hero

Careers in San Antonio, TX

Explore career opportunities within the San Antonio region.
Search 
jobs
 2,965
Explore 
companies
 146
Talent
 network
My job alerts

Security GRC Analyst III - Cybersecurity Training Program

Frost

Frost

IT
San Antonio, TX, USA
Posted on Jan 14, 2025
Apply now

Job Description

It’s about taking care of people, our people.

Do you like solving complex problems? Are you the kind of person that is energized by a challenge? Do you want the autonomy to find solutions and truly build something new? If so, being a Security GRC Analyst III at Frost could be the position you’re looking for.

At Frost, it’s about more than a job. It’s about having a flourishing career where you can thrive, both in and out of work. At Frost, we’re committed to fostering an environment that reflects our values and encourages team members to be the best they can be. In joining our adaptable, integrity-driven team, you’ll become part of Frost’s over 150-year legacy of providing unparalleled banking services.

Who you are:

As a Security GRC Analyst III with Frost, you keep us safe! In this role, you will be responsible for keeping our data and IT systems secure by conducting comprehensive risk assessments and mitigating potential risks. You’re a problem solver who enjoys identifying and evaluating with precision, and you will use your collaboration skills to work with stakeholders and IT teams. Using your analytical skills and observant mindset you will do this with Integrity, Caring, and Excellence in mind!

What you’ll do:

  • Conduct IT risk assessments and evaluate technology systems, business processes, and regulatory requirements to mitigate risk exposure through appropriate control recommendations

  • Identify and assess IT risks with accuracy, focusing on business impact, likelihood, exposure, and relevance to the organization's security and operational landscape

  • Monitor and report on IT risk management activities, providing insights and recommendations to leadership on governance, compliance, and risk mitigation strategies

  • Coordinate and lead internal IT audits, including preparing relevant documentation and managing audit findings to ensure effective risk controls and compliance with policies

  • Review functional and non-functional IT business requirements to propose clear, business-appropriate security controls in the context of project management and delivery

  • Understand, evaluate, and interpret internal IT standards, policies, and governance frameworks to guide business partners in the design and implementation of effective security controls

  • Make decisions on residual risk ratings to accurately assess the effectiveness of security controls and risk mitigation strategies in IT environments

  • Collaborate closely with second and third line of defense, including IT compliance, internal audit, and external regulatory departments, to track and mitigate IT risks across the organization

  • Prepare detailed reports on GRC IT activities, including risk assessments, compliance statuses, audit findings, and recommendations for improving IT governance and risk management

  • Always take action using Integrity, Caring, and Excellence to achieve all-win outcomes

  • Curate annual and targeted information security training modules and awareness campaigns

  • Develop and lead enterprise-wide phishing campaigns

  • Maintain and report on Cybersecurity program talent qualifications and certifications

  • Oversee departmental regulatory exams and response submission

  • Complete and respond to customer requests for information regarding the Cybersecurity program

What you’ll need:

  • Bachelor’s degree in Computer Science, Information Security, or equivalent work experience

  • Expert understanding and ability to independently identify issues across Information Security in IT risk management and controls, typically requiring a minimum of 6+ years of experience

  • Advanced understanding of the role of Information Security risk management, software engineering, and application development methodologies in a complex multi-project environment

  • Proven experience in the design and development of IT Security solutions for complex multi-component systems

  • Demonstrated ability to work collaboratively with individuals within both the technical community and senior leadership

Additional Preferred Skills:

  • CISSP, CRISC, or other industry security certifications highly beneficial

Our Benefits:

At Frost, we care about your health, your family, and your future and strive to have our benefits reflect that. This includes:

  • Medical, dental, vision, long-term disability, and life insurance

  • 401(k) matching

  • Generous holiday and paid time off schedule

  • Tuition reimbursement

  • Extensive health and wellness programs, including our Employee Assistance Program

  • Referral bonus program + more!

Since 1868, Frost has dedicated their expertise to provide exceptional banking, investment, and insurance services to businesses and individuals throughout Texas. Frost is one of the 50 largest U.S. banks by asset size and is a leader in banking customer satisfaction. At Frost, it’s about being part of something bigger. If this sounds like you, we encourage you to apply and see what’s possible at Frost.

Apply now
See more open positions at Frost
Privacy policyCookie policy