Job Details
Information Risk Analyst
2025-08-06 Umpqua Bank Spokane,WA
Description:
About You:
Job Location(s): Ability to work fully onsite at posted location(s).
Spokane, WA
Vancouver, WA
Liberty Lake, WA
Portland, OR
Our Benefits:
We offer a competitive total rewards package including base wages and comprehensive benefits. The pay range for this role is $54,000.00 - $78,000.00, and the pay rate for the selected candidate is dependent upon a variety of non-discriminatory factors including, but not limited to, job-related knowledge, skills, and experience, education, and geographic location. The role may be eligible for performance-based incentive compensation and those details will be provided during the recruitment process.
We offer eligible associates comprehensive healthcare coverage (medical, dental, and vision plans), a 401(k)-retirement savings plan with employer match for qualifying associate contributions, an employee assistance program, life insurance, disability insurance, tuition assistance, mental health resources, identity theft protection, legal support, auto and home insurance, pet insurance, access to an online discount marketplace, and paid vacation, sick days, volunteer days, and holidays. Benefit eligibility begins the first day of the month following the date of hire for associates who are regularly scheduled to work at least thirty hours weekly.
Our Commitment to Diversity:
Umpqua Bank is an equal opportunity and affirmative action employer committed to employing, engaging, and developing a diverse workforce. All qualified applicants will receive consideration for employment without regard to race, color, national origin, religion, sex, age, sexual orientation, gender identity, gender expression, protected veteran status, disability, or any other applicable protected status or characteristics. If you require an accommodation to complete the application or interview(s), please let us know by email: [email protected].
To Staffing and Recruiting Agencies:
Our posted job opportunities are only intended for individuals seeking employment at Umpqua Bank. Umpqua Bank does not accept unsolicited resumes or applications from agencies and Umpqua Bank will not be responsible for any fees related to unsolicited resume submissions. Staffing and recruiting agencies are not authorized to submit profiles, applications, or resumes to this site or to any Umpqua Bank employee and any such submissions will be considered unsolicited unless requested directly by a member of the Talent Acquisition team.
Description
About Us:
At Umpqua, we create a great place to work by offering a unique brand of relationship banking and fostering a culture where associates thrive. We are dedicated to supporting our customers and communities, and we can only achieve this through the dedication of our associates.
We value Trust, Ownership, Growth, Empathy, Teamwork, Heart, Enjoyment, and Relationships, and we are eager to meet candidates who embody these core values. We are always on the lookout for results-focused individuals who can think independently, work collaboratively, and support our broader purpose.
Think of us as financial partners, because at Umpqua, we believe the best way forward is together. Together for people. Together for business. Together for better.
About the Role:
Perform risk management assurance activities, control assessments, governance and monitoring activities, security training and awareness campaigns, project engagement, and third-party information security assessment reviews. Provide consultation and guidance to the Technology Advancement Group (TAG) and other operational areas as needed.
- Maintain governance documentation detailing how information should be secured including the maintenance and development of internal process/procedure documentation including but not limited to technology and security policies and standards.
- Perform and document formal risk analysis and self-assessments of internal technology control processes and third-party service providers, leveraging industry standards like CIS, ITIL, Sarbanes-Oxley Act, FFIEC CAT, COBIT, ISO 27001, Cloud Security Alliance, etc.
- Analyze internal technology and security controls to ensure compliance with documented and approved standards. Ensure that information systems within environment comply with company policies, standards, and procedures.
- Drive and provide advisory and subject-matter expertise to technology teams and business units for IT and Cybersecurity compliance readiness.
- Responsible for tracking and monitoring gaps in the IT and Cybersecurity risk management programs. Maintain gap analysis documents; gather necessary information from technology and lines of business to identify areas to improve banking practices.
- Identify new assets and initiate the risk evaluation process to determine the risk ranking.
- Demonstrates compliance with all bank regulations for assigned job function and applies to designated job responsibilities - knowledge may be gained through coursework and on-the-job training. Keeps up to date on regulation changes.
- Follows all Bank policies and procedures, compliance regulations, and completes all required annual or job-specific training.
- Maintain a working knowledge of Bank's written policies and procedures regarding Bank Secrecy Act, Regulation CC, Regulation E, Bank Security and other regulations as applicable to this job description.
- May be asked to coach, mentor, or train others and teach coursework as subject matter expert.
- Actively learns, demonstrates, and fosters the Umpqua corporate culture in all actions and words.
- Takes personal initiative and is a positive example for others to emulate.
- Embraces our vision to become "Business Bank of Choice"
- May perform other duties as assigned.
About You:
- H.S. Diploma/GEDRequired
- Bachelor's Degree in Computer Science or equivalent Required.
- 4-7 years of experience in or a combination of information security, IT audit, or information technology operations. Required
- Experience in risk management processes and evaluating controls relative to information security frameworks such as CIS Top 20, COBIT, ISO 27002, Sarbanes-Oxley Act, NIST 800 series, or financial services regulatory frameworks such as the FFIEC IT booklets and Cybersecurity Assessment Tool (CAT).
- Knowledge of systems and network concepts including: access, authorization, configuration, and design.
- Demonstrate understanding of information security concepts including: encryption, access controls, network security, security operations, security architect, threat modeling and design.
- Knowledge of applicable regulatory requirements including PCI DSS, GLBA, Sarbanes-Oxley Act, and HIPAA.
- CISA, CRISC, CISSP, CISM, Security +, or SANS GIAC (GSNA, etc.) Preferred
Job Location(s): Ability to work fully onsite at posted location(s).
Spokane, WA
Vancouver, WA
Liberty Lake, WA
Portland, OR
Our Benefits:
We offer a competitive total rewards package including base wages and comprehensive benefits. The pay range for this role is $54,000.00 - $78,000.00, and the pay rate for the selected candidate is dependent upon a variety of non-discriminatory factors including, but not limited to, job-related knowledge, skills, and experience, education, and geographic location. The role may be eligible for performance-based incentive compensation and those details will be provided during the recruitment process.
We offer eligible associates comprehensive healthcare coverage (medical, dental, and vision plans), a 401(k)-retirement savings plan with employer match for qualifying associate contributions, an employee assistance program, life insurance, disability insurance, tuition assistance, mental health resources, identity theft protection, legal support, auto and home insurance, pet insurance, access to an online discount marketplace, and paid vacation, sick days, volunteer days, and holidays. Benefit eligibility begins the first day of the month following the date of hire for associates who are regularly scheduled to work at least thirty hours weekly.
Our Commitment to Diversity:
Umpqua Bank is an equal opportunity and affirmative action employer committed to employing, engaging, and developing a diverse workforce. All qualified applicants will receive consideration for employment without regard to race, color, national origin, religion, sex, age, sexual orientation, gender identity, gender expression, protected veteran status, disability, or any other applicable protected status or characteristics. If you require an accommodation to complete the application or interview(s), please let us know by email: [email protected].
To Staffing and Recruiting Agencies:
Our posted job opportunities are only intended for individuals seeking employment at Umpqua Bank. Umpqua Bank does not accept unsolicited resumes or applications from agencies and Umpqua Bank will not be responsible for any fees related to unsolicited resume submissions. Staffing and recruiting agencies are not authorized to submit profiles, applications, or resumes to this site or to any Umpqua Bank employee and any such submissions will be considered unsolicited unless requested directly by a member of the Talent Acquisition team.