Apply on Employer Site

USAA · 4 hours ago

Information Security Analyst I - Cloud Security

Charlotte, NC - CENTS

Full-time

Onsite

Entry Level

$85K/yr - $163K/yr

4+ years exp

USAA is dedicated to empowering its members to achieve financial security through exceptional service and trusted advice. They are seeking an Information Security Analyst I - Cloud Security to safeguard the organization by managing risks and compliance controls related to cloud security and customer identity. The role involves collaborating with various teams to assess and document risks, implement compliance policies, and contribute to the security of USAA's information assets.

BankingFinancial ServicesInsuranceVenture Capital

No H1B

Responsibilities

Partners with key team members in the business to identify, assess, aggregate and document risk and compliance controls, including risks associated with new or modified products, services, distribution channels, regulations, and third-party operations

Communicates results of risk and compliance work to governance committees, business process owners and various levels of leadership

Contributes to the implementation of new risk and compliance policies, practices, appetites, and solutions to ensure multidisciplinary understanding and management of risks according to industry standard process

Implements assigned risk or compliance activities in accordance with enterprise policies and procedures

Maintains and expands knowledge of the competitive/regulatory landscape and the company's key challenges. Reviews laws and regulations for business impact and makes proposals for awareness and action

May coordinate and respond to regulatory requirements and requests and ensures the execution of examinations

Performs work on risk and compliance processes that focus on improving strategies, tools, and methodologies to measure, monitor, and report risks

Applies knowledge to assess data and produce analytical insights to understand business objectives, drive business decisions and influence solution strategies

Actively contributes in cross-functional teams to identify, assess, aggregate, and mitigate current and emerging risk events

Contributes to stress test plans for a line of business or the enterprise including the evaluation of results and framing of contingency plans in partnership with key business partners

Qualification

Customer IdentityAccess ManagementFraud PreventionInformation Security Risk ManagementAuthentication MethodsAccess Compliance RegulationsSecurity TechnologiesData Analysis ToolsRegulatory Compliance KnowledgeIndustry CertificationsProactive LearnerCyber Threat OperationsSecurity Platform KnowledgeCritical ThinkingOrganizational SkillsCommunication SkillsAdaptabilityCollaboration

Required

Bachelor's degree or 4 additional years of related experience beyond the minimum required may be substituted in lieu of a degree

4 years relevant experience in risk, compliance, legal or audit within the financial services or insurance industry or specialized technical fields directly related to the role

Risk and/or compliance experience in a highly matrixed environment

Knowledge of compliance laws, regulations, and regulatory expectations

Ability to apply regulatory risk and compliance knowledge to consult and provide guidance

Ability to challenge in business or team settings

Ability to work with internal and external partners in a highly collaborative environment

Critical thinking and knowledge of data analysis tools and techniques and decision-making abilities to recommend data-driven solutions

Proactively identifies potential concerns and recommends solutions

Advanced proficiency with Microsoft Office products including Word, Excel, and PowerPoint

Preferred

Regulatory Expertise: Minimum of 2 years' experience in relevant regulatory compliance, understanding industry regulations and data sources from agencies like the OCC, Federal Reserve, and CFPB

Cyber Threat Operations Experience: Hands-on experience in cyber threat operations, encompassing monitoring and response, cyber intelligence, Red Teaming, threat detection, and/or hunting

Data Analysis & Reporting: Ability to research, analyze large datasets, and synthesize findings into clear, actionable outcomes for assessments and reports

Industry Certifications: Possess a relevant risk and compliance industry certification or designation (e.g., CISSP, CISM, CRISC, CISA, CFE)

Adaptability: Success in highly dynamic and frequently changing environments

Strong Soft Skills: Excellent critical thinking, organizational, and communication skills, with a talent for cross-functional and collaborative work

Proactive Learner: A self-starter capable of self-directed learning and acquiring new skills through hands-on experience

Security Platform Knowledge: Familiarity with key security platforms such as Splunk, Tanium, Qualys, CyberArk, Okta, Azure Active Directory, and SailPoint

US military experience through military service or a military spouse/domestic partner