Sr Info Sec Risk Analyst, Marlboro or Chelmsford, Full-Time, Hybrid

Schedule

Monday-Friday 8-5 (40 hours) Hybrid

What You’ll Do

Summary/Objective:
The Information Security Risk Analyst will support overseeing the confidentiality, integrity, and availability as it relates to the credit union’s process, procedures, and systems. Working with departments across the credit union to ensure security best practices in existing and current processes and configurations throughout the organization.

Essential Functions:
Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
• Manage and drive results within the Information Security Awareness Program to include training opportunities, managing human risk, hosting events, and tracking program’s efficiency.
• Assess the top human risks to the organization and develop strategies to mitigate these risks.
• Develop engaging and informative content to promote secure behaviors both at work and at home.
• Create and maintain programs that educate employees about security policies, procedures, and best practices.
• Collaborate with DCU (Digital Federal Credit Union) staff and management in ensuring that all departments have fulfilled their information security responsibilities.
• Support and drive results with the Information Security Risk Team Lead in developing and performing Governance, Risk and Compliance deliverables.
• Complete daily operational tasks relating to the security program including but not limited to compliance, Data Loss, Phishing, and weekly support activities.
• Gather and prepare monthly information security metric reports for management.
• Maintain up-to-date knowledge of the IT security industry, including awareness of security controls, improved security processes, and the development of new attacks and threat vectors.
• Participate in periodic risk assessments, tabletop, business continuity and disaster recovery exercises.
• Perform other job-related duties as assigned or requested.
• Complies with regulatory compliance and assigned training requirements.

What You’ll Need

• Bachelor's degree and/or related work experience commensurate to 5-7 years’ experience.
• Experience with risk management, compliance, security software, tools, and equipment.
• 3+ years of experience in Information Security and knowledge of regulatory requirements in the financial institution environment.
• Cloud Security experience, including Amazon AWS and Microsoft Azure
• Industry certifications such as CRISC, CISA, CISSP

What We Do

DCU is the largest credit union headquartered in New England – serving more than one million members in all 50 states. With over 1,900 team members, we strive to make DCU a great place to work with an excellent work-life balance, and a community that cares.

DCU is an equal opportunity employer, and we value diversity, inclusion, and equity at our company. We evaluate qualified applicants without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran status, and other legally protected characteristics. 

If you’re applying for a job and need a reasonable accommodation for any part of the employment process, please send an email to careers@dcu.org and let us know the nature of your request and contact information. Please note that only those inquiries concerning a request for reasonable accommodation will be responded to from this email address.

DCU is not currently offering Visa transfer/ sponsorship for this position.