Third Party Information Security Consultant

Location:

4910 Tiedeman Road, Brooklyn Ohio

Third Party Sr. Info Security Consultant provides technical expertise on the development and support of all activities, processes, and tools needed to protect information assets in accordance with KeyBank policies and standards.

Essential Functions

• Implement holistic risk and control analysis including strategic mitigation planning and execution.
• Strong business/financial knowledge; in-depth understanding and interpretation of security policies, leading to security best practice implementation and recommendations.
• Utilize industry leading tools and solutions to enhance the security posture for the company; subject matter expert (SME) in one or more security/technology areas.
• Demonstrated presentation development; tailors the message as needed; comfortable presenting to all levels; strong writing skills; demonstrates creativity in articulating messages that support recommendations.
• Performs other duties as assigned; duties, responsibilities and/or activities may change, or new ones may be assigned at any time with or without notice
• Comply with all KeyBank policies and procedures, including without limitation, always acting professionally, conducting business ethically, avoiding conflicts of interest, and acting in the best interests of Key's clients and Key.
• Up to 15% Domestic Travel. This position may also require international travel in the next 6-18 months.

Education

• Bachelor's Degree (preferred) OR equivalent experience

Work Experience

• 7+ years of broadly based progressive experience in information systems or information security environments (required)

Skills

• Working knowledge of the importance of inter-team collaboration in breaking down silos and achieving business results; ability to lead employees from various functions to communicate, coordinate work across divisions, and collaborate in solving problems as one team.
• Working knowledge of major functional processes and associated operating requirements; ability to apply this knowledge appropriately to diverse situations.
• Basic understanding of the importance of "big picture" thinking and planning; ability to apply organizational acumen and competitiveness to identify and maintain focus on key success factors for the organization.
• Extensive experience with techniques and tools that promote effective analysis; ability to determine the root cause of organizational problems and create alternative solutions that resolve these problems.
• Extensive experience with effective communication concepts, tools and techniques; ability to effectively transmit, receive, and accurately interpret ideas, information, and needs through the application of appropriate communication behaviors.
• Extensive experience with being proactive and committing to action on self-identified job responsibilities and challenges; ability to seek out work and the drive to accomplish goals.
• Working knowledge of tools, techniques, approaches and processes of cybersecurity risk management; ability to ensure organizational network operation and minimize negative effect by cybersecurity risks.
• Working knowledge of IT security policies, standards, and procedures; ability to utilize a variety of administrative skill sets and technical knowledge to ensure cyber security compliance.
• Working knowledge of methods and processes to monitor, analyze and respond to network attacks, intrusions or any unauthorized actions; ability to use techniques and tools to perform network defense.
• Working knowledge of techniques, approaches and processes of digital threats; ability to detect, monitor, analyze and prevent digital threats.
• Extensive experience with the processes, tools and techniques of information security management; ability to deploy and monitor information security systems, while detecting, controlling and preventing violations of IT security.
• Working knowledge of information security audits; ability to assess the effectiveness of information security measures, identify potential risk exposures, and protect the availability, confidentiality and audit trails of information from destruction or manipulation.
• Basic understanding of information security architecture; ability to use the tools and techniques in creating software, hardware, networking and application infrastructure for information security.

COMPENSATION AND BENEFITS

This position is eligible to earn a base salary in the range of $96,000.00 - $181,000.00 annually. Placement within the pay range may differ based upon various factors, including but not limited to skills, experience and geographic location. Compensation for this role also includes eligibility for incentive compensation which may include production, commission, and/or discretionary incentives.

Please click here for a list of benefits for which this position is eligible.

Key has implemented an approach to employee workspaces which prioritizes in-office presence, while providing flexible options in circumstances where roles can be performed effectively in a mobile environment.

Job Posting Expiration Date: 04/29/2026

KeyCorp is an Equal Opportunity Employer committed to sustaining an inclusive culture. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, genetic information, pregnancy, disability, veteran status or any other characteristic protected by law.

Qualified individuals with disabilities or disabled veterans who are unable or limited in their ability to apply on this site may request reasonable accommodations by emailing HR_Compliance@keybank.com.

#LI-Hybrid