Truist NYDFS/NAIC Model Law Compliance Analyst in Raleigh, North Carolina
Req ID: R0025945
Specific information related to the position is outlined below. To apply, click on the button above. You will be required to create an account (or sign in with an existing account). Your account will provide you access to your application information.Need Help?
Should you have a disability and need assistance with the application process, please request a reasonable accommodation by emailing Accessibilityor by calling 877-891-2510. This email inbox is monitored for reasonable accommodation requests only. Any other correspondence will not receive a response.
Regular or Temporary: Regular Language Fluency: English (Required) Work Shift: 1st shift (United States of America)
Please review the following job description:
The NYDFS/NAIC Model Law Compliance Analyst is responsible for the implementation, maintenance and reporting in support of a highly effective Information Security Program.
Essential Duties and Responsibilities: Following is a summary of the essential functions for this job. Other duties may be performed, both major and minor, which are not mentioned below. Specific activities may change from time to time. 1. Responsible for supporting the implementation, monitoring and reporting of the InfoSec Program. 2. Provide expertise in the development and support of a Regulatory Compliance program (e.g. NYDFS, SCIDSA, NAIC Model Law) including guiding the requirements review through partnership with functional areas throughout the enterprise, interpreting results and communicating key information from derived reporting. 3. Collaborate with CIS personnel to develop effective audit-issue and risk-finding remediation plans. 4. Coordinate Information Security risk assessments and aggregate output. 5. Evaluate adherence to established policy, standards and guidelines to ensure that InfoSec Program requirements are met. 6. Develop effective management responses and remediation plans to ensure that target dates are met and that residual risk is communicated and found acceptable by senior management. 7. Consistently deliver and execute on the designated strategy to effectively address regulatory requirements. 8. Coordinate various aspects of regulatory submissions, including developing and reviewing technical documents, developing and tracking submission timelines, and managing the preparation of regulatory submissions to ensure compliance with regulations and guidelines. 9. Provide expertise in translating regulatory requirements into practical, workable plans; prepare critical submission documentation and communicate with regulatory agencies where applicable. 10. Act as a point of contact between Corporate Information Security (CIS) and other functional areas. 11. Evaluate adherence to established policies, standards, and guidelines to ensure that InfoSec Program requirements are met. 12. Maintain knowledge of and monitor changes in pertinent laws, regulations, and guidance to effectively interpret external developments and inform/educate internal stakeholders. 13. Coordinate efforts with leadership staff to prepare graphs, charts, presentations and technical documents. 14. Provide additional administrative support functions as requested. Required Skills and Competencies: The requirements listed below are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. 1. Bachelor’s degree in Computer Science, Technology, Business, or related discipline 2. Six years of InfoSec Program management or IT risk analysis/management experience 3. Demonstrated ability to take ownership of tasks, think independently, and deliver results 4. Understanding of current financial services industry regulatory environment and related implications to security strategy, standards, and control frameworks such as GLBA, COBIT, ISO and NIST 5. Experience analyzing data to identify usage trends 6. Collect, clarify, and translate business requirements into action plans and documented process assets 7. Facilitate meetings with the direct involvement of stakeholders 8. Strong business acumen with experience conducting root cause and impact analysis 9. Understanding of business processes, internal control risk management, IT controls, and related standards 10. Demonstrated communications, presentation and collaboration skills 11. Experience reviewing and approving protocols, reports, and documents used in regulatory submissions 12. Demonstrated analytical and problem-solving skills with attention to detail 13. Certified in at least one of the following: PMI-RMP, CRISC, CISA, CGEIT, CIA and/or CISM Truist supports a diverse workforce and is an Equal Opportunity Employer who does not discriminate against individuals on the basis of race, gender, color, religion, national origin, age, sexual orientation, gender identity, disability, veteran status or other classification protected by law. Drug Free Workplace. Thank you for your interest in Truist! BB&T and SunTrust have come together in a transformational merger of equals to create Truist, the premier financial organization in the country. You may notice references to our legacy company names, BB&T and SunTrust, in places throughout this site. All such references should be understood to refer to Truist moving forward while we continue to transition to the Truist name. EEO is the Law Pay Transparency Nondiscrimination Provision E-Verify
Thank you for your interest in Truist! BB&T and SunTrust have come together in a transformational merger of equals to create Truist, the premier financial organization in the country. You may notice references to our legacy company names, BB&T and SunTrust, in places throughout this site. All such references should be understood to refer to Truist moving forward while we continue to transition to the Truist name.
© 2017 SunTrust Banks, Inc. All rights reserved.
SunTrust is federally registered service marks of SunTrust Banks, Inc.