IT Compliance & Information Security Analyst
About The Position
Stefanini Group is hiring! Stefanini is looking for an IT Compliance & Information Security Analyst, Dearborn, MI (Onsite) For quick apply, please reach out Fardeen Ali at 248-582-6473/ [email protected] IT Compliance and Information Security Analyst provides oversight of IT compliance and regulatory requirements, IT Security and controls, supports the application teams. You will ensure applications/digital infrastructure remains secure, resilient, and compliant with regulatory standards, plays a key role in Second Line of Defense, supporting IT assessments, and remediate gaps. You will also provide support for internal and external audit activities while working closely with business partners to identify, assess, and manage IT related risks.
Requirements
- 7+ years of experience in relevant field.
- 5+ years of progressive experience in information security, IT risk, Compliance, Audit within a financial services or regulated environment.
- 2+ years of IT Auditor experience.
- Strong knowledge of Industry standard IT Controls and best security practices.
- Solid understanding of corporate policies (Information Security Policy, Finance Manual, Corporate Directives, etc.)
- Understand risk and implement mitigating controls.
- Knowledge of risk management principles, including risk assessment, mitigation, and reporting.
- Continuous controls process improvement mentality.
- Drafting and updating security procedures based on evolving threats and trends
- Capable and comfortable working autonomously
Nice To Haves
- Understanding of Large Language Models (LLMs) and identify opportunities to integrate AI into the compliance lifecycle.
- Experience within the Financial Services sector is highly desirable to navigate the complex regulatory requirements.
- Compliance Professional Industry Certifications a plus (e.g., CISA, CRISC, CISM, CISSP).
Responsibilities
- Partner with Credit Application Teams to Implement and manage IT Controls.
- Provide Security & Control consulting to Application teams.
- Internal Audit and Third-Party Audit Support.
- Support Credit Internal Controls with IT related controls and deficiencies.
- Management of Comments identified by the Audit and application teams (development, implementation, and sustainability of Control Improvement Plans).
- Conduct reviews of identified IT related audit Comments.
- Support Application teams with Detailed Risk Assessments and Threat Modeling.
- Support Vendor Management and Business Owners with due diligence for supplier onboarding.
- Support Credit Privacy and Compliance Attorneys with IT related regulatory requirements.
- Monitor GCP-Security Command Center to maintain visibility into the cloud compliance posture.
- Support Third Party consulting engagements.
- Maintain accurate JIRA User Stories and Backlog.
- Ensure the organization meets specific financial industry standards.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
