Vacancy expired!
The Information Security Cyber Assessment Team objective is to ensure that the Bank can effectively assess cyber threats and risks against the Bank. The primary role of the Information Security Program Cyber Assessment Analyst is to perform cybersecurity program assessments of new and existing processes and technology for the Information Security Department. By assisting the Information Security Cyber Assessment Manager with these assessments, this role will help identifying cybersecurity threats and risks as well as help influencing management decisions in the continuous improvement and maturation of the cybersecurity program. Perform multiple annual cybersecurity assessments of targeted processes and technology divisions of the information security department against regulatory, federal/state guidelines and information security bank requirements. Support the ongoing evaluation of cybersecurity capabilities to determine the maturity and effectiveness of capability implementation using various cybersecurity and IT Risk frameworks (NIST, ISO, COBIT, CIS, etc.). Collaborate with stakeholders and internal business partners to evaluate the design and effectiveness of cybersecurity controls within the line of business. Lead staff interviews, document analysis, requirements workshops, surveys, site visits, business process descriptions, business analysis and workflow analysis. Perform in-depth analysis, document, and report assessment findings and outcomes to technical staff, senior line of business managers, and Executive levels. Escalate identified issues as well as recommend remediation to management and present to business. Maintain strong knowledge of the regulatory cyber risk requirements and industry best practices/standards to help influencing management decisions in the continuous improvement and maturation of the cybersecurity program. Support other audit, risk managements, and maturity assessments performed by internal audit team or external vendors. Bachelor's Degree required in a related Information Technology or Computer Science discipline, or equivalent experience required. 2-4+ years’ experience performing security assessments and/or working in a cyber risk management position, preferably related to the financial services or other regulated industries. Demonstrate experience in the execution of assessments, solid judgement in the evaluation of controls and processes, and document defensible conclusions for the assessment outcomes. Able to act independently and decisively when making decisions regarding both the technological and critical regulatory environment and daily business issues. Takes accountability for ideas from inception to delivery, in an environment that requires robust metrics to confirm success. Ability to set-up, facilitate and lead service improvement/’Work Out’ sessions with a range of business stakeholders (incl. Experience of process/value stream mapping). Proven ability to interact professionally and manage positive relationships with a diverse group of partners, senior managers, subject matter experts, and all levels of management to affect key decisions and outcomes. Excellent verbal and written communication skills, including the ability to write clear, concise, technical and non-technical reports as well as present in front of diverse audiences. Security+, CISA, CRISC Certifications preferred.Req No.: 2023-9998 Street: 2350 Lakeside BLVD External Company Name: Texas Capital Bank External Company URL: www.texascapital.com
