FreshRemote.Work

CDC Governance Enablement Sr Analyst

For Those Who Work At Home, OH

Location:

For Those Who Work At Home - Various, Ohio 44144

The Cyber Defense Center (CDC) provides monitoring, detection, protection, and analysis of Key’s enterprise information systems and network assets (e.g., web sites, applications, databases, networks, servers, and endpoints) by rapidly recognizing and responding to suspicious events and security incidents.  Through an impressive array of cybersecurity-relevant data sources, the CDC proactively and iteratively examines Key’s network infrastructure to identify the potential existence of threats designed to evade current security controls.  This team consists of the following teams:

  • Security Operations Center
  • Cyber Threat Management
  • Vulnerability Management
  • Application Security
  • Incident Management

Job Responsibilities:
  • Compliance Monitoring: Ensure adherence to policies and standards by tracking and enabling the execution of control procedures. Facilitate the creation, maintenance, and retirement of control procedures for assigned Information Security teams to ensure that compliance is monitored for all applicable requirements.
  • Metrics and Reporting: Facilitate the creation, maintenance, and retirement of metrics for assigned Information Security teams to ensure that management has appropriate visibility into cybersecurity risk and the health of Key’s security program.  Collaborate with control owners to ensure metrics stay within desired thresholds.
  • Compliance Enablement: For assigned Information Security teams, track and coordinate as necessary, completion of action items related to remediation of findings, and variances against standards. Monitor the completion of action items for risk governance programs such as Third-Party Management for the same Information Security Teams.
  • Standards and Procedures Development: Assist in the development and refinement of standards and standard operating procedures for security controls and processes.
  • Technical Writing: Create or refine documentation to describe and effectively communicate information regarding security controls, processes and tools that can be shared with internal stakeholders and external auditors/examiners.
  • Audit/Exam Support: Build knowledge about the processes and capabilities within assigned Information Security teams and support those teams to effectively respond to information requests for internal, external, and regulatory reviews, audits, and examinations. Works closely with the Security Governance, Operational Risk, and Risk Review Group teams to communicate responses to the information requestors.
  • Continuous Improvement: Identify opportunities for process improvements and enhancements to information security governance practices.
  • Change Management: Collaborate with security teams to facilitate the adoption of security governance initiatives and continuous improvement efforts.  Ensure that changes are effectively communicated, understood, and implemented.

Job Qualifications

  • 3-5 years of experience in security governance, technical writing, or continuous improvement role.
  • Bachelor’s degree in computer science, information security or related field; or equivalent work experience or certification.
  • Experience in driving continuous improvement initiatives and managing change in complex environments.
  • Excellent communication and interpersonal skills, with the ability to effectively build relationships and influence stakeholders at all levels of the organization.
  • Strong analytical and problem-solving skills with the ability to identify root causes and develop practical solutions.
  • Ability to work independently and manage multiple priorities in a fast-paced environment.
  • Prefer candidates who have experience with engaging with auditors/examiners.

COMPENSATION AND BENEFITS

This position is eligible to earn a base salary in the range of $92,000 to $150,000 annually depending on location and job-related factors such as level of experience. Compensation for this role also includes eligibility for short-term incentive compensation and deferred incentive compensation subject to individual and company performance.

Please click here for a list of benefits for which this position is eligible.

Key has implemented a role-based Mobile by Design approach to our employee workspaces, dedicating space to those whose roles require specific workspaces, while providing flexible options for roles which are less dependent on assigned workspaces and can be performed effectively in a mobile environment. As a result, this role may be Mobile or Home-based, which means you may work primarily either at a home office or in a Key facility to perform your job duties.

Job Posting Expiration Date: 12/10/2024

KeyCorp is an Equal Opportunity and Affirmative Action Employer committed to building a diverse, equitable and inclusive culture. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status or other protected category.

 

Qualified individuals with disabilities or disabled veterans who are unable or limited in their ability to apply on this site may request reasonable accommodations by emailing HR_Compliance@keybank.com.


#LI-Remote

Apply