Alliant Credit Union company image
Alliant Credit Union
We set the standard for simple and rewarding digital banking.
Hybrid
View Profile
Jobs//Hybrid//Cybersecurity + IT//

Sr. GRC Security Analyst

Sorry, this job was removed at 1:54 p.m. (CST) on Thursday, June 17, 2021
View 296 Jobs
Find out who's hiring in Chicago.
See all Cybersecurity + IT jobs in Chicago
View 296 Jobs
Apply
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job

Start a Rewarding Career with Alliant

What will your day look like?

You will be responsible for supporting Alliant’s Information Technology and Security (IT/S) Governance, Risk Management, and Compliance initiatives and projects. The incumbent will oversee the business’ IT/S requirements and obligations mandated by regulatory, legal and voluntary requirements. 

 

The Sr. GRC Security Analyst will support requirements of three programs: 1) Governance – ensuring appropriate decision-making structures and processes and managing creation and maintenance of governance documents (e.g. policies, standards, procedures) of Information Technology and Security teams. 2) Risk Management – identify, analyze, and facilitate decision-making and actioning on risks. Ensure alignment with ERM processes and organizational risk appetite. 3) Compliance – identify organizational mandatory and voluntary requirements, translate them into IT/S controls, facilitate implementation of requirements and perform regular control assurance exercises.

Responsibilities

Do you see yourself doing this?

  • Manage and execute projects to ensure design of controls is aligned to compliance/regulatory requirements, including improving existing compliance/regulatory processes and controls.
  • Assist and lead in the execution of compliance programs around Privacy, FFIEC, NCUA, HIPAA, PCI, CIS, NIST CSF SOC 1/2/3, and GLBA.
  • Work closely with control owners and stakeholders to gather required documents and address questions.
  • Perform and lead compliance assessments and data security governance reviews for internal applications and products as well as service providers utilizing established IT risk assessment frameworks and assessment programs.
  • Prepare and present assessment findings to a cross-functional teams such as product, engineering, security, sourcing, legal, and compliance.                 
  • Lead an operating rhythm to report key metrics including status of assessments and issue management.                 
  • Develop IT/S policies, standards, and procedures and work through the process to get them reviewed, approved, and published. Lead training and awareness session to explain the requirements to others.
  • Identify organizational and regulatory requirements and draft IT/S controls required to meet.
  • Participate in other security and audit compliance efforts.
  • Regularly communicate project status, compliance results and issues to control owners, stakeholders and management.
  • Interact with multiple cross functional teams to educate, train and address questions related to process, policies, controls and risk mitigation.
  • Consider and promote continuous improvement in respective processes, controls and compliance certifications.
  • Stay current and utilize industry standards and best practices to drive improvements in overall security posture.
  • Learn, understand, utilize and administer our GRC platform.
  • Support timely remediation of regulatory and audit findings and recommendations.
  • Support vendor due diligence to define third party risk management efforts.
  • Identify strengths and weaknesses in the security program as they relate to privacy, security, business resiliency and compliance frameworks.
  • Maintain strong oversight of third parties, vendors and business partners to safeguard against undue risk presented by external entities. Escalate to security management and business unit leads when points of weakness are discovered.
  • Analyze findings, and document, recommend and report program gaps to security leadership.
  • Monitor current and proposed security changes impacting regulatory, privacy and security industry best practice guidance.

Qualifications

What makes you a great fit?

You’ll be a great fit if in addition to the Completion of a Bachelor’s degree in computer science, information assurance, MIS or related field, or equivalent industry experience, required, and you have:

 

  • 5+ years’ experience in GRC or cybersecurity as a practitioner with at least 2+ years’ exposure with various security frameworks.
  • Strong business acumen and proven ability to align with security practices and compliance responsibilities.
  • Experience and understanding of various regulatory requirements and laws, including but not limited to FFIEC, NCUA, PCI, SOX, HIPAA, GDPR and GLBA. Additional experience in one or more of the following: ISO 27001/2, ITIL or NIST.
  • Exceptional written and verbal communication skills, and proven ability to translate security and risk to all levels of the business.
  • Capacity to understand legacy and progressive technology and security controls along with respective risk.
  • Working knowledge of technologies such as cloud computing, DevOps and application security is required.
  • Up-to-date understanding of a wide-range of incident response, system configuration, vulnerability management and hardening guidelines.
  • Track record of acting with integrity, being inquisitive, adaptable, and communicating effectively.
  • Preferred experience with cloud environments such Amazon Web Services (AWS) and Microsoft Azure.
  • Prior experience with leading GRC systems from vendors such as RSA, MetricStream, IBM and TruOps.
  • Demonstrated problem-solving capabilities, and ability to manage complex local and international security requirements.
  • Self-motivated and well-organized, with the vision to position controls in anticipation of threats.
  • Successful track record of managing external entities’ contracts and relationships, and mitigating risks to business development opportunities.
  • Familiarity with state, federal and international privacy laws.
  • Maintain or is working toward one or more of the following Compliance, Risk Management, or Governance certifications: CRISC, CISM, CGEIT or CISA.

 

When you’re happy, we’re happy!

As a thank you for joining our team, you’ll benefit from:

 

  • Competitive medical, dental, and free vision benefits
  • Competitive compensation plan
  • Contributions towards gym memberships
  • Generous PTO and banking holidays off
See More
Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job
By clicking Apply Now you agree to share your profile information with the hiring company.
Calli Cardillo
Director, Technical Strategy & Portfolio Management
PUTTING PEOPLE FIRST
Propelling product forward through teamwork
Cardillo oversees enterprise execution for digital products at Alliant. To this end, her team has been rapidly growing and building out new processes and changes to products designed to enhance customer experience. She credits her team with being her number one asset in approaching these goals. “Happiness in teams leads to top output,” Cardillo said. To encourage a happy and healthy team environment, they align on individual development plans. Employees are encouraged to join ERGs, explore their strengths and pursue training and certification programs.
Cardillo oversees enterprise execution for digital products at Alliant. To this end, her team has been rapidly growing and building out new processes and changes to products designed to enhance customer experience. She credits her team with being her number one asset in approaching these goals. “Happiness in teams leads to top output,” Cardillo said. To encourage a happy and healthy team environment, they align on individual development plans. Employees are encouraged to join ERGs, explore their strengths and pursue training and certification programs.
I feel genuinely supported by the team I work with. It is so rewarding to celebrate successes as a team when you can directly see and feel the impact from how hard everyone is working.
Crystal Luna
Director, Banking Operations
EMPOWERING EMPLOYEES
Inviting contributors to take the lead
Since joining Alliant in 2006, Luna has experienced the company’s focus on professional development first hand, advancing through several roles into a senior leadership position. “My approach to leadership has always been to take my team along for the ride,” Luna said, noting that she celebrates the successes of direct reports that move into managerial positions. As the founder of EMPOWER, Alliant’s Black professionals ERG, Luna is committed to creating leadership opportunities for a diverse workforce and ensuring the company is an equitable and inclusive place that elevates its employees.
Since joining Alliant in 2006, Luna has experienced the company’s focus on professional development first hand, advancing through several roles into a senior leadership position. “My approach to leadership has always been to take my team along for the ride,” Luna said, noting that she celebrates the successes of direct reports that move into managerial positions. As the founder of EMPOWER, Alliant’s Black professionals ERG, Luna is committed to creating leadership opportunities for a diverse workforce and ensuring the company is an equitable and inclusive place that elevates its employees.
I take a supportive role and allow my team members to take the lead. This showcases their talents to others in the organization and gives them the confidence to take on bigger roles and responsibilities.
Sean Briscoe
Director, Credit Product Strategy & Analytics
PRODUCING FINANCIAL WELLBEING
Developing tech in service of people
Briscoe was initially excited to join Alliant for two reasons: its forward-thinking digital-first approach to lending and its commitment to serving members as a nonprofit organization. His team recently set its sights on improving Alliant’s flagship Visa Cashback Signature Card, working with product, marketing, compliance and technology teams to enhance member experience. “We continue to find new opportunities for growth and new ways to serve our members,” Briscoe said. “The team at Alliant is engaged, energized, self-motivated and always member-focused.”
Briscoe was initially excited to join Alliant for two reasons: its forward-thinking digital-first approach to lending and its commitment to serving members as a nonprofit organization. His team recently set its sights on improving Alliant’s flagship Visa Cashback Signature Card, working with product, marketing, compliance and technology teams to enhance member experience. “We continue to find new opportunities for growth and new ways to serve our members,” Briscoe said. “The team at Alliant is engaged, energized, self-motivated and always member-focused.”
Everything I do helps improve the financial lives of our members, and each one of my ideas is heard and taken seriously.

What are Alliant Credit Union Perks + Benefits

Alliant Credit Union Benefits Overview

Alliant constantly works on improving its Employee Value Proposition. Our Human Capital Group team seeks ongoing employee feedback to continue to raise the bar on employee-focused benefits, making updates to the existing and adding new benefits every year.

Culture
Volunteer in local community
Alliant offers 8 hours of paid volunteer time benefit for all employees.
Partners with nonprofits
To execute on our mission of Bridging the Digital Divide, Alliant has partnered with PCs for People, Connected Nation, DiGiTunity and the National Digital Inclusion Alliance.
Open door policy
OKR operational model
Team based strategic planning
Flexible work schedule
Alliant provides employees with a flexible work schedule that includes Flexible start and end times.
Remote work program
Since the pandemic began, all non-essential job functions have been remote 100%.
Diversity
Documented equal pay policy
Dedicated diversity and inclusion staff
Highly diverse management team
Mandated unconscious bias training
Alliant provides our leaders and employees with unconscious bias, psychological safety and inclusive mindset training.
Diversity manifesto
Diversity employee resource groups
Alliant supports employee resource groups. At this time, employees created INCLUDE, a women's resource group and ALL, an LGBTQ+ employee resource group, and EMPOWER black employees' resource group.
Hiring practices that promote diversity
At Alliant, we ensure that we have a diverse candidate slate for every role for which we hire and that our interview panels are also diverse.
Health Insurance + Wellness
Flexible Spending Account (FSA)
Alliant employees can contribute up to $2,750 annually to their Health Care FSA and $5,000 to their dependent care FSA.
Disability insurance
Company provides Short Term Disability benefit payable for up to 13 weeks as well as Long Term Disability insurance that covers 66.67% of your monthly earnings up to $10,000 monthly maximum payout.
Dental insurance
Preventive services covered at 100%, Basic services covered at 80%; Major restorative services covered at 50%; Orthodontics covered at 50%
Vision insurance
Alliant offers free vision benefits to its employees and their dependents. The vision benefits plan covers 100% for annual eye exams after a $10 copay and $150 for glasses and contacts.
Health insurance
Alliant provides a choice of two medical plans. If you elect a medical plan, you are automatically enrolled in an HSA where Alliant contributes funds to help you pay for your out-of-pocket expenses.
Life insurance
Basic Life insurance and Accidental Death & Dismemberment is equal to 1 times an employee's annual salary. Employees can also purchase Voluntary Life insurance for themselves and their dependents.
Pet insurance
Our pet insurance policy covers up to %90 of out of pocket expenses.
Wellness programs
With Alliant's wellness reimbursement program, each employee receives up to $35 per month (non-cumulative) to spend on wellness activities and discounted wellness services through ThrivePass.
Mental health benefits
Alliant employees get free access to ComPsych, Calm and myStrength apps and services.
Financial & Retirement
401(K)
Alliant offers a 401(k) plan administered through Fidelity where employees can contribute up to 60% of eligible compensation to the annual IRS limit.
401(K) matching
We match 100% of contributions up to the first 5% of an employee's annual gross pay. eligible salary. You will be 100% vested in these contributions right away.
Performance bonus
In the last years, Alliant’s bonus payouts were above 100%.
Charitable contribution matching
The Alliant Credit Union Foundation also matches employee donations made to non-religious, non-political 501(c)(3) organizations up to a total of $1,000 per person per calendar year.
Child Care & Parental Leave
Generous parental leave
We provide up to 6 weeks of parental leave for the primary and secondary caretakers.
Family medical leave
Employees who have been with the company for 12 months are eligible for up to 26 weeks of family medical leave.
Vacation + Time Off
Unlimited vacation policy
Generous PTO
Our employees receive between 21 and 31 days per year of paid time off based on years of service. Alliant also offers a Flexible Time Off (unlimited time off) policy for Sr. Managers and above.
Paid volunteer time
Our employees receive 8 hours per year of paid volunteer time.
Paid holidays
Office Perks
Commuter benefits
Employees can withhold up to $280 per month pre-tax for transit expenses and up to $280 per month pre-tax for parking expenses.
Company-sponsored outings
Alliant hosts between 4 and 6 major employee events in a year, including the Annual Volleyball Tournament, annual summer party and employee appreciation day celebration.
Free snacks and drinks
Currently, Alliant offers free snacks, free hot beverages and bottled water during the day, free lunch/food events on occasion and bi-weekly free fruit.
Some meals provided
Fitness stipend
Alliant reimburses its employees up to $35 per month for gym, health and fitness services and activities.
Professional Development
Job training & conferences
Alliant offers employees professional development opportunities like Annual individual budget for training, onsite training courses and the ability to attend job-related conferences and seminars.
Tuition reimbursement
We offer up to $5,250 annually for continuing education through our tuition reimbursement benefit.
Lunch and learns
Alliant hosts lunch and learn and hour with the leader meetings once per quarter, giving our employees to hear from our executive and senior leadership teams.
Promote from within
Continuing education stipend
We offer up to $5,250 annually for continuing education through our tuition reimbursement benefit.
Online course subscriptions available
Customized development tracks
Paid industry certifications

Additional Perks + Benefits

Alliant constantly works on improving its Employee Value Proposition. Currently, Alliant offers free snacks, free hot beverages and bottled water, free lunch/food events on occasion, personal concierge service, on-site package/mailing service, massage therapy, discounted ticket sales, car wash, dry cleaning, convenience store, vehicle maintenance, banking and a gym at our headquarters location.

Our company works hard to create a work environment that allows our employees to maintain a healthy work/life balance. We encourage our employees to take advantage of flexible hours and offer an option to work remotely. Alliant also offers a very generous PTO package, which starts new employees with 21 PTO days annualized in their first year of employment.

The well-being of our employees and their families translates to productivity and commitment to their jobs. That is why we constantly work on launching new benefits that will help them find the best medical care at the lowest cost and get the help they need with convenience and without unnecessary stress.

View full list of perks + benefits
Photo Gallery

More Jobs at Alliant Credit Union

Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job
By clicking Apply Now you agree to share your profile information with the hiring company.
Learn more about Alliant Credit UnionFind similar jobs like this