We are currently seeking a Data Security & Governance Analyst to join our team.
The Data Security & Governance Analyst reports to the Senior Cyber Security Manager and leads the work that ensures achievement of the cyber program’s goals and moving First West’s data governance roadmap forward as it aligns with the IT and cyber strategy of the credit union and expectations of its federal supervisor the Office of the Superintendent of Financial Institutions (OSFI). This role will also be responsible for partnering with stakeholders in the Change Chapter, Agile squads, Employee and Member Communications by supporting the Data Governance Center of Excellence. This role contributes to the success of First West through its support of the goals of the cyber security program.
Here’s what would be included as a part of your typical day
Cyber Security: Navigate through multiple pillars of cyber security including Identity and Access Management, Data Loss Prevention and Security and log management controls and best practices ensuring guidance to stakeholders is appropriate and in line with company policies.
Data Management: Work with stakeholders to track and maintain the performance of all database systems including the assurance of teams maintaining the compliance to security policies and standards. Develop data classification frameworks to ensure proper categorization and labeling based on sensitivity, criticality, and usage.
Reporting: Creation and delivery of monthly KPI’s, KRI’s reports converting technical information to business language enabling leadership to make risk-based decisions.
Policy and Standards: Provide inputs to policy and standards including baseline requirements including best practices for data management, data security and privacy.
Relationship management: Collaborate and foster alignment with Technology, 1B Assurance, Second Line Risk and Audit teams to manage cyber risk, improve transparency of IT and cyber initiatives while contributing to the organizational goals.
Required Skills, Experience & Qualifications
Bachelor’s degree or college diploma in a relevant or transferrable discipline required.
Security certification from ISC2, ISACA or similar preferred.
Minimum 5 years of experience required in Cyber Security and Information Technology including experience delivering major projects and driving change required.
Experience in KPI and KRI development required
Minimum 2 years of experience in data governance is preferred
Experience with assessments based on NIST Cyber Security Framework, ISO 27001/27002, COBIT, PCI or similar standards and frameworks
Background in Business and System Analysis preferred.
Experience in Agile and Lean methods of delivery preferred
Experience working in a financial, federally regulated environment preferred.
Self-motivated to meet deadlines and deliver on commitments.
Flexible and able to adapt to change while still managing priorities effectively.
Engaged communicator and relationship builder that promotes transparency and collaboration within and among teams.
Focus on service and quality to internal stakeholders and credit union members.
Highly developed analytical skills and an immaculate eye for detail in reviewing and writing documentation.
Exceptional organizational skills, able to identify and prioritize work using a risk-based approach.
Strong verbal, written and presentation skills with the ability to translate technological terms into business language and communicate through reports, presentations.
Knowledge of OSFI guidelines B-13, B-10 and the Cyber Self-Assessment
Data base knowledge: understand key features as well as structured and unstructured data within SQL and Oracle databases.
Understanding of Azure, GCP and AWS to support First West’s Cloud first transformation.
Understanding of Canadian and BC privacy regulations.
Overnight travel may be occasionally required, up to 6 times per year
Displays an understanding of risk and risk ownership by being able to demonstrate adherence to policies and procedures.
