Information Security Analyst

Specific information related to the position is outlined below. To apply, click on the button above. You will be required to create an account (or sign in with an existing account). Your account will provide you access to your application information.

Should you have a disability and need assistance with the application process, please request a reasonable accommodation by emailing BB&T Accessibility or by calling 866-362-6451. This email inbox is monitored for reasonable accommodation requests only. Any other correspondence will not receive a response.

Regular or Temporary:

Regular

Language Fluency: English (Required)

Work Shift:

1st shift (United States of America)

Please review the following job description:

As BB&T Lines of Business (LOBs) strive to meet client demands, a steadfast commitment to information security is essential to effectively manage risks associated with change, innovation, and an evolving threat landscape. Corporate Information Security (CIS) strives to achieve an effective balance by partnering with LOBs to align incentives and devise strategies that achieve shared objectives and mutually desirable outcomes. Primary areas of accountability include the following:

* Understand the enterprise's core information security competencies and the value they bring to business processes for a competitive advantage

* Interact with internal and external customers to ensure continuous customer satisfaction, ensuring that SLAs and KPIs are met to support operating units

* Ensures adherence to developed policies, standards and procedures or complete appropriate exception documentation

* Partner with key stakeholders from within the LOB (including LOB Senior Management), CIS, and other groups throughout BB&T IT Services to offer transparency on matters pertaining to Information Security

Following is a summary of the essential functions for this job. Other duties may be performed, both major and minor, which are not mentioned below. Specific activities may change from time to time.

* Provide regular updates to CIS management on LOB strategies, critical projects and related risks, potential policy exceptions, and other items, as applicable.

* Ensure information security requirements are properly represented throughout LOB processes including risk assessments, new product evaluations, application development, testing, and ongoing operations.

* Engage, as necessary, in LOB sponsored projects and advise on information security related matters.

* Manage the credentials, privileges and access for BB&T corporate resources to ensure all information systems are functional and secure, ensuring that SLAs are met.

* Maintain IAM security policy including providing updates to CIS procedural documents to support policy.

* Represent CIS when working with BB&T business partners to understand business problems and providing solutions to those problems.

* Effectively support the production applications within the assigned area, with a focus on quality implementations and production stability.

* This includes managing audit/risk profile and issues and data custodian responsibilities.

* Review technical and business processes, standards and procedures, making recommendations for continuous improvement. Assists in the development of testing strategies, methodologies and analyses; evaluates the adequacy and effectiveness of policies, procedures, processes, systems and internal controls; analyzes business and/or system changes to determine impact, identifies and assesses operational risk issues and assigns risk ratings consistent with established policy standards.

Required Skills and Competencies:

The requirements listed below are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Bachelor's degree in information technology, business, or related discipline, or equivalent information technology/security experience. Minimum of two - three years of demonstrated experience in an Information Security role or equivalent understanding and experience with Identity and Access Management (IAM) concepts, governance, and identity management solutions, preferably at a financial institution. Highly adaptable to a constantly changing business and technology environment. Familiarity with multi-platform environments and their operational/security risk considerations. Experience with user/group access administration and customer support for two or more information security technologies: Active Directory, UNIX, Linux, AIX, Centrify, Windows, Exchange, Mobile Iron as well as enterprise applications on-prem and on Cloud. Exposure to IAM applications with common identity stores (LDAP, relational databases, application servers, virtual directory servers, physical access management systems). Good verbal and written communication skills. Experience with IT Service Management systems, such as Service Now. Ability to travel as-needed.

Desired Skills:

Experience with Information Security frameworks or standards such as ISO27001 or COBIT. Familiarity with audit processes as they relate to SOX, PCI-DSS, and GLBA information protection requirements. Knowledge of financial services industry and all applicable regulations and industry standards Security or Technical certifications

BB&T is an Equal Opportunity Employer and considers all qualified applicants regardless of race, gender, color, religion, national origin, age, sexual orientation, gender identity, disability, veteran status or other classification protected by law.

EEO is the Law Pay Transparency Nondiscrimination Provision E-Verify