IT Risk Analyst I - Salary commensurate with experience
You can apply for this position by sending your resume by fax to (720) 264-1902, Attention: Human Resources, or by e-mail:
humanresources@cobizfinancial.comThis position participates in the development and maintenance of information technology risk management, specifically within the ILM (Identity Lifecycle Management) process. The individual will be responsible for following processes and procedures related to provisioning access to systems and applications in the enterprise.
Essential Functions:
• Follows processes and procedures to assist in management of the enterprise identity management infrastructure
• Follows processes and procedures to assist in auditing user account’s and access systems across multiple platforms.
• Follows processes and procedures to assist in implementation of workflows and integration of manual systems into an identity management system.
• Assists in identifying and evaluating business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement.
• Regularly monitors system and application logs for security events.
• Exercises awareness in regard to possible suspicious activity, money laundering or fraudulent behavior and reports any such incidents to the BSA Department and/or Internal Audit Director as appropriate.
• Performs job functions in compliance with all company policies and federal/state rules and regulations as applicable to the position.
Other Functions:
• Assists with encryption management and PKI processes/procedures.
• Provides escalation support for other department support teams when necessary
• Assists with creating regular reports from information security and risk management information.
• Creates and maintains policies and standard operating procedures (SOP).
• Provides on-call support for information security issues.
• Aids in end user training.
• Other duties as assigned.
Direct Reports: 0 Indirect Reports: 0
Job Qualifications:
Knowledge, Skill and Ability:
• Working knowledge of identity and access management processes and systems.
• Working knowledge of Microsoft Active directory topology specific to user and resource management.
• Working knowledge of event logging/management systems.
• Working knowledge of intrusion/detection prevention systems (IPS/IDS).
• Ability to effectively communicate verbally and in writing with personnel at all levels within the organization.
• Ability to prioritize work and handle multiple tasks, both long and short term, simultaneously in a fast paced, diverse and growth-oriented environment.
• Ability to maintain a high level of confidentiality.
• Ability to work under tight deadlines within multiple projects.
• Ability to work flexible hours in a rotating on-call shift environment.
Education or Formal Training:
• Bachelor degree in Computer Science, Information Systems, or equivalent work experience; Advanced Microsoft, Network, Information Security training, or identity management vendor-specific training.
• Certifications (preferred): CISSP, CISA/CISM, GSEC, MCP
Experience:
• Minimum four years experience in an IT environment supporting information security and/or risk management processes.
Working Environment / Physical Requirements/Activities:
General office environment; therefore, must have the ability to operate Bank office machines/equipment with hands and the ability to use and type on computer keyboard. Must also have the physical ability to use the telephone. Must understand questions/concerns raised by parties involved, in person and over the telephone. Must be able to read job-related documents. Must have the physical ability to stoop, bend and lift, push, pull or carry up to forty pounds up to five times per day. Must have the ability to transport self to outlying locations, including limited overnight travel.