Job Description

Centurion is seeking a skilled Information Security Analyst to support security and privacy efforts across all programs, projects, IT systems, and applications. This role will work closely with the Information Security Office (ISO), providing expertise in governance, risk, and compliance, while ensuring appropriate security controls are implemented and maintained. The ideal candidate is detail-oriented, collaborative, and experienced in applying security frameworks to real-world business and technology environments.

Key Responsibilities

• Support Information Security and Privacy initiatives across business areas and vendor engagements.

• Manage and update information security documentation within a Governance, Risk, and Compliance (GRC) system.

• Develop and maintain System Security Plans (SSPs) in collaboration with business stakeholders.

• Represent the Information Security Office in PMO-led projects, ensuring proper ISO engagement.

• Partner with teams to analyze challenges, propose compliant solutions, and deliver clear communications.

• Assist in the creation and maintenance of information security standards, policies, and procedures.

• Document security controls, including system diagrams, risk assessments, and control narratives.

• Review contracts and vendor documentation to ensure adequate information security protections.

• Conduct research on emerging information security and privacy practices to strengthen internal processes.

Required Qualifications

• Minimum of 3 years’ experience in information security concepts related to governance, risk, and compliance.

• Strong knowledge of information security principles, methods, and IT infrastructure management.

• Experience with security frameworks (e.g., NIST, ISO 27001, COBIT).

• Proven ability to organize work, prioritize tasks, and meet deadlines independently.

• Experience drafting policies, standards, and procedures related to Information Security and Privacy.

• Ability to interpret technical documentation, flow diagrams, and process maps.

• Strong communication skills with the ability to write clearly for varied audiences.

• Proficiency in creating diagrams, flowcharts, and spreadsheets.

• Understanding of general contract terms and conditions related to information security.

Preferred Qualifications

• Bachelor’s degree in Computer Science, Information Systems, or related field.

• Professional certifications such as CISA, CISSP, or equivalent.

• Prior experience in the financial services industry.

• Knowledge of cloud and application security controls.

• Familiarity with information security regulations such as GLBA, GDPR, PCI, and privacy regulations including GDPR, CCPA, VCDPA.

Why Join Us?

• Play a vital role in protecting sensitive information and strengthening enterprise-wide security posture.

• Collaborate across teams and gain exposure to a broad range of security and compliance initiatives.