Lead Cybersecurity Analyst - IHM
Discover. A brighter future.
With us, you’ll do meaningful work from Day 1. Our collaborative culture is built on three core behaviors: We Play to Win, We Get Better Every Day & We Succeed Together. And we mean it — we want you to grow and make a difference at one of the world's leading digital banking and payments companies. We value what makes you unique so that you have an opportunity to shine.
Come build your future, while being the reason millions of people find a brighter financial future with Discover.
Job Description
TITLE: Lead Cybersecurity Analyst
DUTIES: DFS Corporate Services LLC seeks Lead Cybersecurity Analyst in Riverwoods, IL to develop the Cybersecurity roadmap, deliver secure systems, cyber applications, technical projects and regulatory and risk requirements. This includes Cybersecurity framework, program optimization, vulnerability remediation, metrics reporting, performance analysis and mitigation of operational risk in a high velocity culture. Utilize high-level critical thinking to perform duties related to projects, compliance, metrics, assurance, vulnerabilities or threats. Identify and evaluate potential vulnerabilities, and drives the normalization, correlation, and integration of internal and subscription threat intelligence source. Produce actionable intelligence in the form of reports, notifications, alerts, and briefings. Develop mitigation and countermeasure strategies from collected threat intelligence. Recognize security violations and take appropriate action to report each incident, as required. Analyze organization's cyber defense procedures and configurations, and evaluate compliance with regulations and organizational directives. Perform in-depth analysis of security issues and/or vulnerabilities. Ensure compliance to audit, regulatory and legal requirements. Build and maintain effective relationships with peers and internal business partners. Create effective controls to address security concerns. Maintain in-depth knowledge of security trends and threats. Design and develop security solutions and processes consistent with business goals and risk tolerance. Provide subject matter expertise for supported Cybersecurity technologies. Develop metrics and new capabilities to ensure confidentiality, integrity, availability, authentication and non-repudiation. Measure effectiveness of defense-in-depth architecture against known vulnerabilities. Engage in reporting risk remediation assurance and automation/integration initiatives, and collaborate with stakeholders, at all levels, to ensure remediation is validated, risk is mitigated and findings are fully closed/resolved. Promote a risk-aware culture, ensure efficient and effective risk and compliance management practices by adhering to required standards and processes.
REQUIREMENTS: Bachelor’s degree or foreign equivalent in Information Technology, Information Security, Business Administration, Analytics, or a related field and four (4) years of experience in job offered or related occupation: conducting risk assessment, management, and remediation; utilizing ServiceNow and Cyber Risk System for risk management and risk remediation; utilizing software development life cycle and agile methodologies to manage projects; working on risk assessment and risk management using risk qualitative tools; assessing risks within multiple areas and technologies including Operating Systems (Windows, Linux and Vendor Appliances), network (Cisco, Juniper, Noble Dialers, Verint), firewall, insecure protocols, and sensitive data security using policies and standards; processing potential security exceptions and/or risk acceptances against established security policies and standards; documenting risk assessments in Archer enterprise governance, risk and complaince tool for review by external regulators and auditors; managing and reporting security Key Performance Indicators (KPIs) and Key Risk Indicators (KRIs) with stakeholders, and where necessary presenting to various Security Risk Committees; performing in-depth analysis of security issues and vulnerabilities (WhiteHat, Veracode, Qualys) to ensure compliance to audit, regulatory and legal requirements; designing and developing metrics, reports and new capabilities to ensure confidentiality, integrity, availability, authentication and non-repudiation; utilizing ServiceNow built-in Dashboards and MS Office tools; developing and maintaining pertinent doucmentation on Cyber Functions, using Microsoft’s Teams and SharePoint
QUALIFIED APPLICANTS: Please apply directly through our website by clicking on “Apply Now.” No calls. Equal Opportunity Employer/disability/vet.
What are you waiting for? Apply today!
The same way we treat our employees is how we treat all applicants – with respect. Discover Financial Services is an equal opportunity employer (EEO is the law). We thrive on diversity & inclusion. You will be treated fairly throughout our recruiting process and without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status in consideration for a career at Discover.