Logo
Discover

Cybersecurity Analyst ( Cybersecurity Risk and Control )

Discover, Riverwoods, Illinois, United States,


Discover. A brighter future.

With us, you’ll do meaningful work from Day 1. Our collaborative culture is built on three core behaviors: We Play to Win, We Get Better Every Day & We Succeed Together. And we mean it — we want you to grow and make a difference at one of the world's leading digital banking and payments companies. We value what makes you unique so that you have an opportunity to shine.

Come build your future, while being the reason millions of people find a brighter financial future with Discover.

Job Description:

What You’ll Do

We are looking for a motivated and detail-oriented Cybersecurity Analyst to join our cybersecurity Rick and Control team. The ideal candidate will support senior team members in conducting risk assessments, evaluating security controls, and implementing risk mitigation strategies. This role involves assessing and managing risks, developing, and implementing security controls, and conducting self-identification to ensure compliance with regulatory requirements and best practices.

Ensure disciplined execution of Cyber initiatives and risk remediation efforts.

Actively manages and escalates risk and customer-impacting issues within the day-to-day role to management.

How You’ll Do It

Assist in conducting cybersecurity risk assessments to identify potential threats and vulnerabilities within the organization’s infrastructure and application.

Support the evaluation of security controls to ensure their effectiveness in mitigating identified risks.

Participate in the development and maintenance of risk assessment and control self-assessment documentation.

Collaborate with cross-functional teams to assist in the identification, assessment, and management of cybersecurity risks.

Assist in evaluating the effectiveness of security controls and implementing risk mitigation strategies and controls.

Help in the development of documentation of the processes and procedures following the Cybersecurity policies and standards.

Stay informed about the latest cybersecurity trends, threats, and technologies.

Provide administrative support to the cybersecurity Risk & Control team as needed.

Assist in mapping the organization's cybersecurity standards to the industry frameworks and its applicable controls.

Facilitate the creation and maintenance of risk and control metrics to report on compliance and risk status.

Delivers metrics and performance reporting to enhance real-time risk decisions and initiative prioritization.

Collaborates with cross-functional resources to drive progress toward cyber initiatives or risk remediation deliverables.

Coordinates all exam management requests with program owners.

Collects, reviews, and uploads all artifacts submitted as evidence in advance of requested dates.

Assists in compiling management corrective action plans for risk item closure.

Performs due diligence and validation on identified risk findings.

Minimum Qualifications

At a minimum, here’s what we need from you:

Bachelors – Information Security, Information Technology, Analytics, Business Administration and Management, Project Management

4+ years of experience in Information Security, Information Technology, Business, Analytics, Project Management or related

In liu of education – 6+ years of experience in Information Security, Information Technology, Business, Analytics, Project Management or related

Internal applicants only: technical proficiency rating of Proficient on the Dreyfus Cyber engineering scale.

Physical and Cognitive Requirements

The physical requirements described here are representative of those that must be met by an employee to successfully perform the essential functions of this position. Reasonable accommodations may be made to enable a qualified individual with disabilities to perform the essential functions of the position as required by federal, state, and local laws:

Primarily remain in a stationary position.

Primarily performed indoors in an office setting.

Ability to operate office equipment such as but not limited to computer, telephone, printer, and calculator.

Ability to communicate verbally.; Ability to communicate in written form

Bonus Points If You Have

Relevant Cybersecurity certifications such as CISSP, CISM, CRISC, GIAC or equivalent.

Minimum of 6 years of experience in Cybersecurity Risk Management.

Strong understanding of cybersecurity principles, threats, and vulnerabilities.

In-depth knowledge of risk management frameworks such as NIST CSF, ISO 27001, CRI, and COBIT.

Strong analytical, problem-solving skills and Attention to details.

Excellent communication and interpersonal skills.

Ability to work effectively both independently and as part of a team.

Willingness to learn and adapt in a fast-paced environment.

Knowledge of security controls and their assessment methodologies.

Experience with GRC, and Process Mapping tools.

Ability to work under pressure and manage multiple priorities.

Experience in a similar role within a large enterprise or Financial organization.

External applicants will be required to perform a technical interview.

Discover will not sponsor or transfer employment work visas for this position. Applicants must be currently authorized to work in the United States on a full-time basis.

#LI-GN1

Application Deadline:

The application window for this position is anticipated to close on Nov-12-2024. We encourage you to apply as soon as possible. The posting may be available past this date, but it is not guaranteed.

Compensation:

The base pay for this position generally ranges between $88,500.00 to $149,300.00. Additional incentives may be provided as part of a market competitive total compensation package. Factors, such as but not limited to, geographical location, relevant experience, education, and skill level may impact the pay for this position.

Benefits:

We also offer a range of benefits and programs based on eligibility. These benefits include:

Paid Parental Leave

Paid Time Off

401(k) Plan

Medical, Dental, Vision, & Health Savings Account

STD, Life, LTD and AD&D

Recognition Program

Education Assistance

Commuter Benefits

Family Support Programs

Employee Stock Purchase Plan

Learn more at mydiscoverbenefits.com .

What are you waiting for? Apply today!

All Discover employees place our customers at the very center of our work. To deliver on our promises to our customers, each of us contribute every day to a culture that values compliance and risk management.

Discover is committed to a diverse and inclusive workplace. Discover is an equal opportunity employer and does not discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veteran status, or other legally protected status. (Know Your Rights & Pay Transparency Nondiscrimination Provision) (https://www.dol.gov/agencies/ofccp/posters)

Discover complies with federal, state, and local laws applicable to qualified individuals with disabilities and is committed to providing reasonable accommodations. If you require a reasonable accommodation to search for a position, to complete an application, and/or to participate in an interview, please email HireAccommodation@discover.com . Any information you provide regarding your accommodation needs will be kept confidential and will only be used to determine and provide necessary accommodation.