BBVA Compass IT SECURITY ANALYST, JR in birmingham, Alabama


At BBVA, we’re working to make banking better for everyone. That’s where you come in. We’re looking for smart, team-oriented people who want to be part of a first-class workforce that gives people the tools they need to meet their financial goals, all while delivering an outstanding client experience.


About the Role:

This role plays an integral part in the risk managmeent for our third party vendors. The team will work with our vendors to identify any IT risks gaps associated with their platforms and confirm adherence to the BBVA Compass IT Risk Policy.

This is a great opportunity for anyone in Risk MAnagement with an interest in IT or anyone in IT interested in risk mitigation.

The daily functions would include:

  • Perform targeted vendor information security reviews and assessments

  • Perform data center site visits when necessary

  • Address audit related matters when needed, including oversight, internal facilitation, review and remediation efforts

  • When necessary assist in the development of information security policies and standards to align with the policy framework

  • When necessary assist with development of technical and process related documentation, including operating procedures, control manuals, business requirement documents

  • Participate actively in the risk management process.

  • When necessary assist in the development of internal compliance and risk dashboards

  • Perform remediation activities for areas of information security non-compliance and monitor implementation progress (as necessary)

  • Assist with the routine reporting of compliance initiatives and remediation activities

  • Engage with stakeholders cross organizationally to ensure vendor information security issues or inquiries are properly addressed

  • Demonstrate entry level knowledge in ISO, COBIT or other information security / IT controls frameworks


  • BA/BS (or equivalent experience) required

  • 1-3 years’ experience in IT, IT Audit, or equivalent risk management experience

  • Strong critical thinking and problem solving skills; knows when to escalate issues and risks to upper management

  • Strong communication skills – verbal, listening, written, and presentation

  • Strong technical skills (MS Powerpoint, Word, Excel, SharePoint, Project, Visio etc.)

  • Capable of working independently, as well as in team / collaborative settings


  • Demonstrate knowledge in ISO, COBIT or other information security / IT controls frameworks

  • Understanding of IT audit, compliance, and risk management methodologies and/or approaches

  • Basic understanding of present Information Security frameworks, risks, and industry/common technologies

Preferred Skills:

  • Strong organizational skills; ability to balance multiple tasks simultaneously

  • Excellent interpersonal skills; comfortable dealing with a large span of people from middle tier management to Compliance Analysts

  • Strong relationship management skills; recognizes the benefit of investing in relationships

  • An excellent understanding of business ethics and the ability to keep sensitive information confidential

Job ID 2018-114642