Senior Information Security Analyst

Join to apply for the Senior Information Security Analyst role at Stifel Financial Corp.

Join to apply for the Senior Information Security Analyst role at Stifel Financial Corp.

Get AI-powered advice on this job and more exclusive features.

Why Stifel

Stifel strives for a culture that puts its clients and associates first: a culture where everyone belongs, everyone is welcome, and everyone contributes to the success of our clients, their careers, and the firm as a whole.

Why Stifel

Stifel strives for a culture that puts its clients and associates first: a culture where everyone belongs, everyone is welcome, and everyone contributes to the success of our clients, their careers, and the firm as a whole.

Let’s talk about how you can find your place here at Stifel, where success meets success.

What You'll Be Doing

The Sr Information Security Analyst plays a critical role in supporting the information security strategy. Reporting directly to the Chief Information Security Officer (CISO), this role is responsible for proactively assessing and mitigating security risks, monitoring for threats, developing security policies and procedures, regulatory reporting, metrics/KPIs, security risk management, security process integration, and collaborating with multiple departments to ensure the protection of sensitive data.

The ideal candidate will possess a strategic mindset, advanced technical skills, and a deep understanding of cybersecurity trends and regulatory requirements.

What We're Looking For

• Develop, maintain, and enforce information security policies, standards, and guidelines. Ensure security practices align with regulatory requirements and industry best practices.
• Work with IT, legal, compliance, and business units to integrate security measures into all aspects of the organization’s operations.
• Provide guidance on security practices and assist in awareness training.
• Identify, assess, and mitigate security risks. Develop remediation plans to address identified risks.
• Maintain in-depth knowledge of regulatory compliance requirements, such as FINRA, SEC, PCI-DSS, and applicable laws.
• Assist in audits and ensure compliance with relevant regulations.
• Evaluate, recommend, and implement security technologies and solutions to enhance the security posture. Provide strategic input on the selection and deployment of security tools and technologies.
• Stay current on the latest cybersecurity threats, trends, and technologies. Continuously evaluate the threat landscape and recommend improvements.
• Gather and analyze information security KPIs.

• Proven ability in information security principles, processes, tools, and the latest industry awareness and current knowledge.
• Strong knowledge of NIST (800-53, CSF) and other information security frameworks.
• Understanding of financial services regulatory environment
• Experience with formal risk management.
• Excellent analytical skills, logical thinking, and diagramming capability.
• Strong and confident interpersonal and customer service skills; ability to interface with personnel from various departments and levels, both technical and non-technical.
• Excellent organizational skills. Ability to prioritize multiple tasks and meet deadlines. Attention to detail and commitment to excellence.
• Experience working in an ITIL-focused support organization with incident/request tickets.
• Ability to work flexible schedules, including availability outside of normal working hours.
• Knowledge of data privacy regulations is preferred.

• Required:
  
  Bachelor’s degree in information technology, Computer Science, or equivalent combination of cybersecurity certifications and experience.
• Required:
  
  6+ years of experience in information security.

• Certifications:
  
  CISSP, CISM, CISA, or similar are strongly preferred.

• Experience using industry-standard event logging platforms.
• Solid understanding of information security tools and best practices.
• Proficient with Windows 365.