JobTarget Logo

Information Security & Governance Analyst at Brentwood Bank – Wexford, Pennsylvania

Brentwood Bank
Wexford, Pennsylvania, 15090, United States
Posted on
Updated on
Recently UpdatedSalary:$60000 - $70000Job Function:Human Resources

Explore Related Opportunities

Computer and Information Analysts jobs in PennsylvaniaJobs in PennsylvaniaComputer and Information Analysts jobs

About This Position

Information Security & Governance Analyst

Summary of Basic Function
The Information Security & Governance Analyst supports the organization's information security and risk management program through hands-on execution of risk, governance, and compliance activities. This role contributes to protecting information assets by performing risk assessments, supporting audits, maintaining security governance processes, and collaborating with technology and business stakeholders. The Analyst works under the guidance of senior team members and leadership to help mature Brentwood Bank's information security and governance practices in alignment with industry frameworks such as CIS and NIST.
**This position is a hybrid role requiring three days in office.
Essential Duties and Responsibilities
Security Governance & Program Support
  • Support the Information Security & Governance team in executing elements of the enterprise information security program.
  • Assist in preparing risk assessments, metrics, and reporting for leadership and committee review.
  • Participate in governance, risk, audit, and security-related meetings as a contributor.
Enterprise Resilience Support
  • Assist with business continuity, disaster recovery, and incident response activities, including documentation reviews and tabletop exercise coordination.
  • Support post-exercise reviews by documenting observations and tracking follow-up actions.
Risk Assessment & Audit Support
  • Assist with risk assessments for systems, processes, vendors, and business functions using established methodologies.
  • Support internal and external audits through evidence collection, documentation, and coordination with stakeholders.
  • Assist with control self-assessments and remediation tracking in collaboration with control owners.
Access Management & Identity Governance
  • Perform user access reviews for assigned systems, ensuring completeness, accuracy, and timely completion.
  • Maintain access review documentation, metrics, and evidence in accordance with established procedures.
Risk Register Maintenance
  • Assist the Security Risk Register process by documenting identified risks, updating risk details, and tracking remediation activities.
  • Ensure risks from audits, assessments, and incidents are accurately captured and updated.
  • Assist with preparing periodic risk reporting for leadership and committees.
Third-Party Risk Management
  • Support the Third-Party Risk Management (TPRM) program by conducting vendor risk assessments and SOC reviews for new and existing vendors.
  • Track vendor risk issues and remediation activities.
Vulnerability Management Support
  • Assist with reviewing vulnerability and penetration test reports.
  • Track remediation status and validate closure evidence in coordination with IT teams.
  • Support cloud security and application risk tracking activities as assigned.
Policy, Framework, and Control Support
  • Assist with updating information security policies, standards, and procedures.
  • Support mapping controls to industry frameworks and regulatory requirements.
  • Identify control gaps or improvement opportunities and escalate to senior team members.
Collaboration & Professional Development
  • Collaborate with IT, business units, and vendors to support security and risk initiatives.
  • Participate in security awareness, training, and knowledge-sharing activities.
Perform other duties as assigned.
Requirements
  • Bachelor's degree from an accredited college or university in Information Systems, Cybersecurity, Computer Science, Business, or a closely related field, or equivalent experience.
  • 1–3 years of experience in information security, risk management, audit, compliance, or a related field.
  • Experience in a regulated industry such as financial services or banking is preferred.
Preferred Certifications (or progress toward):
  • CISA – Certified Information Systems Auditor
  • CRISC – Certified in Risk and Information Systems Control
Knowledge, Skills, and Abilities
  • Foundational understanding of information security, risk management, and governance concepts.
  • Familiarity with security frameworks such as CIS or NIST.
  • Ability to analyze information and document risks and controls clearly.
  • Strong organizational and documentation skills.
  • Experience or exposure to GRC platforms (e.g., ServiceNow) preferred.
  • Effective written and verbal communication skills.
  • Ability to work collaboratively in a team environment and follow established processes.
Physical Demands and Work Environment:
  • This is a remote flexible role, and it is expected there will be both remote and office work. The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions.
  • Work may be performed in an office environment with normal noise levels.
  • Involves prolonged sitting and computer usage.
  • Position is headquartered in Pittsburgh, Pennsylvania, and incumbent will need to live within a commutable distance or be willing to travel to headquarters multiple times per year (travel requirement will be discussed during interview process).
Benefits
At Brentwood Bank, we know that great people make a great organization. We value our people and offer our employees a broad range of benefits to support wellness for individuals and families.
Our People and Culture
Brentwood Bank is committed to a diverse, equitable, and inclusive culture that empowers our people contribute their unique ideas and perspectives to make a difference. Brentwood Bank creates a strong relationship within the communities we serve and will continue to contribute our time, talent, and financial support to improve the areas where we live and work. Here, you will work alongside company leaders and industry pioneers who have proven experience and are committed to continuous innovation. Employees feel valued in all aspects of their lives, including both their professional and personal aspirations. We are looking to hire the best and brightest to help us continue to evolve and drive superior services.
Professional Development
From entry-level employees to senior leaders, we believe there is always room to learn. We offer opportunities to build new skills, take on leadership opportunities, and grow connect through mentorship. From on-the-job training to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their career.

Job Location

Wexford, Pennsylvania, 15090, United States
Loading interactive map for Wexford, Pennsylvania, 15090, United States

Job Location

This job is located in the Wexford, Pennsylvania, 15090, United States region.

Frequently asked questions about this position

Latest Job Openings in Pennsylvania

Apply For This Position