Sr. Information Security Risk Analyst

About The Position

Requirements

• You have a Bachelor’s degree in Management Information Systems (MIS), Computer Science or a related discipline OR equivalent work experience.
• You have at least 5 years of experience in information security with a specific focus on information and data governance.
• You have strong knowledge of risk and controls, including working knowledge of standards and frameworks such as COSO, COBIT, ISO, NIST, and ITIL.
• You have the ability to thrive in an environment of change and manage multiple tasks and responsibilities simultaneously.
• You have understanding of and practical experience with information security risk assessments and information security audits.
• Applicants must have legal authority to work in the United States.
• Work Visa sponsorship not available for this position.

Nice To Haves

• You have Information Governance Professional (IGP) and/or Certified Information Professional (CIP) certifications.
• You have experience with Informatica data management platform.
• You have industry recognized certification relevant to information security, such as CISSP, CRISC, SEC+, CISM or applicable certifications/accreditation.
• You have strong understanding of information security regulatory requirements and best practices.
• You have general understanding of banking and financial services processes, and the related risks to securing and managing data.

Responsibilities

• Participate in activities associated with UMB’s information and data governance programs.
• Support the execution of a multi-year roadmap to enhance UMB’s data governance capabilities.
• Drive adherence to data protection policies and standards across the organization by monitoring and evaluating security practices.
• Assist with maintaining UMB’s information governance and data protection related policies and standards.
• Generate metrics and analytical reports on data security controls and practices to evaluate effectiveness.
• Partner with teams across the organization to develop and implement processes to protect sensitive and proprietary data.
• Partner with Information Technology teams to advise and assist with the configuration of data security settings, policies, and controls within systems, applications, and data stores.
• Conduct periodic risk and maturity assessments to evaluate existing controls and practices for design and performance effectiveness.
• Develop and assist with implementing retention, disposition and data minimization processes and practices across the organization.
• Lead special projects and other duties as assigned.

Benefits

• UMB offers competitive and varied benefits to eligible associates , such as Paid Time Off; a 401(k) matching program; annual incentive pay; paid holidays; a comprehensive company sponsored benefit plan including medical, dental, vision, and other insurance coverage; health savings, flexible spending, and dependent care accounts; adoption assistance; an employee assistance program; fitness reimbursement; tuition reimbursement; an associate wellbeing program; an associate emergency fund; and various associate banking benefits.
• Benefit offerings and eligibility requirements vary.