Senior Information Security Analyst

About The Position

Requirements

• Proven ability in information security principles, processes, tools, and the latest industry awareness and current knowledge.
• Strong knowledge of NIST (800-53, CSF) and other information security frameworks.
• Understanding of financial services regulatory environment
• Experience with formal risk management.
• Excellent analytical skills, logical thinking, and diagramming capability.
• Strong and confident interpersonal and customer service skills; ability to interface with personnel from various departments and levels, both technical and non-technical.
• Excellent organizational skills. Ability to prioritize multiple tasks and meet deadlines. Attention to detail and commitment to excellence.
• Experience working in an ITIL-focused support organization with incident/request tickets.
• Ability to work flexible schedules, including availability outside of normal working hours.
• Required: Bachelor’s degree in information technology, Computer Science, or equivalent combination of cybersecurity certifications and experience.
• Required: 6+ years of experience in information security.

Nice To Haves

• Knowledge of data privacy regulations is preferred.
• Certifications: CISSP, CISM, CISA, or similar are strongly preferred.
• Experience using industry-standard event logging platforms.
• Solid understanding of information security tools and best practices.
• Proficient with Windows 365.

Responsibilities

• Develop, maintain, and enforce information security policies, standards, and guidelines.
• Ensure security practices align with regulatory requirements and industry best practices.
• Work with IT, legal, compliance, and business units to integrate security measures into all aspects of the organization’s operations.
• Provide guidance on security practices and assist in awareness training.
• Identify, assess, and mitigate security risks. Develop remediation plans to address identified risks.
• Maintain in-depth knowledge of regulatory compliance requirements, such as FINRA, SEC, PCI-DSS, and applicable laws.
• Assist in audits and ensure compliance with relevant regulations.
• Evaluate, recommend, and implement security technologies and solutions to enhance the security posture. Provide strategic input on the selection and deployment of security tools and technologies.
• Stay current on the latest cybersecurity threats, trends, and technologies. Continuously evaluate the threat landscape and recommend improvements.
• Gather and analyze information security KPIs.

Benefits

• At Stifel we offer an entrepreneurial environment, comprehensive benefits package to include health, dental and vision care, 401k, wellness initiatives, life insurance, and paid time off.