Information Security Governance Consultant

Thank you for your interest in a career at Regions. At Regions, we believe associates deserve more than just a job. We believe in offering performance-driven individuals a place where they can build a career --- a place to expect more opportunities. If you are focused on results, dedicated to quality, strength and integrity, and possess the drive to succeed, then we are your employer of choice.
Regions is dedicated to taking appropriate steps to safeguard and protect private and personally identifiable information you submit. The information that you submit will be collected and reviewed by associates, consultants, and vendors of Regions in order to evaluate your qualifications and experience for job opportunities and will not be used for marketing purposes, sold, or shared outside of Regions unless required by law. Such information will be stored in accordance with regulatory requirements and in conjunction with Regions' Retention Schedule for a minimum of three years. You may review, modify, or update your information by visiting and logging into the careers section of the system.
Job Description:
At Regions, the Information Security Governance (ISG) Consultant is responsible for third-party assessments for Information Security (Including PCI & HIPAA) and Business Resilience control programs including on-site inspections. This role oversees compliance with Information Security Policies and Standards including exception management, Key Risk Indicator (KRI) reporting as well as overall Program Management support. This position contributes to Cyber Education and Awareness activities to include awareness communications, training courseware development, social engineering testing and managing Regions Cyber Academy efforts.
Primary Responsibilities

• Supports relationship with Third-Party Risk Management (TPRM) to continuously improve the TPRM program as the subject matter experts for Information Security and Business Resilience
• Completes vendor assessments including on-site inspections for engagements with IS/BR considerations, including management reporting at the program level
• Performs HIPAA assessments for internal and external in-scope engagements
• Provides assistance to system users relative to information systems security matters
• Supports the overall program management function including KRI and metric reporting, audit, and roadmap reporting for senior management
• May create Information Security and cyber awareness communications and training content for associates and contingent workers
• Assists with social engineering testing and remedial training for all associates and contingent workers

This position is exempt from timekeeping requirements under the Fair Labor Standards Act and is not eligible for overtime pay.
Requirements

• Bachelor's degree in a related field
• Or a High School Diploma or GED and four (4) years of experience in Information Security or Information Technology

Preferences

• Certified Information Systems Security Professional (CISSP), Microsoft Certified Systems Engineer (MCSE), Certified Information Systems Auditor (CISA) or other industry certification

Skills and Competencies

• Ability to prioritize assignments while working on multiple projects
• Ability to undertake complex projects requiring additional specialized technical knowledge
• Ability to work independently and proactively to meet assigned objectives
• Proficiency in all Microsoft Office Applications
• Strong software skills and possess the ability to learn new technology quickly
• Strong writing and oral communication skills

*This position may be filled at a higher level depending on the candidate's qualifications and relevant experience.
*While this position will primarily work offsite, associate must be located within a reasonable driving distance (75 miles or less) of Birmingham, AL /Atlanta, GA/ Nashville,TN/ or Charlotte, NC. Regions will not provide relocation assistance for this position.
Additional job preferences for this specific opportunity

• Experience constructing and designing controls
• Experience reviewing contracts and ensuring requirements pertaining to Information Security meets standards

Position Type
Full time
Compensation Details
Pay ranges are job specific and are provided as a point-of-market reference for compensation decisions. Other factors which directly impact pay for individual associates include: experience, skills, knowledge, contribution, job location and, most importantly, performance in the job role. As these factors vary by individuals, pay will also vary among individual associates within the same job.
The target information listed below is based on the Metropolitan Statistical Area Market Range for where the position is located and level of the position.
Job Range Target:
Minimum:
$58,456.80 USD
Median:
$71,640.00 USD
Incentive Pay Plans:
This job is not incentive eligible.
Benefits Information
Regions offers a benefits package that is flexible, comprehensive and recognizes that "one size does not fit all" for benefits-eligible associates. Listed below is a synopsis of the benefits offered by Regions for informational purposes, which is not intended to be a complete summary of plan terms and conditions.

• Paid Vacation/Sick Time
• 401K with Company Match
• Medical, Dental and Vision Benefits
• Disability Benefits
• Health Savings Account
• Flexible Spending Account
• Life Insurance
• Parental Leave
• Employee Assistance Program
• Associate Volunteer Program

Please note, benefits and plans may be changed, amended, or terminated with respect to all or any class of associate at any time. To learn more about Regions' benefits, please click or copy the link below to your browser.
https://www.regions.com/welcometour/benefits.rf
Location Details
Riverchase Operations Center
Location:
Hoover, Alabama
Bring Your Whole Self to Work
We have a passion for creating an inclusive environment that promotes and values diversity of race, color, national origin, religion, age, sexual orientation, gender identity, disability, veteran status, genetic information, sex, pregnancy, and many other primary and secondary dimensions that make each of us unique as individuals and provide valuable perspective that makes us a better company and employer. More importantly, we recognize that creating a workplace where everyone, regardless of background, can do their best work is the right thing to do.
OFCCP Disclosure: Equal Opportunity Employer/Disabled/Veterans
Job applications at Regions are accepted electronically through our career site for a minimum of five business days from the date of posting. Job postings for higher-volume positions may remain active for longer than the minimum period due to business need and may be closed at any time thereafter at the discretion of the company.