The point where experts and best companies meet
PNC Security Analyst - Data Protection & Governance United States, Ohio 667207242
21.07.2024
Share
This position is primarily based in a location within PNC's footprint. Responsibilities require time in the office or in a field on a regular basis. Some responsibilities can be performed remotely. Additional locations may be considered.1. Technical Skills
• Data Security: Expertise in Data Protection techniques and technologies.
• Cloud Security: Familiarity with securing data in cloud environments like AWS, Azure, or Google Cloud Platform.
• Encryption: Knowledge of data encryption techniques (both at rest and in transit), key management, and cryptographic protocols are a plus.
• Network Security: Understanding of network security protocols, firewalls, VPNs, and intrusion detection systems are a plus.
• Database Security: Knowledge of securing databases, including role-based access control, auditing, and data masking are a plus.
• Scripting and Automation: Experience in automation and scripting are a plus.
• Endpoint Security: Skills in securing end-user devices and understanding endpoint protection tools are a plus.2. Compliance and Regulatory Knowledge
• Data Governance: Familiarity with data governance frameworks and practices to ensure data quality, privacy, and security.
• Audit and Reporting: Ability to prepare for and respond to compliance audits, as well as generate necessary reports and documentation.3. Soft Skills and Professional Qualities
• Delivery Oriented: The ability to deliver initiatives and Business as Usual (BaU) activities efficiently and effectively.
• Problem-Solving: Strong analytical and troubleshooting skills to identify and resolve data protection issues.
• Attention to Detail: Precision in configuring and monitoring data security tools and practices.
• Communication: Ability to explain complex technical concepts to non-technical stakeholders and work across different teams.
• Adaptability: Ability to stay updated with evolving security threats and technologies.
• Ethics and Integrity: Strong ethical principles to handle sensitive and confidential information responsibly.4. Experience
• Practical Experience: Hands-on experience with applying data protection controls and with data security technologies like DLP, AWS Macie, Purview Information Protection, Data Security Posture Management (DSPM), SIEM, antivirus.
• Project Management: Experience in managing security projects or leading data protection initiatives.
• Incident Response: Experience in handling security incidents, breaches, and mitigating risks.
• Delivery: Proven track record in driving delivery for initiatives and BaU activities.
• Metrics Management: Experience in identifying and developing Metrics, KRIs to support data protection processes as plus.
• Industry Experience: Experience in the industry or sector relevant to your business, such as finance, healthcare, or technology.5. Tools and Technologies
• Data Protection: Familiarity with Data Protection solutions. (Purview Information Protection, AWS Macie, DSPM, Symantec, other Purview modules)
Job Description
• Data Security: Expertise in Data Protection techniques and technologies.
• Cloud Security: Familiarity with securing data in cloud environments like AWS, Azure, or Google Cloud Platform.
• Encryption: Knowledge of data encryption techniques (both at rest and in transit), key management, and cryptographic protocols are a plus.
• Network Security: Understanding of network security protocols, firewalls, VPNs, and intrusion detection systems are a plus.
• Database Security: Knowledge of securing databases, including role-based access control, auditing, and data masking are a plus.
• Scripting and Automation: Experience in automation and scripting are a plus.
• Endpoint Security: Skills in securing end-user devices and understanding endpoint protection tools are a plus.2. Compliance and Regulatory Knowledge
• Data Governance: Familiarity with data governance frameworks and practices to ensure data quality, privacy, and security.
• Audit and Reporting: Ability to prepare for and respond to compliance audits, as well as generate necessary reports and documentation.3. Soft Skills and Professional Qualities
• Delivery Oriented: The ability to deliver initiatives and Business as Usual (BaU) activities efficiently and effectively.
• Problem-Solving: Strong analytical and troubleshooting skills to identify and resolve data protection issues.
• Attention to Detail: Precision in configuring and monitoring data security tools and practices.
• Communication: Ability to explain complex technical concepts to non-technical stakeholders and work across different teams.
• Adaptability: Ability to stay updated with evolving security threats and technologies.
• Ethics and Integrity: Strong ethical principles to handle sensitive and confidential information responsibly.4. Experience
• Practical Experience: Hands-on experience with applying data protection controls and with data security technologies like DLP, AWS Macie, Purview Information Protection, Data Security Posture Management (DSPM), SIEM, antivirus.
• Project Management: Experience in managing security projects or leading data protection initiatives.
• Incident Response: Experience in handling security incidents, breaches, and mitigating risks.
• Delivery: Proven track record in driving delivery for initiatives and BaU activities.
• Metrics Management: Experience in identifying and developing Metrics, KRIs to support data protection processes as plus.
• Industry Experience: Experience in the industry or sector relevant to your business, such as finance, healthcare, or technology.5. Tools and Technologies
• Data Protection: Familiarity with Data Protection solutions. (Purview Information Protection, AWS Macie, DSPM, Symantec, other Purview modules)
Job Description
- Provides technical evaluation and analysis. Supports activities, process, and tools needed to improve overall security posture of the organization.
- Applies security concepts, reviews information, executes defined tasks, analyzes requirements, reviews logs, and creates documentation. Performs investigation and data loss prevention, data manipulation, and coordination of activities. Performs actions to address or mitigate risks and vulnerabilities. Reviews and defines controls.
- Advises on more complex security procedures and products for clients, security administrators and network operations. Participates in enforcement of control security risks and threats; potential of one more controls subject to manager discretion. Shares knowledge with staff.
- Conducts security assessments and other information security routines consistently. Investigates and recommends corrective actions for data security related to established guidelines.
PNC Employees take pride in our reputation and to continue building upon that we expect our employees to be:
- Customer Focused - Knowledgeable of the values and practices that align customer needs and satisfaction as primary considerations in all business decisions and able to leverage that information in creating customized customer solutions.
- Managing Risk - Assessing and effectively managing all of the risks associated with their business objectives and activities to ensure they adhere to and support PNC's Enterprise Risk Management Framework.
Successful candidates must demonstrate appropriate knowledge, skills, and abilities for a role. Listed below are skills, competencies, work experience, education, and requiredneeded to be successful in this position.
Analytical Thinking, Effective Communications, Information Assurance, Information Security Management, Information Security Technologies, IT Environment, IT Standards, Procedures & Policies, IT Systems Management, Problem Solving, Software Security AssuranceRoles at this level typically require a university / college degree, with 3+ years of relevant / direct industry experience. Certifications are often desired. In lieu of a degree, a comparable combination of education, job specific certification(s), and experience (including military service) may be considered.No Required Certification(s)No Required License(s)PNC offers a comprehensive range of benefits to help meet your needs now and in the future. Depending on your eligibility, options for full-time employees include: medical/prescription drug coverage (with a Health Savings Account feature), dental and vision options; employee and spouse/child life insurance; short and long-term disability protection; 401(k) with PNC match, pension and stock purchase plans; dependent care reimbursement account; back-up child/elder care; adoption, surrogacy, and doula reimbursement; educational assistance, including select programs fully paid; a robust wellness program with financial incentives. In addition, PNC generally provides the following paid time off, depending on your eligibility*: maternity and/or parental leave; up to 11 paid holidays each year; 8 occasional absence days each year, unless otherwise required by law; between 15 to 25 vacation days each year, depending on career level; and years of service.*For more information, please click on the following links:
California ResidentsRefer to the
These jobs might be a good fit
