Envestnet is seeking a passionate and talented Senior Information Security Specialist to join our MoneyGuide team. This position is expected to report to our Powhatan, VA office.

Envestnet is transforming the way financial advice and wellness are delivered. Our mission is to empower advisors and financial service providers with innovative technology, solutions, and intelligence to make financial wellness a reality for everyone.

Since our founding 20 years ago, we are fully vested in helping people live an intelligent financial life. If you love the idea of working in a Fintech company with the environment and excitement of a start-up where you are making everyday impact - then read on.

Job Summary:

The Senior Information Security Analyst serves as the liaison between the MoneyGuide team and the Information Security team at Envestnet. Utilizing a diverse technical background, the Senior Information Security Specialist defines, monitors, and enforces security policies throughout the MoneyGuide division of Envestnet. This role is responsible for strategically defining processes and efficiencies to effectively respond to all client security requests.

Job Responsibilities:

• Evaluate, enhance, and support information security strategies, policies, standards, controls, and processes, including standards development, risk management, compliance management, and information security-related processes and procedures.
  
• Lead security reviews initiated by customers based on company policies and practices. Includes, but not limited to, written reviews, onsite reviews, email correspondence, and conference calls.
  
• Maintain the Loopio Database so questionnaires can be pre-populated.
  
• Actively review IT logs, building physical access logs, CCTV recordings (as required), and established procedures for reporting and investigating suspicious activities, and/or employee violations.
  
• Assess our current technology infrastructure to identify key risk areas and ensure adequate levels of controls are in place to address those risks.
  
• Create and update security controls and perform GAP analyses.
  
• Conduct regular internal application and network penetration tests and track associated remediation plans.
  
• Review Change Control process to ensure our policies are followed.
  
• Review and track remediation of SSAE-16 SOC reports from our partners.
  
• Coordinate with the security team on SOC and SOX requirements.
  
• Define, procure, secure, and oversee PKI Certificate Management process and standards.
  
• Stay current of emerging industry security threats, hacking techniques, and prevention/monitoring tools.
  
• Maintain process exception and access approval processes.
  
• Document and keep-current security options and controls in our applications.
  
• Scan company-owned PCs for unsanctioned software/hardware and review logs.
  
• Work occasional evening/weekend hours for implementation or oversight of processes.
  
• Adherence to and application of Envestnet legal, compliance, risk, business continuity and administrative policy within the role and department(s) including the timely completion of training & awareness, affirmations and testing as requested.
  
• As part of the responsibilities for this role, you will understand and readily support Envestnet's established corporate business practices, policies, internal controls and procedures designed to create value or minimize risk.

Required Qualifications:

• Bachelor's degree in information security, information technology, computer science or related technical field.
  
• Extensive knowledge of user administration, authentication methods, file permissions, groups, group policy, and domain concepts for Windows networking environments.
• Understanding of network controls including Firewalls, ACL, and Intrusion Detection Systems.
  
• Excellent writing, documentation, and communication skills.
  
• Ability to independently assess, identify, and document system security deficiencies and recommend solutions.
  
• 5 years prior experience in IT Server/network administration and computer operations is desired.
  
• 5+ years of practical experience in information security, operational controls, and risk management.
  
• Experience in the financial services industry is desired.
  
• Industry related certifications (i.e. CISSP, CISM, CISA, ITIL) are preferred

About Us:

Envestnet is a leading independent provider of technology-enabled investment and practice management solutions to financial advisors who are independent, as well as those who are associated with small or mid-sized financial advisory firms and larger financial institutions. Envestnet's technology is focused on addressing financial advisors' front, middle, and back-office needs while leveraging our platform to grow their businesses and expand client relationships.

We offer a highly competitive compensation and benefits package as well as the excitement, challenges, and rewards of a fast-growing, entrepreneurial company.

Why Choose Envestnet:

• Be a member of a leading financial services and products innovation company
  
• Competitive Compensation/Total Reward Packages that include:
  
  • Health Benefits (Health/Dental/Vision)
    
  • Paid Time Off (PTO) & Volunteer Time Off (VTO)
    
  • 401K - Company Match
    
  • Annual Bonus Incentives
    
  • Parental Stipend
    
  • Tuition Reimbursement
    
  • Student Debt Program
    
  • Charitable Match
    
  • Wellness Program
• Work on global projects with diverse, energetic, team members who respect each other and celebrate differences.

Envestnet is an Equal Opportunity Employer.

Envestnet refers to the family of operating subsidiaries of the public holding company, Envestnet, Inc. (NYSE: ENV).

#LI-AQ1