Loading...
Share this Job

Information Security Specialist

Date: Nov 16, 2020

Location: Charleston, WV, US, 25301 Parkersburg, WV, US, 26101 Charles Town, WV, US, 25414

Company: United Bank

Job Description

The Information Security Specialist (ISS) collaborates with the GRC Manager in supporting the Governance, Risk, and Compliance (GRC) component of the Information Security Department.   This includes providing input into policies/standards/procedures/guidelines, support for the ongoing maintenance of the Bank’s Cybersecurity Framework/Profile, and responding to all IT and InfoSec Audits and Regulatory Exams.  This position will also be responsible for working with the GRC Manager and Chief Information Security Officer (CISO) with regular Risk Assessments and Control Validations of the Bank’s IT infrastructure, Information Systems and other processes designed to protect the Bank’s sensitive data.  

This position will provide technical support and knowledge for other divisions within the Information Security Department, and implement automated workflows that will assist the enterprise with various reviews, user access tracking and regulatory reporting requirements. Additionally, the ISS will be responsible for supporting the Security Awareness component of the program by conducting regular training and testing for all employees.

RESPONSIBILITIES:

  • Collaborate the GRC Manager and CISO in the review and preparation of IT/InfoSec Risk Assessments, implementation and maintenance of the Cybersecurity Framework/Profile, validation of controls used to reduce/mitigate risk and security incidents,
  • Work with GRC Manager in the development of various policies/standards/procedures and guidelines,  administrate/manage the company’s Policy software, and provide reporting for employee acknowledgment of those policies/standards/procedures that are related to IT/InfoSec.
  • Maintain up-to-date knowledge of legal and regulatory considerations, including awareness of new or revised laws and regulations related to the privacy and security of sensitive information.
  • Maintain up-to-date knowledge of the IT security industry, including awareness of new or revised security solutions and improved security processes.
  • Utilize various software applications to produce report metrics, monitor activity, and analyze data.
  • Develop and maintain spreadsheets and/or databases and provide technical support/administration for applications specific to the Information Security Department.
  • Work with the GRC Manager, CISO and other business lines to create and maintain automated workflows to create efficiency, reduce errors and provide detailed audit logs for various processes related to the Information Security.
  • In collaborate with the GRC Manager with Internal and External Audits or Examinations pertaining to Information Security; providing the necessary evidence documentation in a timely manner, completing responses to findings/exceptions, and developing action plans to correct findings/exceptions.
  • Maintain the Information Security department’s training platform to enhance the security awareness of all employees by scheduling new-hire and annual security awareness training modules, tracking course completion, and performing necessary follow up with employees and supervisors when deadlines are not met.
  • Develop phishing test emails and schedule monthly phishing tests for all employees, periodic phishing tests for “at risk” departments, and refresher training for those employees that fail phishing tests.
  • Provide on-going coaching and training to employees to build knowledge on a variety of Information Security topics including but not limited to: social engineering, access management, privacy program, incident response, cybersecurity, policies and procedures.
  • Participate in quarterly branch penetration tests.
  • Work on various other projects as assigned.
Qualifications
  • High School diploma or equivalent required, College degree in computer science (or related field) highly desired
  • Minimum of three (3) years of prior Banking, Information Security Technical or Risk Management experience required.
  • CHSP/HIPAA certification or ability to achieve within first year in the position required. 
  • Prior experience in Corporate Training and/or Auditing highly desired.
  • Working technical knowledge of current protocols, operating systems, security configurations and industry standards required.
  • Proficiency in Microsoft Office Products (Word, Excel, PowerPoint, etc.) and enhanced security features/functions within Office365 required
  • Excellent written and verbal communication skills required.
  • Ability to quickly learn new software applications required.
  • Ability to multi-task and work within tight time constraints required.
  • Ability to train others and provide supervisory support required.

 

KEY COMPETENCIES:

  • Analytical
  • Flexibility
  • Detail Oriented
  • Self-Directed
  • Troubleshoot and Solution Oriented

 

ESSENTIAL FUNCTIONS:  

  • Sitting for extended periods of time.
  • Sufficient dexterity of hands and fingers to efficiently operate a computer keyboard, mouse and other computer components.
  • Ability to converse and exchange information with all levels of staff within organization.
  • Ability to observe, perceive, identify, and translate data.
  • Ability to comprehend/interpret written and verbal instruction.
     
Company Profile
With over 180 years of experience, United Bank is one of the region’s premier banks with locations in West Virginia, Virginia, Washington, DC, Maryland, Ohio, and Pennsylvania. A subsidiary of United Bankshares, Inc., with dual headquarters in Washington, DC and Charleston, WV, we are a full service financial institution with nearly $20 billion in assets.
 
At United Bank, our people are our greatest asset. Our company is a perfect fit for hard-working, driven individuals as we provide a culture that is entrepreneurial, efficient, relationship-based and service-oriented. United is proud of our record of growth and our commitment to service - not only to our customers, but also to the communities in which we live and work.
 
United encourages our employees to become involved in the community and in professional activities, and we provide continued training and other support to help all employees achieve their full potential.


Nearest Major Market: Charleston West Virginia

Job Segment: Information Security, Bank, Banking, Law, Risk Management, Technology, Finance, Legal