Sr. Information Security Risk Analyst

UMB Financial Corporation

Job Overview

Location

MO - Kansas City - 1010 Grand Blvd

Job Type

Full-time

Full Job Description

📋 Description

• Own the evolution of UMB’s enterprise-wide data governance and information security posture as a Sr. Information Security Risk Analyst on the Corporate Information Security and Privacy (CISP) team. You will serve as the linchpin between data governance, enterprise technology, and information security, ensuring that every byte of sensitive data is classified, protected, monitored, and disposed of in accordance with the highest industry standards.
• Translate regulatory requirements and emerging threats into practical, enforceable policies and standards that scale across a 100-year-old financial institution. You will author, revise, and socialize policies covering data classification, retention, minimization, encryption, access control, and incident response, ensuring stakeholders in every line of business understand their role in safeguarding client and corporate information.
• Drive a multi-year roadmap that modernizes UMB’s data governance capabilities—from legacy mainframe repositories to cloud-native data lakes—by prioritizing initiatives based on risk exposure, regulatory deadlines, and business value. You will build business cases, secure funding, and track milestones while communicating progress to executives, auditors, and regulators.
• Conduct continuous risk and maturity assessments against frameworks such as NIST CSF, ISO 27001, COBIT, and COSO. You will design control tests, gather evidence, score residual risk, and present findings in plain language to both technical teams and non-technical executives, ensuring that remediation plans are realistic, funded, and tracked to closure.
• Generate and automate metrics that quantify the effectiveness of data protection controls. From dashboards that show encryption coverage rates to heat maps that highlight high-risk data stores, your insights will guide investment decisions and demonstrate compliance to federal banking regulators and external auditors.
• Partner with Enterprise Technology to configure and tune data security settings across on-prem databases, SaaS platforms, and cloud data warehouses. You will advise on DLP rules, tokenization, masking, key management, and privileged access controls, ensuring that security is embedded during design rather than bolted on post-deployment.
• Lead cross-functional incident response tabletop exercises focused on data breaches, ransomware, and insider threats. After each drill, you will document gaps, update playbooks, and deliver executive briefings that turn lessons learned into measurable improvements in detection and response times.
• Champion a culture of data minimization and responsible retention by designing automated workflows that identify redundant, obsolete, or trivial (ROT) data and trigger secure disposal. You will work with Legal, Compliance, and Records Management to balance regulatory retention mandates with privacy-by-design principles.
• Mentor junior analysts and rotational program associates, sharing deep expertise in risk methodologies, control design, and regulatory interpretation. Your coaching will expand the team’s bench strength and ensure continuity of knowledge as UMB grows through acquisition and digital transformation.
• Represent UMB at industry forums, regulatory roundtables, and threat-intelligence sharing groups, bringing back actionable insights that keep the bank ahead of adversaries and aligned with sector-specific guidance such as FFIEC, OCC, and FDIC cybersecurity statements.

🎯 Requirements

• Bachelor’s degree in Management Information Systems, Computer Science, or related discipline OR equivalent work experience
• Minimum 5 years of hands-on experience in information security with a specific focus on information and data governance
• Demonstrated working knowledge of risk and controls frameworks such as COSO, COBIT, ISO 27001/2, NIST CSF, and ITIL
• Proven ability to conduct information security risk assessments and audits, translating findings into actionable remediation plans

🏖️ Benefits

• Comprehensive benefits package including medical, dental, vision, and company-paid life insurance with additional voluntary options
• 401(k) plan with competitive company match and annual incentive pay opportunities
• Generous paid time off, paid holidays, and flexible work arrangements (hybrid schedule: Mon–Thu on-site, Fri remote)
• Tuition reimbursement, fitness reimbursement, and an associate wellbeing program to support continuous learning and personal health

Skills & Technologies

Senior

Remote

Degree Required

Ready to Apply?

Apply Externally

You will be redirected to an external site to apply.

UMB Financial Corporation

Visit Website

About UMB Financial Corporation

UMB Financial Corporation is a diversified financial services holding company headquartered in Kansas City, Missouri. Through its banking subsidiary, UMB Bank, n.a., the company offers commercial and personal banking, institutional asset servicing, healthcare payment solutions, and investment management. Founded in 1913, it operates branches and offices in multiple U.S. states and serves middle-market companies, public institutions, and affluent individuals. The firm emphasizes fiduciary services, treasury management, and payment technologies, leveraging its correspondent banking network to provide custody, fund accounting, and global investment solutions for asset managers and alternative investment funds.

View Company Profile