Sr. Information Security Risk Analyst

Contract Hybrid (MonThu on-site / Fri remote) Downtown Kansas City MO

Targeted compensation: $100000$120000

Applicants must have legal authority to work in the United States. Visa sponsorship is not available for this role.

A Kansas City financial institution is hiring a Sr. Information Security Risk Analyst to help the organization stay ahead of evolving threats and risk. Youll sit on the Corporate Information Security and Privacy (CISP) team working closely with technology and security partners to keep data protection efforts practical visible and well understood across the business plus other initiatives as priorities shift.

What Youll Own

• Advise business and technology leaders on information security risk recommending practical risk treatment options so stakeholders can make informed decisions.
• Track and report on program performance turning metrics and other evidence into clear actionable recommendations for leadership.
• Support PCI-DSS compliance work and assessments partnering with technology and business teams across the organization.
• Contribute to internal and external audits including third-party security assessments.
• Run multiple workstreams at once across different stakeholders keeping everyone informed on status risk and open issues.
• Stay current on security best practices relevant regulations and emerging threats and apply that knowledge day to day.

What You Bring

• 5 years in information security security audit or risk management/compliance.
• Bachelors degree in MIS Computer Science or a related field or equivalent experience.
• Hands-on knowledge of PCI-DSS and how organizations operationalize it.
• Solid grounding in risk and control frameworks (COSO COBIT ISO NIST ITIL).
• Experience running information security risk assessments and audits.
• Comfortable juggling multiple priorities in a fast-changing environment.

Nice to Have

• CISSP CRISC Security or PCI-DSS ISA/PCIP.
• Banking or financial services background.