Information Security Compliance Analyst

Information Security Compliance Analyst

Eagle is seeking an Information Security Compliance Specialist to join the Information Security and Risk Management team. This individual will help build out the information security controls framework by identifying, evaluating, and interpreting various industry, regulatory, and/or customer security requirements that may be applicable to Eagle. S/he will also partner with business units and stakeholders to risk assess against the control framework and make recommendations on necessary procedural/control changes.
 

Key Functions/Responsibilities:

  • Translate complex regulations or industry standards into clear, easily understood control requirements
  • Map control requirements across information security framework to identify overlapping requirements and compliance efficiencies
  • Risk assess business units against the control requirements
  • Create and update information security related policies, standards and/or procedures as needed
  • Assist in responding to information security questionnaires and produce artifacts as requested from existing and potential clients
  • Assist in audit reviews and information security risk assessments as needed
  • Develop compliance communications and drive problem resolution
  • Support other information security and risk management related activities as needed
     

Qualifications

  • -BA/BS preferred
  • -3+ years of relevant experience with information security, control standards, and frameworks such as IT SOX, SSAE18, ISO27001, NIST 800-53
  • -Requires strong analytical, organizational, and project management skills
  • -Requires strong oral and written communication skills and problem solving skills
  • -Ability to communicate IT, networking, and security concepts as well as compliance requirements to personnel at all levels of experience and responsibility

Desired skills 

  • -Knowledge of the Financial Services Industry regulations, compliance, operations or auditing is highly desirable but not required
  • -Experience with using RSA Archer eGRC to perform compliance and risk assessments is highly desirable 

 

To apply for this role click https://jobs.bnymellon.com/jobs/1807999?lang=en-us. For any questions on this role, please contact us a careers@eagleinvsys.com.

Contact Us ...

For Sales and Marketing
click here

For Support contact your relationship manager or
visit the Eagle Portal

For Public Relations click here

Information Security Compliance Analyst