Address
Form of work
SalaryPay is based on a number of factors including the successful candidate’s job-related knowledge and skills, qualifications, and prior experience. Arvest offers a comprehensive suite of benefits, including a full range of health and life, financial, and wellness benefits. For more information about benefits, please visit www.arvest.com/careers/benefits .
Position is Monday through Friday 8 am to 5 pm with ability to work additional hours as needed.
Incumbent must be located anywhere within the Arvest 4 State Footprint (AR, KS, MO, OK).
Summary:
SUMMARY: The Information Security Risk Analyst collaborates with first line and second line risk partners to identify, measure, monitor, and control Information Security risk in accordance with Arvest Bank’s operational risk framework and control framework.
ESSENTIAL DUTIES AND RESPONSIBILITIES include the following. Other duties may be assigned.
1. Assists in the ongoing development and maintenance of Information Security risk management process and frameworks.
2. Executes risk assessments, analyzes results, and facilitates necessary remediation activities.
3. Follows all risk remediation protocols to ensure issues are mitigated, risks are accounted for, and exceptions are tracked in accordance with frameworks, policies, and standards set by the organization.
4. Evaluates ongoing business development for issues and opportunities to reduce overall risk exposure.
5. Continuously monitors trends to anticipate and plan for future impact of cyber risk on a specific business unit (BU) or function.
6. Establishes risk ownership and accountability within the business line.
7. Acts as a subject matter expert (SME) between cybersecurity and the lines of business in the development of appropriate policies, standards, and frameworks.
8. Develops new key risk indicators and key performance indicators, as necessary, to facilitate effective risk monitoring and reporting.
9. Provides support in creation of quarterly risk profile reviews that are presented to the Board of Directors or Committee of the Board.
10. Educates stakeholders on cyberSecurity Risk-related matters in an effort to increase awareness and improve culture.
11. Contributes to Information Security program standards, utilizing industry best-practice frameworks such as NIST, CIS, PCI-DSS, FFIEC, etc., and ensures compliance with security controls and deficiencies.
12. Facilitates the formal measurement and evaluation of the organization’s cybersecurity maturity, including internal and external assessments.
13. Participates in regulatory assessments and deliverables, including GLBA reporting.
14. Understands and complies with bank policy, laws, regulations, and the bank's BSA/AML Program, as applicable to your job duties. This includes but is not limited to; completing compliance training and adhering to internal procedures and controls; reporting any known violations of compliance policy, laws, or regulations, and reporting any suspicious customer and/or account activity.
TEAM ACCOUNTABILTIES:
- Support and uphold the Arvest Mission Statement.
- Uphold the Arvest Code of Ethics to ensure that confidential information is safeguarded.
- Maintain a high level of cooperation and rapport with all associates in order to ensure accurate and efficient operations and service.
- Formulate and communicate new ideas and suggestions that will improve profitability and efficiency for the company’s overall operation.
- Promote professionalism at all times.
Responsibilities:
QUALIFICATION REQUIREMENTS:
To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable qualified individuals with disabilities to perform the essential functions.
EDUCATION and/or EXPERIENCE:
- Bachelor's Degree in a related field of study or equivalent work experience required.
- 3 years of relevant experience required.
- Advanced certification (CISSP, CISM, or CRISC) preferred.
OTHER SKILLS AND ABILITIES:
- Must be able to arrive at work on time and have regular work attendance.
- Must be able to work cooperatively and cordially with other customers and coworkers regardless of personality, presence, or communication style.
- Must be able to perform several tasks at once.
- Must be able to work in a stressful atmosphere.
- Must be able to rotate job tasks.
- Must be able to coordinate multiple and changing priorities.
- Must be able to occasionally work outside of normal business hours.
- Must be able to move from department, division, or bank to department, division, or bank to attend meetings.
- Must be able to operate personal computer keyboard in order to create reports, schedules and other appropriate documentation.
- Must be able to communicate effectively in both business and technical terms.
- Must be able to communicate in written, oral, and presentation formats that best represent and express user and organizational requirements.
- Must be able to form productive relationships with internal clients by listening, clarifying, and responding effectively.
PHYSICAL DEMANDS:
The physical demands described here are representative of those that must be met by an associate to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable qualified individuals with disabilities to perform the essential functions.
The associate must be able to travel occasionally by themselves within the US, including overnight, and via automobile and air.
WORK ENVIRONMENT:
The work environment characteristics described here are representative of those an associate encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable qualified individuals with disabilities to perform the essential functions.
The noise level in the work environment is usually moderate.
Grade 15
Pay Range: $59440 - $70585 per year
