BBVA Compass

IT Security Analyst

Posted Date 5 days ago(3/12/2018 5:24 PM)
EOE Statement
Equal Opportunity Employer - Minority/Female/Disability/Veterans.


At BBVA, we are working to make banking better for everyone. That is where you come in. We are looking for smart, team oriented people who want to be part of a first-class workforce that gives people the tools they need to meet their financial goals, all while delivering an outstanding client experience. Learn more below.


Essential Job Functions:

  • Provide compliance, risk, and controls expertise to support various IT Risk & Compliance initiatives and activities
  • Perform targeted compliance reviews on behalf of the IT Risk & Compliance department
  • Address audit related matters when needed, including oversight, internal facilitation, review and remediation efforts
  • Develop information security policies and standards to align with the policy framework
  • Develop technical and process related documentation, including operating procedures, control manuals, business requirement documents
  • Develop and maintain controls necessary to address regulatory, contractual and executive information security requirements
  • Participate actively in the risk management process
  • Develop internal compliance and risk dashboards
  • Perform remediation activities for non-compliance and monitor implementation progress (as necessary)
  • Routinely report on status of compliance initiatives and remediation activities
  • Engage with stakeholders cross organizationally to ensure IT Risk and Control issues or inquiries are properly addressed
  • Demonstrate entry level knowledge in ISO, COBIT or other information security / IT controls frameworks



  • BA/BS (or equivalent experience) required
  • 2+ years’ experience in IT, IT Audit, or equivalent risk management experience
  • Strong critical thinking and problem solving skills; knows when to escalate issues and risks to upper management
  • Strong communication skills – verbal, listening, written, and presentation
  • Strong technical skills (MS Powerpoint, Word, Excel, SharePoint, Project, Visio etc.)
  • Capable of working independently, as well as in team / collaborative settings



  • Demonstrate knowledge in ISO, COBIT or other information security / IT controls frameworks
  • Understanding of IT audit, compliance, and risk management methodologies and/or approaches
  • Basic understanding of present Information Security frameworks, risks, and industry/common technologies


Preferred Skills:

  • Strong organizational skills; ability to balance multiple tasks simultaneously
  • Excellent interpersonal skills; comfortable dealing with a large span of people from middle tier management to Compliance Analysts
  • Strong relationship management skills; recognizes the benefit of investing in relationships
  • An excellent understanding of business ethics and the ability to keep sensitive information confidential


Preferred Experience:

  • 2+ years of IT policy, controls, assessment and audit experience or equivalent
  • 2+ years of IT audit, governance, risk or compliance (GRC) experience or equivalent
  • Prior experience working within an IT organization, supporting enterprise level IT functions and processes required
  • Prior experience at Big 4 or comparable a plus


Preferred Certifications & Training:

  • CISA – Certified Information Systems Auditor (or equivalent preferred)
  • CISSP – Certified Information Systems Security Professional (not required, but a plus)
  • ITIL, or ISO Training (preferred)


Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed

Connect With Us!

Not ready to apply? Connect with us for general consideration.