Security Analyst – Cyber Risk Management

Full Time Saint Louis, MO Edward Jones

Innovate here. And see your ideas come to life.

It’s an exciting time to work in tech at Edward Jones. We are making massive investments in emerging technologies to improve how we work with our clients and with each other. Relationships are the focus of our business model. And working in Technology here means using your skills to build, deliver and maintain the technologies that enable us to deepen and support those relationships. The best part? We develop and create our own industry-leading solutions internally. And you can be a part of it. Working with emerging new technologies. Creating platforms, programs and experiences that change how we work together – and support our client-first focus. Changing the future of our firm, the industry and the advisor-client relationship.

Job Overview

Position Schedule: Full-Time

Team Overview
The Information Systems Cyber Risk Management Team is responsible for establishing and maintaining Edward Jones overall IS risk management program, which is designed to ensure that the company’s IS systems and information assets are adequately protected. The person in this position is responsible for identifying, evaluating and reporting on information security risks in a manner that meets Edward Jones regulatory and other compliance requirements. The Information Systems Cyber Risk Management Team Leader works proactively with IS and business leaders to implement practices that meet Edward Jones defined policies and standards for information risk management.

What You’ll Do:

  • Establish, maintain and review security controls and processes to assist management in the protection of information system resources and associated assets against accidental or unauthorized modification, destruction or disclosure.
  • Understand and ensure compliance with published Information Security policies, control frameworks, and standards.
  • Provide security services that align with business goals and regulatory requirements.
  • Audit of information systems with respect to third party assessments of security controls.
  • Evaluate existing systems to ensure compliance with standards and policies.
  • Develop critical security measures and controls for leadership review.
  • Investigate, document, and escalate security issues to the appropriate people.
  • Create and maintain documentation for security control mechanisms and processes.
  • Provide security input into low to medium complexity development efforts.
  • Support the Chief Privacy Officer, the Chief Information Security Officer, and IS Division Privacy Leader. Will be helping to accomplish their responsibilities as outlined in Information Security Policies, Privacy Standard, and Privacy and related Written Supervisory Procedures.
  • Support IS Security Leaders efforts to manage and enhance the firm’s control environment.
  • Facilitate quarterly ISGC controls reviews supporting SOX Confirmation.
  • Coordinate periodic review and update of policies, standards, and control documentation.
  • Participate in audit meetings, respond to audit requests, provide input on responses to audit observations, and ensure status is provided on open observations.
  • Ensure timely and accurate response to regulatory inquiries regarding firm cybersecurity controls.
  • As requested, prepare timely reporting/metrics relating to firm cyber security controls.
  • Communicate and work closely with subject matter experts/leaders across the firm on controls documentation, observations/vulnerabilities, and regulatory requests.

Edward Jones’ compensation and benefits package includes medical and prescription drug, dental, vision, voluntary benefits (such as accident, hospital indemnity, and critical illness), short- and long-term disability, basic life, and basic AD&D coverage. Short- and long-term disability, basic life, and basic AD&D coverage are provided at no cost to associates. Edward Jones offers a 401k retirement plan, and tax-advantaged accounts: health savings account, and flexible spending account. Edward Jones observes ten paid holidays and provides 15 days of vacation for new associates beginning on January 1 of each year, as well as sick time, personal days, and a paid day for volunteerism. Associates may be eligible for bonuses and profit sharing. All associates are eligible for the firm’s Employee Assistance Program.

Hiring Minimum: $61600
Hiring Maximum: $101600

Read More About Job Overview

Skills/Requirements

What Experience You’ll Need:

  • Bachelor’s degree in Information Technology or Cybersecurity preferred or equivalent related work experience.
  • Minimum of 2 years Information Systems Security, Internal Audit, or Financial Industry experience; or 2 years of Information Technology experience with a focus on security controls and processes.
  • Cybersecurity, IT, Information, and Data Risk Management
  • Risk Identification and Risk Assessment
  • Risk Analytics
  • Technical Reporting
  • Required understanding of risk management methods.
  • Understanding of the NIST Cyber Security Framework and policies designed to implement and assess controls following NIST guidance.
  • Process oriented; skilled in establishing and executing plans.
  • Excellent interpersonal skills. Develops relationships; seen as trusted and trustworthy.
  • Must be able to effectively communicate to businesses, vendors, associates, and leaders.

Read More About Skills/Requirements

Awards & Accolades

At Edward Jones, we are building a place where everyone feels like they belong. We’re proud of our associates’ contributions to the firm and the recognitions we have received.

About Us

Join a financial services firm where your contributions are valued. Edward Jones is a Fortune 500¹ company where people come first. With over 9 million clients and 20,000 financial advisors across the U.S. and Canada, we’re proud to be privately-owned, placing the focus on our clients rather than shareholder returns.

Behind everything we do is our purpose: We partner for positive impact to improve the lives of our clients and colleagues, and together, better our communities and society. We are an innovative, flexible, and inclusive organization that attracts, develops, and inspires performance excellence and a sense of belonging.

People are at the center of our partnership. Edward Jones associates are seen, heard, respected, and supported. This is what we believe makes us the best place to start or build your career.

View our Purpose, Inclusion and Citizenship Report.

¹Fortune 500, published June 2024, data as of December 2023. Compensation provided for using, not obtaining, the rating.

Edward Jones does not discriminate on the basis of race, color, gender, religion, national origin, age, disability, sexual orientation, pregnancy, veteran status, genetic information or any other basis prohibited by applicable law.

#LI-HO

To apply for this job please visit itjobpro.com.

Share it: Facebook Twitter Google Plus LinkedIn Email