Security Specialist Sr - Risk Quantification

PNC External

To apply for this position please CLICK HERE

Position Overview

At PNC, our people are our greatest differentiator and competitive advantage in the markets we serve. We are all united in delivering the best experience for our customers.

We work together each day to foster an inclusive workplace culture where all of our employees feel respected, valued and have an opportunity to contribute to the company's success.

As a(n) position title within PNC's name of division organization, you will be based in city / state location of position .

Job Profile

Position Overview At PNC, our people are our greatest differentiator and competitive advantage in the markets we serve. We are all united in delivering the best experience for our customers.

We work together each day to foster an inclusive workplace culture where all of our employees feel respected, valued and have an opportunity to contribute to the company's success.

As a Security Specialist Sr within PNC's Technology organization, you will be based in Pittsburgh, PA; Cleveland, OH; Birmingham, AL or Dallas, TX.

The position is primarily based in a PNC location. Responsibilities require time in the office or in the field on a regular basis.

Some responsibilities may be performed remotely, at the manager's discretion.

Position Overview :

As a member of the Technology and Security Risk & Resilience organization you are leading the development and application of risk principles and frameworks to ensure risk decisions across the enterprise are executed in a consistent and transparent manner, balancing risk management with business strategies.

Your responsibilities include :

• Set strategic direction for the risk quantification function
• Lead risk analysis activities under minimal supervision, including :

o Defining scope of analysis

o Gathering data / calibrating estimates

o Drafting of intelligence-driven reporting

• Strong mathematical and statistical abilities are required to determine proper inputs and interrupt output
• Strong ability to ascertain the significance of weaknesses identified through assessments and explain them in business terms
• Serve as a technical expert in the maintenance of internal and external tooling
• Engage with Model Risk Management to ensure program compliance
• Support customers in day-to-day strategic / tactical activities related to risk program development and optimization

Preferences / Skills :

• Quantitative risk analysis experience - preferably with Factor Analysis of Information Risk (FAIR)
• Demonstrates critical and analytical thinking skills
• 5+ years professional experience with strong background in information security, IT audit or security risk management, with
• Aptitude with established risk management practices
• Excellent presentation, verbal and written communication skills; comfortable with leading discussions and / or training sessions among groups of 8-20, including senior management
• Ability to work on a team and individually
• Strong data analysis skills using Excel, Tableau and via source systems
• Possess a 'whatever it takes to get the job done' mentality (i.e. pick up the phone, follow-up multiple times) Job Description
• Provides technical evaluation and analysis in a specific Security area. Supports activities, process, and tools needed to improve overall security posture of the organization.

Primary responsibilities do not include Architect or Engineering responsibilities. Provides subject matter expertise.

Applies security concepts, reviews information, executes defined tasks, analyzes requirements, reviews logs, creates documentation.

Performs investigation and data loss prevention, data manipulation, coordination of activities. Performs actions to address or mitigate risks and vulnerabilities.

Reviews and defines controls.

Advises on more complex security procedures and products for clients, security administrators and network operations. Participates in enforcement of control security risks and threats;

potential of one more controls subject to manager discretion. Shares knowledge with staff.

• Conducts security assessments and other information security routines consistently. Investigates and recommends corrective actions for data security related to established guidelines.
• Develops policies and procedures to standardize security functions and eliminate potential vulnerabilities and threats.

Oversees that business needs are being met during development.

Shares knowledge, leads and mentors are the discretion of management. Aligns the controls of a specific Security area to the enterprise framework.

Devises control implementation strategy.

PNC Employees take pride in our reputation and to continue building upon that we expect our employees to be :

Customer Focused - Knowledgeable of the values and practices that align customer needs and satisfaction as primary considerations in all business decisions and able to leverage that information in creating customized customer solutions.

Managing Risk - Assessing and effectively managing all of the risks associated with their business objectives and activities to ensure they adhere to and support PNC's Enterprise Risk Management Framework.

Qualifications

Successful candidates must demonstrate appropriate knowledge, skills, and abilities for a role. Listed below are skills, competencies, work experience, education, and required certifications / licensures needed to be successful in this position.

Preferred Skills Access Control (AC), Building Architecture, Customer Solutions, Disaster Recovery Planning, Information Security, Network Security, Physical Security, Risk Assessments, Security Technologies Competencies Analytical Thinking, Effective Communications, Information Assurance, Information Security Management, Information Security Technologies, IT Environment, IT Standards, Procedures & Policies, IT Systems Management, Knowledge of Organization, Problem Solving, Software Security Assurance Work Experience Roles at this level typically require a university / college degree.

Higher level education such as a Masters degree, PhD, or certifications is desirable. Industry relevant experience is typically 8+ years.

Specific certifications are often required. In lieu of a degree, a comparable combination of education, job specific certification(s), and experience (including military service) may be considered.

Education Bachelors Certifications No Required Certification(s) Licenses No Required License(s) Benefits PNC offers a comprehensive range of benefits to help meet your needs now and in the future.

• Depending on your eligibility, options for full-time employees include : medical / prescription drug coverage (with a Health Savings Account feature), dental and vision options;
• employee and spouse / child life insurance; short and long-term disability protection; 401(k) with PNC match, pension and stock purchase plans;
• dependent care reimbursement account; back-up child / elder care; adoption, surrogacy, and doula reimbursement; educational assistance, including select programs fully paid;
• a robust wellness program with financial incentives.In addition, PNC generally provides the following paid time off, depending on your eligibility : maternity and / or parental leave;

up to 11 paid holidays each year; 8 occasional absence days each year, unless otherwise required by law; between 15 to 25 vacation days each year, depending on career level; and years of service.

To learn more about these and other programs, including benefits for full time and part-time employees, visit pncbenefits.com >

New to PNC.

Disability Accommodations Statement

At PNC we foster an inclusive and accessible workplace. We provide reasonable accommodations to employment applicants and qualified individuals with a disability who need an accommodation to perform the essential functions of their positions.

Equal Employment Opportunity (EEO)

PNC provides equal employment opportunity to qualified persons regardless of race, color, sex, religion, national origin, age, sexual orientation, gender identity, disability, veteran status, or other categories protected by law.

California Residents

Refer to the California Consumer Privacy Act Privacy Notice to gain understanding of how PNC may use or disclose your personal information in our hiring practices.