Information Security Analyst

Information Security Analyst

Community of Resources (COR) – Merchants & Marine Bank

Location: Candidates must reside within the geographic footprint of our operating locations
Work Authorization: U.S. work authorization required (no current or future sponsorship)

Protect What Matters—Where Your Expertise Has Real Impact

Community of Resources (COR), a division of Merchants & Marine Bank, is seeking an experienced Information Security Analyst to help safeguard the systems and data that support our customers and communities across the Gulf Coast. Serving the region since 1899, we are a well‑established financial institution with a strong commitment to security, integrity, and continuous improvement.

This role is ideal for a security professional who wants meaningful ownership, visibility with leadership, and the opportunity to influence and mature a bank-wide information security program.

Why This Role Stands Out

• Direct influence on the Bank’s information security strategy and risk posture
• Broad exposure across cybersecurity, IT risk, vendor management, and regulatory compliance
• Close collaboration with executive leadership, IT, Risk Management, and business teams
• A stable financial institution investing in modern security practices
• The opportunity to protect systems that truly matter—financial and customer data

What You’ll Do

As an Information Security Analyst, you will play a pivotal role in maintaining and enhancing the Bank’s Information Security Program. Your work will span operations, strategy, and risk management.

Key responsibilities include:

• Supporting and strengthening information security controls related to cybersecurity, business continuity, incident response, data protection, and third‑party risk
• Monitoring networks and systems for vulnerabilities, suspicious activity, and emerging threats
• Assisting with the full incident response lifecycle: detection, analysis, containment, remediation, and reporting
• Conducting IT and cybersecurity risk assessments, vendor risk assessments, and compliance reviews
• Translating emerging threats and vulnerabilities into clear, actionable risk mitigation plans
• Partnering with the Risk Management Officer to develop and maintain information security policies, standards, procedures, and security awareness programs
• Providing ongoing oversight of the Information Security Program, including audit and regulatory response coordination
• Evaluating security program maturity against recognized frameworks (e.g., FFIEC, NIST CSF)
• Developing meaningful security metrics to communicate risk trends and security posture to leadership
• Assessing cybersecurity risks related to new technologies, systems, and vendors prior to implementation
• Recommending security tools, controls, and process improvements to enhance protection and efficiency
• Collaborating with IT leadership, Risk Management, and the Chief Risk Officer on long‑term security strategy
• Driving continuous improvement through process enhancement and security program optimization

What We’re Looking For

We’re looking for a professional who combines strong technical knowledge with sound risk judgment and clear communication.

Qualifications include:

• Experience in information security, cybersecurity, IT risk, or a related discipline
• Strong understanding of cybersecurity concepts such as vulnerability management, threat monitoring, incident response, and vendor risk management
• Familiarity with financial institution regulations and cybersecurity expectations
• Experience working with or assessing against cybersecurity frameworks (NIST, FFIEC, etc.)
• Ability to translate technical risk into business‑relevant insights
• Strong documentation, analytical, and communication skills
• Financial services or regulated‑industry experience strongly preferred

Benefits & Rewards

We offer a comprehensive and competitive benefits package designed to support your career and well‑being:

• Medical, Dental, and Vision Insurance
• 401(k) Retirement Plan
• 11 Paid Holidays
• Generous Paid Time Off
• Life, AD&D, and Disability Insurance
• Student Loan Repayment & Tuition Assistance
• Fitness Center Reimbursement

· Bachelor’s degree in Information Technology, Computer Science, or a related field, or equivalent work experience.

· One to three years of experience in information security, IT, or a related field preferred.

· Exposure to or basic understanding of information security frameworks and regulatory expectations (FFIEC, NIST, etc.) preferred.

· Relevant certifications such as Security+, CISA, or progress toward CISSP/CISM are a plus.

· Strong analytical, organizational, and problem-solving skills.

· Ability to work independently and manage multiple priorities.

· Strong attention to detail and ability to document findings clearly.

· Effective verbal and written communication skills.

· Demonstrates integrity, professionalism, and a willingness to learn.

Working Conditions

· Office environment.

· Work hours for this position are typically 40 hours per week, Monday through Friday, but there may be occasions when extended hours are necessary based on business needs and specific situations.

· Some travel may be necessary (businesses, and branch locations).

· The employee is frequently required to operate a computer, printer, copy machine, calculator, telephone, and/or other office equipment.

· The employee frequently exchanges information with others and must be able to do so in an effective manner. Must have the ability to communicate clearly and effectively, both verbally and in writing, and across a variety of audiences.

Physical Requirements

· While performing the duties of this job, the employee is regularly required to sit, use hands to handle or feel and talk or hear. The employee is frequently required to reach with hands and arms. The employee is occasionally required to stand, walk and stoop, kneel, crouch or crawl.

· The employee must frequently lift and/or move up to 10 pounds and occasionally lift and/or move up to 25 pounds. Specific vision abilities required by this job include close vision, distance vision, color vision, peripheral vision, depth perception and ability to adjust focus.