Every career journey is personal. That's why we empower you with the tools and support to create your own success story.
Be challenged. Be heard. Be valued. Be you ... be here.
Job Summary
The Information Security Advisor is responsible for consulting as part of Bread Financial Information Security regarding security-related aspects of business initiatives, projects, applications, databases, and other system environments across the various lines of business. This Advisor is expected to champion processes and technology as a subject matter expert in various areas. This position works closely with teams across the organization to help provide superior protection to Bread Financial information assets.
Essential Job Functions
- Cyber and GCC Risk Assessment and Advisement - Provide cyber and general computing control risk assessment and advisory services to business and IT constituents related to new development efforts, significant changes to IT systems and infrastructure, and IT vulnerability management. Produce risk assessment and advisory reporting to ensure risks are adequately recorded and tracked to resolution, acceptance, or transference. Monitor the cyber landscape for emerging threats and their potential impact (risk) to the organization using threat modeling analysis tools and resources. Utilize planning and organization tools to develop project/action plans and meet deliverable deadlines as directed.
- Cyber Security Tooling and Processes - Possess intermediate knowledge of company cyber security tools and affiliated operational processes. Utilize knowledge when advising to determine residual risk of identified threats or control weaknesses. Champion the use of cyber security tooling through education and awareness of constituents.
- Regulatory Requirements and Control Frameworks - Foundational knowledge of regulatory bodies and corresponding compliance requirements including, but not limited to: PCI-DSS, SOX, GLBA, CCPA, GDPR. Intermediate knowledge of control frameworks including, but not limited to: FFIEC Examination Handbooks, NIST 800-53, ISO 27001. Foundational knowledge of Cyber Security Maturity Frameworks such as NIST-CSF and FFIEC Cyber Assessment Tool.
- General Information Technology - Exercise intermediate to advanced knowledge of IT tools and practices including, but not limited to: Networking, LDAP Directories, Vulnerability/Patch Management, Change Management, Incident Management, Server and Desktop Management, Mainframe Technologies, Encryption and Key Management, Cloud Architecture and Computing, Software Application General Computing Controls, Business Continuity/Disaster Recovery, Software Development Lifecycle, Access Management, and Cyber Security Tooling.
- Metrics and Presentation Skills - Ability to produce meaningful and actionable metrics through data analysis. Conduct data analysis exercises using Excel Pivot Tables, Microsoft Access Queries, and other data driven analysis tools. Produce presentations at various levels of abstraction dependent on intended audience using Microsoft PowerPoint, Microsoft Visio, or equivalent tools. Demonstrate intermediate to expert English writing skills.
- Human Relations - Ability to diffuse problematic situations and manage through conflict resolution. Utilize soft skills such as selective agreement, reflective listening, voice inflection, and empathy. Ability to take complex concepts and break down into laymen's terms or analogies that help with other's understanding. Act as an enabling partner that provides options or information when saying no to business or IT requests. Appear as creditable, trustworthy, and respectful to leadership and peers. Utilize subject matter expertise to guide and coach less experienced team members.
Reports To
Manager, Information Security
Direct Reports
None
Working Conditions/Physical Requirements
- Hybrid role, work in corporate office as required.
Minimum Qualifications
- Bachelor's Degree
- One or more field related professional technical certifications (CISSP, CISA, CISM, Security+).
- 4+ years of experience in Information Security, IT Audit, or Risk Management.
Preferred Qualifications
- Bachelor's degree in computer science, networking, information technology or related field of study.
- Two or more field related professional technical certifications (CISSP, CISA, CISM, Security+).
Knowledge, Skills, And Abilities
- Penetration Testing
- Database Fundamentals
- Application Security
- NIST Cybersecurity Framework
- NIST 800-53
- Sarbanes-Oxley Act (SOX)
- Information Technology (IT) Risk Management
- Information Technology Auditing
- Information Security
- Data Analysis
Other Duties
This job description is illustrative of the types of duties typically performed by this job. It is not intended to be an exhaustive listing of each and every essential function of the job. Because job content may change from time to time, the Company reserves the right to add and/or delete essential functions from this job at any time.
About Bread Financial
At Bread Financial, you'll have the opportunity to grow your career, give back to your community, and be part of our award-winning culture. We've been consistently recognized as a best place to work nationally and in many markets and we're proud to promote an environment where you feel appreciated, accepted, valued, and fulfilledboth personally and professionally. Bread Financial supports the overall wellness of our associates with a diverse suite of benefits and offers boundless opportunities for career development and non-traditional career progression.
Bread FinancialTM is a tech-forward financial services company providing simple, personalized payment, lending and saving solutions. The company creates opportunities for its customers and partners through digitally enabled choices that offer ease, empowerment, financial flexibility and exceptional customer experiences. Driven by a digital-first approach, data insights and white-label technology, Bread Financial delivers growth for its partners through a comprehensive suite of payment solutions that includes private label and co-brand credit cards and Bread Pay buy now, pay later products. Bread Financial also offers direct-to-consumer products that give customers more access, choice and freedom through its branded Bread CashbackTM American Express Credit Card and Bread SavingsTM products.
Headquartered in Columbus, Ohio, Bread Financial is powered by its approximately 7,000 global associates and is committed to sustainable business practices.
- All job offers are contingent upon successful completion of credit and background checks.
- Bread Financial is an Equal Opportunity Employer.
Job Family
Information Technology
Job Type
Regular
