Discover. A brighter future.
With us, you'll do meaningful work from Day 1. Our collaborative culture is built on three core behaviors: We Play to Win, We Get Better Every Day & We Succeed Together. And we mean it - we want you to grow and make a difference at one of the world's leading digital banking and payments companies. We value what makes you unique so that you have an opportunity to shine.
Come build your future, while being the reason millions of people find a brighter financial future with Discover.
Job Description:
At Discover, be part of a culture where diversity, teamwork, and collaboration reign. Join a company that is just as employee focused as it is on its customers and is consistently awarded for both. We're all about people, and our employees are why Discover is a great place to work. Be the reason we help millions of consumers build a brighter financial future and achieve yours along the way with a rewarding career.
Reporting into the Risk & Compliance (R&C) Office within BT Payments with a dotted line relationship with Cybersecurity, the Cybersecurity Analyst will be a key team member on the small but fast-paced Risk & Compliance (R&C) team. Additionally, this person will be the central point of contact to manage the portfolio of Cyber risks, drive collaboration from internal technical teams to develop action plans, and partner with BT Cybersecurity to report on how Cyber risks are being addressed by BT Payments.
This role requires high levels of collaboration and oversight, including the effective challenge of remediation action plans, documentation of control gaps (e.g., Security Exceptions, Issues and Actions), and timely executive status reporting of overall organizational performance of risk remediation, escalating to BT leadership or BT Cybersecurity BISO leader as necessary.
Responsibilities
Delivers metrics and performance reporting to enhance real-time risk decisions and initiative prioritization. Collaborates with cross-functional resources to drive progress toward cyber initiatives or risk remediation deliverables Coordinates all exam management requests with program owners. Collects, reviews, and uploads all artifacts submitted as evidence in advance of requested dates Assists in compiling management corrective action plans for risk item closure. Performs due diligence and validation on identified risk findings Bring awareness of Cyber Risks to BT Payments and ensure timely delivery of obtainable and thorough remediation action plans to meet SLAs.Serves as the primary advisor and provides guidance to department leadership on a range of governance, regulatory, audit, risk management framework, procedures, controls, and compliance matters.Gathers, reviews, and challenges evidence and data for accuracy and completion to achieve risk mitigation and controls effectiveness. Validates resolutions are satisfactory and manages the progress of action plans to closure.Documents and manages organizational Security Exceptions and Action Plans and advises management on perceived control weaknesses.Builds an extensive and comprehensive list of requirements to automate the risk remediation assurance workflow and oversees the platform design to certify the correct integration into the Service Now application.Guides the implementation of the automated risk remediation assurance workflow in Service Now system for centralized tracking and reporting of all identified units of risk and collaborates with BT management to remediate potential vulnerabilities.Ensure disciplined execution of Cyber initiatives and risk remediation efforts. Actively manages and escalates risk and customer-impacting issues within the day-to-day role to management.
Minimum Qualifications
At a minimum, here's what we need from you:
Bachelors - Information Security, Information Technology, Analytics, Business or Project Management 4+ Years - Information Security, Information Technology, Business, Analytics, Project Management or related In lieu of a degree 6+ Years - Information Security, Information Technology, Business, Analytics, Project Management or related Internal applicants only: technical proficiency rating of competent on the Dreyfus cybersecurity scale
Preferred Qualifications
If we had our say, we'd also look for:
Strong project management skills, highly organized. Ability to maintain executive level reporting.Strong written & verbal communication skills.Ability to manage problems independently.DevSecOps background and experience would be beneficial. In lieu of, willingness to develop security / DevSecOps skills (Cybersecurity skills not essential but a willingness and desire to learn Cybersecurity skills is a requirement).Certifications:CISSP, CISM, CRISC, etc PMP, Agile SAFe etc
External applicants will be required to perform a technical interview.
#LI-MF1
Application Deadline:
The application window for this position is anticipated to close on Dec-24-2023. We encourage you to apply as soon as possible. The posting may be available past this date, but it is not guaranteed.
Compensation:
The base pay for this position generally ranges between $88,500.00 to $149,300.00. Additional incentives may be provided as part of a market competitive total compensation package. Factors, such as but not limited to, geographical location, relevant experience, education, and skill level may impact the pay for this position.
Benefits:
We also offer a range of benefits and programs based on eligibility. These benefits include:
Paid Parental LeavePaid Time Off401(k) PlanMedical, Dental, Vision, & Health Savings AccountSTD, Life, LTD and AD&DRecognition ProgramEducation AssistanceCommuter BenefitsFamily Support ProgramsEmployee Stock Purchase Plan
Learn more at MyDiscoverBenefits.com.
What are you waiting for? Apply today!
All Discover employees place our customers at the very center of our work. To deliver on our promises to our customers, each of us contribute every day to a culture that values compliance and risk management.
Discover is committed to a diverse and inclusive workplace. Discover is an equal opportunity employer and does not discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veteran status, or other legally protected status. (Know Your Rights)