structures, and resources
    • Engages with business partners and team members on risk and compliance issue identification and remediation processes
    • Conducts risk and compliance assessments of IT and Security standards.
    • Maintain strong oversight of third parties, vendors and business partners to safeguard against undue risk presented by external entities. Escalate to security management and business unit leads when points of weakness are discovered
    • Explains security controls with clarity to business and technical users
    • Performs Control Self Assessments and communicates deficiencies to control owners and management.
    • Assists in the design, development and remediation of IT general controls
    • Manages exceptions to IT and security policies.
    • Prepares GRC metrics and effectively communicates this through Executive level presentation and reporting.
    • Coordinates External (SOX, SOC1, SOC2, client and other regulatory) audits and Internal audits
    • Upgrades cyber security program and capabilities by implementing and maintaining security controls
    • Provides documentation and evidence to respond to audits
    • Contributes to team objectives
    Experience & Education:
    • Bachelor's degree in Information Security, Information Systems, Computer Science, or equivalent work experience
    • 5+ years of prior relevant IT risk, IT security and/or IT audit experience
    • CISA, CISM, CRISC, or CISSP certification preferred
    • CIS 2.0 security and NIST framework controls
    • FFIEC Cyber Assessment Tool (CAT)
    • Experience and understanding of various regulatory requirements and laws, including but not limited to FFIEC, SOX, and GLBA. Additional experience in one or more of the following: SOC1, SOC2, ISO 27001/2, CIS or NIST
    Skills & Abilities Required:
    • Ability to function with limited supervision
    • Strong interpersonal skills.
    • Quality written and oral communication, and presentation skills.
    • Critical thinking and problem-solving skills.
    • Attention to detail, patience and flexibility
    • Commitment to operational excellence and continuous process improvement.
    • Strategic project management and oversight of milestones and deliverables.
    • Strong knowledge of IT general controls
    • SOC Reports (SOC1/SOC2) Type I and II
    • Bank Federal and State Compliance regulations
    • Strong knowledge of Cybersecurity and its relation to IT deployment and implementations
    • Agile methodology
    • Knowledge of Risk, Compliance and Cyber Frameworks, such as, NIST 800-53, CIS, COSO, SANS, ISO, COBIT, ITIL
    • IT and security policy, standards and procedures creation and maintenance
    • Identity Access Management and Privileged Access Management (IAM and PAM)
    • Role and attribute-based access controls (RBAC and ABAC)
    • Willingness to expand and apply security knowledge, skills, and abilities to department initiatives.
    Work Environment:

    The work environment characteristics described here maybe encountered while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
    • Moderate noise (i.e. business office with computers, phone, and printers, light traffic).
    • Ability to work in a confined area.
    • Ability to sit at a computer terminal for an extended period of time. Occasional stooping or kneeling may be necessary.
    • While performing the duties of this job, the employee is regularly required to stand, sit, talk, hear and use hands and fingers to operate a computer keyboard and telephone.
    • Specific vision abilities are required by this job due to computer work.
    • Light to moderate lifting is required.
    • Regular, predictable attendance is required.
    #LI-JH1

    We offer Medical, Dental, Vision, Paid Time Off, 401k and much more.

    Go on. Do it. Apply Today
  • Triumph Financial

    Security Risk and Compliance Associate

    1 day ago

    Triumph Financial Dallas, United States

    Join TriumphX · TriumphX provides a concentration of technology and project management resources the members of the Triumph Financial portfolio of brands - TriumphPay, Triumph and TBK Bank - via a shared service model. We're looking for top tech and project management talent to ...

  • Ashley Ellis

    Information Risk/Security Consultant

    3 days ago

    Ashley Ellis Dallas, United States

    Job Title: · Information Risk/Security Consultant · Work Location: · Remote · Duration: · Long-term contract with option to hire · Job Description: · We are seeking an · Information Technology Governance Risk / Security Controls Consultant · to join our Information Technol ...

  • U.S. Bank

    Senior Info Security Risk Analyst

    3 days ago

    U.S. Bank Dallas, United States

    At U.S. Bank, we're on a journey to do our best. Helping the customers and businesses we serve to make better and smarter financial decisions and enabling the communities we support to grow and succeed. We believe it takes all of us to bring our shared ambition to life, and each ...

  • Celanese

    Technology & Security Risk Analyst

    1 week ago

    Celanese Irving, United States

    Job Description · Job DescriptionCelanese is a Fortune 500 global chemical and specialty materials company that engineers and manufactures products essential to everyday living. With global headquarters in Dallas, Texas, Celanese employs approximately 13,300 dedicated people work ...

  • Amazon Web Services, Inc.

    Healthcare & Life Sciences Solutions Architect, Aws

    1 day ago

    Amazon Web Services, Inc. Dallas, United States

    8+ years of specific technology domain areas (e.g. software development, cloud computing, systems engineering, infrastructure, security, networking, data & analytics) experience · - Knowledge of software development tools and methodologies · - Working knowledge of cloud technolog ...

  • Deluxe Corporation

    Information Security Risk Analyst

    1 day ago

    Deluxe Corporation Fort Worth, United States

    Make a Difference. Secure Our Future. · From Fundamentals to Frontlines: Launch your cybersecurity career as an Information Security Risk Analyst at Deluxe · Unleash Your Inner Cyber Sleuth: start your Information Security journey at Deluxe · Description: · The Information Securi ...

  • Deluxe Corporation

    Information Security Risk Analyst

    1 day ago

    Deluxe Corporation Fort Worth, United States

    Make a Difference. Secure Our Future. · From Fundamentals to Frontlines: Launch your cybersecurity career as an Information Security Risk Analyst at Deluxe · Unleash Your Inner Cyber Sleuth: start your Information Security journey at Deluxe · Description: · The Information Se ...

  • STA Worldwide

    Public Cloud Risk and Controls Analyst

    4 days ago

    STA Worldwide Dallas, United States

    This is a remote position. · Public Cloud Risk and Controls Analyst · Rate: DOE · Duration: 1 year · Location: Dallas, TX-Fully Remote · Pre-Qualifying Questions: · 1. Do you have ALL the required skills? · 2. Do you have the preferred qualifications listed in Acceptance Criteria ...

  • Capital One

    Director, Cyber Risk and Analysis- Information Security Office

    23 hours ago

    Capital One Plano, United States

    Plano , United States of America, Plano, Texas · Director, Cyber Risk and Analysis- Information Security Office · As a Director of Cyber Risk and Analysis at Capital One, you will work closely within our cyber security team, and with extended technical teams to manage and improve ...

  • Capital One

    Director, Cyber Risk and Analysis- Information Security Office

    2 days ago

    Capital One Plano, United States Full time

    Plano , United States of America, Plano, Texas · Director, Cyber Risk and Analysis- Information Security Office · As a Director of Cyber Risk and Analysis at Capital One, you will work closely within our cyber security team, and with extended technical teams to manage and improve ...

  • Capital One

    Director, Cyber Risk and Analysis- Information Security Office

    2 days ago

    Capital One Plano, United States Regular, Full or Part time

    Plano , United States of America, Plano, Texas · Director, Cyber Risk and Analysis- Information Security Office · As a Director of Cyber Risk and Analysis at Capital One, you will work closely within our cyber security team, and with extended technical teams to manage and improve ...

  • Altus Group

    Application Security Architect

    6 days ago

    Altus Group Dallas, United States Temps plein

    Catégorie d'emploi: · Technologie Gamme des niveaux de rémunération : · $102, $239,560.00 Clause de non-responsabilité : L'échelle de salaire de base représente le bas et le haut de l'échelle de rémunération du Groupe Altus pour ce poste dans le lieu de travail principal. Les ...

  • Beal Bank

    Vp, Investment Counsel

    1 day ago

    Beal Bank Plano, United States

    **Summary**: · CSG Investments, Inc. (CSG) is a global buy-and-hold institution headquartered in Plano, TX. CSG provides flexible and creative capital solutions for all types of commercial and industrial customers. CSG is an affiliate of Beal Bank and Beal Bank USA, both multi-bi ...

  • BEAL NEVADA SERVICE CORPORATION

    Vp, Investment Counsel

    1 day ago

    BEAL NEVADA SERVICE CORPORATION Plano, United States

    **Summary**: · CSG Investments, Inc. (CSG) is a global buy-and-hold institution headquartered in Plano, TX. CSG provides flexible and creative capital solutions for all types of commercial and industrial customers. CSG is an affiliate of Beal Bank and Beal Bank USA, both multi-bi ...

  • Seneca Resources

    Cloud Security Engineer

    6 days ago

    Seneca Resources Dallas, United States

    Position Title: Cloud Security Engineer (AWS) · Location: Charlotte, NC; Malvern, PA; Dallas, TX (preferred); Scottsdale, AZ · Position Status: Contract to Hire and Direct Hire (multiple positions open) · Position Description: · Our client is looking for Cloud Security Engineer ...

  • MV Transportation

    Senior Risk Analyst

    1 day ago

    MV Transportation Dallas, United States Full time

    Overview: If you reside in California, please see our California Applicant Privacy Policy for more information about our data handling practices and your data rights. · Responsibilities: MV Transportation is seeking an Senior Risk Analyst to be a key contributor to the Risk Manag ...

  • The Intersect Group

    Cyber Security Analyst

    4 days ago

    The Intersect Group Dallas, United States

    Job Title: Cyber Security Analyst · Schedule: FULLY REMOTE Monday-Friday · Duration: Full-time Opportunity · Purpose and Job Summary · Seeking a Cyber Security Analyst to join our growing cyber security team. You will analyze, assess, plan, and enact security measures to help ...

  • Elan Partners

    Sr. Cyber Security Analyst

    5 days ago

    Elan Partners Dallas, United States

    TITLE: Sr. Cyber Security Analyst (Remote/Hybrid if local to Dallas/Ft. Worth) · Direct Hire Opportunity · No Sponsorship · Hybrid - 3 Days Remote, 2 Days onsite, unless you reside outside of the Dallas/Forth Worth area. · As our clients Sr. Cyber Security Analyst you will analyz ...

  • Trinity Industries, Inc.

    IT Governance, Risk, and Compliance Manager

    3 days ago

    Trinity Industries, Inc. Dallas, United States

    Trinity Industries is hiring an IT Governance, Risk, and Compliance Manager in our Dallas, TX office. · The IT Governance, Risk, and Compliance (IT GRC) Manager functions within the Information GRC (IGRC) team, reporting to the Senior Director of IGRC within the Information Risk ...

  • Foot Locker

    Sr. Director, Cyber Security

    1 week ago

    Foot Locker Dallas, TX, United States

    OverviewFoot Locker is seeking a highly experienced and strategic Senior Director of Cyber Security leader to spearhead our global cyber security risk efforts. Reporting to the CISO, you will play a pivotal role in safeguarding our global platform, ensuring the security and priva ...