The Information Security Specialist (ISS) assists the ISO in supporting the Governance, Risk, and Compliance (GRC) component of the Information Security Department. This includes providing input into policies/standards/procedures/guidelines, support for the ongoing maintenance of the Bank’s Cybersecurity Framework, and responding to all IT and InfoSec Audits and Regulatory Exams. This position will also be responsible for assisting the ISO with regular Risk Assessments of the Bank’s IT infrastructure, Information Systems and other processes designed to protect the Bank’s sensitive data.
This position will provide technical support and knowledge for other divisions within the Information Security Department, and implement automated workflows that will assist the enterprise with various reviews, user access tracking and regulatory reporting requirements. Additionally, the ISS will be responsible for supporting the Security Awareness component of the program by conducting regular training and testing for all employees.