Bank of the West Jobs

Job Information

Bank of the West Sr Cybersecurity Assessment Analyst in Omaha, Nebraska

Sr Cybersecurity Assessment Analyst


LAt Bank of the West, our people are having a positive impact on the world. We’re investing where we feel we can make the most impact, like advancing diversity and women entrepreneurship programs, financing for more small businesses, and promoting programs for sustainable energy. From our locations across the U.S., Bank of the West is taking action to help protect the planet, improve people’s lives, and strengthen communities. We are part of BNP Paribas, a global leader supporting the UN Sustainable Development Goals (SDGs). Yes, we’re a bank, but as the bank for a changing world, we are continually seeking to improve the ways we help our customers, while contributing to more sustainable and equitable growth.

Position Summary

The Governance, Risk, and Compliance (GRC) Sr. Cybersecurity Assessment Analyst is responsible for performing assessments of the Bank’s information security controls through desktop reviews and inspections of policies, audit reports, and evidence of security and cyber-resiliency controls to validate operational effectiveness and identify gaps. Responsible for coordinating, developing, and managing controlling workflow activities and deadlines; maintaining, organizing, and gathering information. Collaborates with colleagues, management and business partners to identify risks within the Bank to enhance the security controls and protect Bank sensitive data.

This role:

  • Creates and manages the appropriate artifacts throughout the initiative lifecycle of Corporate Security’s efforts.

  • Ensures work effort dependencies, assumptions, risks and issues are defined, documented and communicated to the appropriate lead and/ stakeholder.

  • Leads risk assessments to identify risks to security and cyber resiliency controls. Documents overall effectiveness of operational controls within the Bank.

  • Leads control assessments of the Bank’s IT and Security controls to assess the effectiveness.

  • Directs, counsels, and instructs Jr Analysts assigned to assist on GRC projects and review their work for technical proficiency, reasonableness and adequacy of documentation

  • Reviews internal and external security and technical processes (audit, vulnerability and penetration test results, cyber resiliency plans, etc.) to validate the effectiveness of operational controls.


  • High School Diploma or GEDRequired

  • Bachelor's Degree Business,Computer Science, Information Assurance, Management Information Systems orrelated field

Work Experience

  • 3 - 5 years in Risk Management,Business Analytics, Information Security, IT Audit, or related field.

  • Prior IT audit experience inpublic accounting or internal audit preferred


  • CISA, CISM, CRISC or CISSPcertification(s) required

  • Strong written and verbal communicationskills for report writing, business requirement proposals, technicalpolicies, and methodology documentation.

  • Sound interpersonal,negotiation, and influencing skills; ability to facilitate discussionsaround complex issues and bring them to resolution

  • Solid analytical andproblem-solving skills coupled with thoroughness and attention to detailis highly desired.

  • Good understanding of industrypractices and metric reporting fundamentals.

  • Ability to adjust to rapidlychanging security environment, prioritize deliverables and manageworkflow.

  • Ability to exercise soundjudgment and make effective recommendations to management

  • Ability to optimize andcondense information and transform data into easily understandableconcepts.

  • Solid understanding offinancial industry, risk management, and/or corporate security.

  • Basic technical skills in MSExcel, PowerPoint, Word, and Project

  • Knowledgeable in variouscybersecurity areas such as: Identity and Access Management, Threat andVulnerability Management, Information Risk and Governance, ITArchitecture, Monitoring, Incident Response, Security Strategy, and Cyber- Resiliency.

  • Good knowledge of securitycontrols for the handling of Personally Identifiable Information (PII)data, regulations and security compliance requirements affecting financialinstitutions (FFIEC/GLBA)

  • Familiar with assessmentframeworks/standards (i.e. FFIEC CAT, CIS Critical Security Control, NISTCSF & Risk Assessments,.

Equal Employment Opportunity Policy

Bank of the West is an Equal Opportunity

employer and proud to provide equal employment opportunity to all job seekers

without regard to any status protected by applicable law. Bank of the West is

also an Affirmative Action employer - Minority / Female / Disabled / Veteran.

Bank of the West will consider for employment

qualified applicants with criminal histories pursuant to the San Francisco Fair

Chance Ordinance subject to the requirements of all state and federal laws and


Job: Security

Location: United States-Arizona-Tempe

Other Locations: United States-Nebraska-Omaha

Requisition ID: 049982