Summary

The Information Security - Insider Threat Analyst reports to the CISO and is responsible for specific aspects of the security program including regulatory reporting, insider threat management, metrics/KPIs, training and awareness, security process integration and risk management.

Essential Duties and Responsibilities

• Proactively defend, detect, and eliminate security threats
• Gathering, Reporting, and Analyzing Information Security KPIs
• Analyze, categorize, and prioritize Insider Threat Data
• Advise on Risk Levels and Security Posture through Risk Management Framework
• Identifies business processes requiring Information Security Integration
• Ensure Security Policies are aligned with other governing policies, and are not being violated by users
• Provide subject matter expertise and full lifecycle management for installed security base.
• Participate in security projects from inception to implementation and provide post project support.
• Advise on projects delivering business solutions that impact information security risks and relevant compliance certifications.

Qualifications

• Proven ability in information security principles, latest industry awareness, and current knowledge.
• Strong knowledge of NIST (800-53, CSF) and other information security frameworks.
• Strong knowledge of information security processes and tools.
• Familiarization with data analytics tools used for Insider Threat data collection
• Ability to summarize and create briefs on Insider Threat activities
• Understanding of financial services regulatory environment
• Very good analytical skills, logical thinking, diagramming capability.
• Strong and confident interpersonal and customer service skills; ability to interface with personnel from various departments and levels, both technical and non-technical.
• Investigative mindset and familiarity with investigation and analytical methodologies
• Experience of working in an ITIL focused support organization with incident/request tickets.

Education and Experience

• Bachelor's Degree in Information Technology, Computer Science, or related field; or equivalent experience in IT or Risk Management required
• 5+ years' experience in an IT related field or position required
• 2+ years' experience in an Information Security role required
• Previous experience with industry standard even logging platforms
• 1+ year of experience in an Insider Threat role preferred
• Security+ or CySA+ certification preferred

Stifel is a more than 130 years old and still thinking like a start-up. We are a global wealth management and investment banking firm serious about innovation and fresh ideas. Built on a simple premise of safeguarding our clients’ money as if it were our own, coined by our namesake, Herman Stifel, our success – and 26 years of continual growth – is intimately tied to our commitment to helping families, companies, and municipalities find their own success.

While our headquarters is in St. Louis, we have offices in New York, San Francisco, Baltimore, London, Frankfurt, Toronto, and more than 400 other locations. Stifel is home to approximately 9,000 individuals who are currently building their careers as financial advisors, research analysts, project managers, marketing specialists, developers, bankers, operations associates, among hundreds more. Let’s talk about how you can find your place here at Stifel, where success meets success.