What are the responsibilities and job description for the Information Security Analyst position at CFG Bank?
Company Summary
We provide comprehensive commercial, personal, and online banking solutions to businesses in the Mid-Atlantic region and the national healthcare market. Our culture is characterized by authenticity, entrepreneurship, and compassion. We defy conventional banking norms with a bold and innovative approach, venturing into new territories and executing groundbreaking deals. Recognized as the Best Place to Work by the Baltimore Business Journal in both 2022, 2023, and 2024, our #1 goal is to make people feel that working here was the best decision they have made. Join us at CFG, where your bold, entrepreneurial, and tenacious spirit will thrive, and together we will achieve success and make a lasting impact.
Position Summary
The Information Security Analyst plays a pivotal role in supporting the Information Security Officer in managing CFG’s information security environment. This involves supervising the Information Security Program and actively participating in other aspects of Third-Party Risk Management as needed.. The Analyst will be responsible for ensuring compliance with policies, regulations, and industry standards while conducting risk assessments and providing input for policy development. Collaboration with internal and external stakeholders is essential to maintain a robust and secure information security posture.
Essential Duties And Responsibilities
Information Security Program (ISP):
CFG Bank is an Equal Opportunity Employer. We provide equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, veteran status, or any other legally protected characteristic. We are committed to ensuring a diverse and inclusive workplace, and all employment decisions are based on merit, qualifications, and business needs. If you require accommodations during the application process, please contact Human Resources.
We provide comprehensive commercial, personal, and online banking solutions to businesses in the Mid-Atlantic region and the national healthcare market. Our culture is characterized by authenticity, entrepreneurship, and compassion. We defy conventional banking norms with a bold and innovative approach, venturing into new territories and executing groundbreaking deals. Recognized as the Best Place to Work by the Baltimore Business Journal in both 2022, 2023, and 2024, our #1 goal is to make people feel that working here was the best decision they have made. Join us at CFG, where your bold, entrepreneurial, and tenacious spirit will thrive, and together we will achieve success and make a lasting impact.
Position Summary
The Information Security Analyst plays a pivotal role in supporting the Information Security Officer in managing CFG’s information security environment. This involves supervising the Information Security Program and actively participating in other aspects of Third-Party Risk Management as needed.. The Analyst will be responsible for ensuring compliance with policies, regulations, and industry standards while conducting risk assessments and providing input for policy development. Collaboration with internal and external stakeholders is essential to maintain a robust and secure information security posture.
Essential Duties And Responsibilities
Information Security Program (ISP):
- Promoting information security awareness across business units.
- Maintaining information security policies and procedures.
- Reviewing and recording audit logs, events, reports, and alerts.
- Monitoring and reporting on patch and vulnerability management programs.
- Identifying areas of non-compliance or vulnerability and offering recommendations for remediation.
- Participating in systems and controls reviews and risk assessments.
- Overseeing the social engineering awareness program, including email message reviews, training deployment, and integration of best practices.
- Collecting required due diligence documentation for in-scope TPRM relationships.
- Ensuring oversight aligns with policy and review timelines.
- Managing TPRM oversight for Vendor Managers/Product Owners.
- Conducting TPRM risk assessments in line with policy and regulations.
- Overseeing the entire TPRM lifecycle.
- Contributing to TPRM policy and procedure development.
- Proactively addressing 3rd and 4th party risk.
- Leveraging TPRM program resources for effective scrutiny of third-party relationships.
- Ensuring program compliance with policy and regulatory guidance.
- Identifying and ensuring compliance of new and existing CFG third parties.
- Providing regular progress reports.
- Bachelor's degree in information technology or related field, or equivalent relevant work experience.
- 3-5 years’ relevant information security experience, preferably in a Financial Institution.
- Information security related certifications (desirable).
- Proficiency in interpreting and applying policies, standards, and procedures.
- Strong work ethic and ability to achieve individual results within a team environment.
- Excellent written and verbal communication skills; ability to collaborate, influence, and build relationships.
- Ability to work independently, meet deadlines, and manage multiple initiatives efficiently.
- Proficiency with Microsoft Office suite.
CFG Bank is an Equal Opportunity Employer. We provide equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, veteran status, or any other legally protected characteristic. We are committed to ensuring a diverse and inclusive workplace, and all employment decisions are based on merit, qualifications, and business needs. If you require accommodations during the application process, please contact Human Resources.
Salary : $82,400 - $104,000
Information Security Analyst
VirtualVocations -
Baltimore, MD
Information Security Analyst
ManTech -
Belcamp, MD
Information Security Analyst
Systems Technologies (Systek) -
Meade, MD
