Job Description: :
The Sr. IT Compliance Analyst position in Enterprise Security and Risk Operations will act as a liaison to the lines of business to ensure that all aspects of logical access to key financial and other critical applications are structured and documented appropriately.
Responsibilities include: planning and coordinating logical access evaluations on all critical applications, executing these evaluations and interpreting the results, identifying internal access control weaknesses, and making recommendations for cost-justified improvements in operations. The position may interface with partners in all lines of business and functions, Operational Risk Management, SOX Program Management, and other key stakeholders.
Performs various systems access analyses. Focuses on complex issues related to access management.
Performs research and fact-finding combined with an understanding of business systems and industry requirements. Acts as the liaison among the stakeholders to elicit, analyze, document, communicate and validate business and system requirements. Utilizes an appropriate business analysis approach across a variety of subject domains.
Clearly documents the business needs (requirements) of clients and stakeholders using techniques like prototyping, use cases, wireframes, and JAD sessions. Serves as a liaison between the clients and developers to ensure that all technical requirements are identified, if applicable. Works with test coordinators, may facilitate end-user demos, and basic end-user system training.
Identifies and documents issues and risks. Critically evaluates information gathered from multiple sources, reconciles conflicts, and decomposes high-level information into details, abstract up from low-level information. Typically leads moderately complex projects and participates in larger, more complex initiatives.
Solves complex technical and operational problems. Acts as a resource for teammates with less experience. May have people management responsibilities for a small team.
Bachelor's degree in and 5 years of experience in IT security or other related discipline or an equivalent combination of education and work experience. In-depth knowledge in information systems and ability to identify, apply, and implement best practices.
Understanding of key business processes and competitive strategies related to the IT function. Ability to plan and manage projects. Ability to solve complex problems by applying best practices.
Ability to provide direction and mentor less experienced teammates. Ability to interpret and convey complex, difficult, or sensitive information. In-depth knowledge of security-related technologies, such as Cisco PIX firewall OS, Nokia Checkpoint firewall OS, TCP/IP, DNS, SATAN, CyberCop, ISS, nmap, IBM Secure Way, and/or Web Single Sign-On (SSO).
Preferred Skills -
Must have a demonstrated intermediate or higher level of proficiency in organizing and analyzing unstructured data in varying formats using Excel, with mastery of basic formulas such as vlookup, index/match, etc. Must be comfortable crafting novel approaches to various data analysis challenges that have no pre-defined analysis methodology while also producing organized and legible outputs and reporting from said unstructured data. The ability to notice subtle indications or trends in raw data or analysis results that could be potential symptoms of an issue requiring deeper exploration, as well as the ability to self-assess and test analysis results to identify any required corrections to analysis methodology is critical to success in this position.
Experience in leveraging SharePoint 2013 (including Nintex products) to manage larger lists and workflows to track progress and completion of action items assigned to various resources is a plus, as is SharePoint site building and cross subsite management.
Bachelor's degree and 6 years of experience or an equivalent combination of education and work experience. Banking or financial services experience.
CBAP certified. Experience with access management lifecycle including tool suites such as Courion, SailPoint, Oracle OAM, CA.
Equal Opportunity Employer: SunTrust supports a diverse workforce and is a Drug Testing and Equal Opportunity Employer. SunTrust does not discriminate against individuals on the basis of race, creed, color, gender, religion, national origin, age, disability, veteran status, pregnancy, marital status, citizenship status, sexual orientation, gender identity, genetic information, or any other classification protected by applicable laws.
To review the EEO Poster, copy and paste the following link into your browser: http://www1.eeoc.gov/employers/upload/eeoc_self_print_poster.pdf http://www.dol.gov/ofccp/regs/compliance/posters/pdf/OFCCP_EEO_Supplement_Final_JRF_QA_508c.pdf
Apply Now >> Refer a Friend
Link for schema