Job DescriptionWorks with Identity & Access Management team to develop and enforce IAM controls as well as defines, develops and runs reporting metrics. Should be familiar with CyberSecurity framework and processes/controls derived from this framework. Monitors, analyzes, documents, and follows up with the business to ensure IT security policies, procedures, and standards are being followed. Works with both business and technical contacts to conduct risk assessments which may include a business risk impact analysis, application assessments, supplier assessments or other activities to help ensure that applications and systems comply with SunTrust’s information security program (or have a documented exception in place) in support of applicable laws, regulations /guidance, and industry standards. Analyzes data risk factors and makes recommendations concerning risk ratings and assessment activities, as well as mitigation controls and remediation plans. May present assessment results and recommendations to committee for acceptance. Works on project teams to determine relevant security assessment processes and controls. May participate in IT security development initiatives. Applies an understanding of key business processes and practical experience to solve a range of straightforward problems. Analyzes possible solutions using experience, judgment and precedents. Works under moderate supervision.Qualifications
Bachelor’s degree or an equivalent combination of education and work experience. Understanding of compliance concepts and reporting. Foundational knowledge of business concepts and terms. Effective verbal and written communication skills for the purpose of providing basic information about technical designs and system requirements.
Bachelor’s degree and 5 years of experience in IT security, audit, risk management, Identity Management or Privileged Account Management or a related discipline or an equivalent combination of education and work experience. Knowledge in information systems and ability to apply that knowledge in practice. Ability to manage competing priorities. Ability to solve problems in straightforward situations by analyzing possible solutions using experience, judgment and precedents. Experience participating in IT projects. Ability to communicate complex information in straightforward situations. Experience with Identity & Access Management and privileged account management deployments, conducting, preparing and presenting analysis, findings and recommendations. Experience developing and presenting Metrics in support of security program. Pursuing certifications in CISSP, CISA and CISM. Banking or financial services experience.
Equal Opportunity Employer: SunTrust supports a diverse workforce and is a Drug Testing and Equal Opportunity Employer. SunTrust does not discriminate against individuals on the basis of race, creed, color, gender, religion, national originTo review the EEO Poster, copy and paste the following link into your browser: http://www1.eeoc.gov/employers/upload/eeoc_self_print_poster.pdf http://www.dol.gov/ofccp/regs/compliance/posters/pdf/OFCCP_EEO_Supplement_Final_JRF_QA_508c.pdf