Security Specialist Sr - Policy & Controls Governance
Home Location-MA (MAH01)
In collaboration with other members of the Security Policy and Compliance team, this role is responsible for identifying gaps and opportunities to mature the cybersecurity program through the management of a cybersecurity maturity framework like the CRI FS Profile (2.0).
Expert Experience needed with all of the following:
- Knowledge sharing with the lines of business and other security partners on ensuring gaps are remediated, and risks are mitigated as appropriate per the organization’s risk appetite.
- Collaborate with key stakeholders inside Enterprise Information Security as well as CIO and CTO organizations to ensure technical security controls are enabled as part of a risk mitigation strategy
- Provide support of internal audits and regulatory exams across the Security portfolio, providing guidance, oversight and coordination as needed. Responsible for coordinating audit and exam support services including contributing to narrative and artifact generation and cataloguing.
- Keep up to date with the regulatory landscape, partnering with internal legal and regulatory intelligence services, and strategic security partnerships.
- Help to influence the financial services sector’s adoption of standards, frameworks and guidance
- Knowledge of the following framework(s) (ISO 27001, NIST 800-53, CRI, COBIT, PCI)
- Must have excellent time management skills and possess the ability to pivot workload on a moments notice
- Must enjoy working in a team and collaborative environment with little supervision
- Experience in the banking/financial industry is a plus
- Certifications pertaining to the position such as CISA, CRISC, CGEIT, CIPT, CIPP, CISSP, CTPRP, is a plusJob Description
- Provides technical evaluation and analysis in a specific Security area. Supports activities, process, and tools needed to improve overall security posture of the organization. Primary responsibilities do not include Architect or Engineering responsibilities. Provides subject matter expertise.
- Applies security concepts, reviews information, …
This job isn't fresh anymore!
Search Fresh JobsJob Profile
May not be available in all geographic locations Not available in all geographic locations Position may not be available in all geographic locations Remote position This position may not be available in all geographic locations Work may be performed from a quiet, confidential space in a home location, approved by PNC
Benefits/PerksCollaborative environment Dental and vision options Dependent care reimbursement Disability protection Educational Assistance Health savings account Incentive eligible Inclusive workplace Inclusive workplace culture Life Insurance Opportunity for contribution Pension Remote position Remote work Stock purchase plans Vision options Wellness program
Tasks- Collaborate with stakeholders
- Conduct security assessments
- Development
- Develop security policies
- Documentation
- Mitigate risks
- Problem solving
- Risk Management
Access Control Analysis Analytical Analytical thinking Architecture Audit Support Banking Business decisions Business Needs Business Objectives COBIT Collaboration Compliance CRI Customer Needs Customer solutions Cybersecurity Data Loss Prevention Data Security Disaster Recovery Documentation Effective Communications Enterprise Risk Management Financial Services Governance Implementation Information Assurance Information security Internal Audits ISO 27001 IT Environment IT standards Management Network security NIST 800-53 Operations Organization PCI Physical security Planning Policy Development Procedures & policies Regulatory Risk assessments Risk Management Risk mitigation Security Security assessments Security Technologies Service Software Time Management
Experience5 years
Education CertificationsCGEIT CIPP CIPT CISA CISSP CRISC CTPRP
TimezonesAmerica/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9