This job board retrieves part of its jobs from: Toronto Jobs | Emplois Montréal | IT Jobs Canada

Get your new job in the State of Ohio! Updated everyday

To post a job, login or create an account |  Post a Job

Vulnerability Management Senior Analyst

Alliance Data

This is a Full-time position in Columbus, OH posted November 22, 2021.

It’s fun to work in a company where people truly BELIEVE in what they’re doing !
Job Summary

**This position is currently available for work at home to candidates that reside in the following states: Idaho, Kansas, New Mexico, Ohio, Pennsylvania, Texas, Utah or who reside in neighboring states and within 60 miles of Chadds Ford, PA or Lenexa, KS.**

The Sr.

Analyst, Info Sec is responsible for overseeing and managing multiple risks, audits, and controls within the Information Technology Domain.

This person is expected to be a strategic partner to control owners, and second line of defense.

The position reports to the Manager, Information Security and works closely with other Information Security Domain Champions.

Job Description

Essential Job Functions

Control Coaching, Consulting, and Collaboration
– Partner with IT Control Owners to identify, resolve, mitigate, or compensate for control failures identified through risk assessments, internal/external audits, or cyber security tools and processes.

Develop proactive risk and control assessment strategies to stay ahead of emerging risks and regulatory requirements.

Collaborate with the IT Risk Second Line of Defense and Privacy Partners when formulating strategies to maximize coverage and work paper reuse.

General Information Technology
– Foundational to intermediate knowledge of IT tools and practices including, but not limited to: Networking, LDAP Directories, Vulnerability/Patch Management, Change Management, Incident Management, Server and Desktop Management, Mainframe Technologies, Encryption and Key Management, Cloud Architecture and Computing, Software Application General Computing Controls, Business Continuity/Disaster Recovery, Software Development Lifecycle, Access Management, and Cyber Security Tooling.

Metrics and Presentation Skills
– Ability to produce meaningful and actionable metrics through data analysis.

Conduct data analysis exercises using Excel Pivot Tables, and other data driven analysis tools.

Produces presentations at various levels of abstraction dependent on intended audience using Microsoft Power Point, Microsoft Visio, or equivalent tools.

Intermediate to expert English writing skills expected.

Human Relations
– Ability to diffuse problematic situations and manage through conflict resolution.

Utilizes soft skills such as: Selective Agreement, Reflective Listening, Voice Inflection, and Empathy.

Ability to take complex concepts and break down into laymen’s terms or analogies that help with other’s understanding.

Viewed as an enabling partner that provides options or information when saying no to business or IT requests.

Seen by leadership and peers as creditable, trustworthy and respectful.

Utilizes subject matter expertise to guide and coach less experienced team members.

Duties will include:

  • Working in Qualys and Kenna
  • Assisting our internal customers with understanding vulnerabilities and remediation efforts
  • Research related to tools and vulnerabilities
  • Data analysis
  • Vendor relationships
  • Assist with maturation of VM, Policy Compliance, and FIM operations
  • Process documentation and process maturity

Reports to: Manager, Information Security

Working Conditions/ Physical Requirements: Normal office environment.

As the need of the business continue to evolve, this role may be asked to work an on-call rotation to include evenings or weekends.

Direct Reports: None

Minimum Qualifications :

Three or more years in Risk Management, Audit, Compliance, Information Technology

Preferred Experience:

Associates Degree or equivalent experience in Computer Science, Networking or Information Technology

Certifications: One or more relevant professional technical certifications (examples: CISSP, CISA, CISM, OR Security+)


Associate’s Degree


Certified Information Security Manager (CISM)
– Issuer, Certified Information Systems Auditor (CISA)
– The Information Systems Audit and Control Association, Inc., Certified Information Systems Security Professional (CISSP)
– International Information System Security Certification Consortium

Work Experience
Three or more years

Auditing, Compliance, Data Protection, FFIEC, Information Technology (IT), NIST 800-53, PCI DSS Compliance, Risk Management, Sarbanes-Oxley Act (SOX)
About Alliance Data Card Services
Alliance Data Card Services provides market-leading private label, co-brand, general purpose and commercial credit card programs, digital payments and Comenity-branded financial services.

Using the industry’s most comprehensive and predictive data set, advanced analytics, and broad-reaching capabilities, Alliance Data Card Services has been helping partners increase sales and provide greater value to their customers for more than 30 years.

Follow Alliance Data Card Services on Twitter, Facebook, LinkedIn and Instagram.

About Bread ®
A division of Alliance Data, Bread is a leading digital payments company that works with merchants and partners to personalize payment options for their customers.

Through its full-funnel recommendation engine, Bread empowers merchants to sell more, improve conversion and lift average-order-value.

Follow Bread on Twitter, Facebook and LinkedIn.

Alliance Data Card Services and Bread are a proud part of the Alliance Data enterprise, an S&P MidCap 400 company that consists of businesses that together employ approximately 8,000 associates worldwide.

  • Alliance Data offers a competitive salary, a comprehensive selection of benefit options including 401(k).

  • All job offers are contingent upon successful completion of credit and background checks.

  • Alliance Data is an Equal Opportunity Employer.

  • Alliance Data will provide accommodations to applicants needing accommodations to complete the application process.

  • Any applicant offered employment will be required to establish that they are legally authorized to work in the United States for Alliance Data.

  • Alliance Data participates in E-Verify.

  • Alliance Data will consider for employment qualified applicants with criminal and credit histories in a manner consistent with the requirements of all applicable laws, including the City of Los Angeles’ Fair Chance Initiative for Hiring Ordinance.

  • Alliance Data complies with the Americans with Disabilities Act (ADA), as amended, and all applicable state/local laws.

    Applicants with disabilities may contact Alliance Data to request an arrange for accommodations.

    If you need assistance to accommodate a disability, you may request an accommodation at any time.

    Please contact the Recruiting Team at

Job Family:
Information Technology

Job Type: