Information Security & Technology Risk Analyst

AgTrust Farm Credit

$75K — $95K *
Fort Worth, TX 76137In-Person
Finance & Insurance
Less than 5 years of experience
2 months ago
Job Overview by Ladders

Qualifications

  • Bachelor's degree in information systems, cybersecurity, computer science, or a related field.
  • 4-7 years of experience in IT risk management, cybersecurity governance, IT audit, or technology compliance.
  • Familiarity with cybersecurity frameworks such as NIST and ISACA.
  • Experience with IT general controls including access management and change management.
  • Ability to communicate technical risks in clear business terms.
  • Strong analytical, communication, and collaboration skills.

Responsibilities

  • Monitor and support IT general controls for internal systems and AI-enabled processes.
  • Evaluate cybersecurity controls associated with outsourced IT services.
  • Assist in identifying, assessing, and mitigating technology-related risks.
  • Support incident response activities and documentation for cybersecurity events.
  • Maintain alignment with recognized cybersecurity frameworks.
  • Coordinate security awareness efforts and periodic reporting to leadership.
  • Maintain and periodically test business continuity and disaster recovery plans.

Benefits

  • Make a real impact in strengthening technology systems for the agriculture sector.
  • Gain experience in a hybrid technology environment, overseeing both internal and outsourced IT services.
  • Engage in hands-on, meaningful work focused on IT controls and cybersecurity oversight.
  • Collaborative culture with leadership and technology partners to contribute to enterprise initiatives.
  • Opportunities for professional growth and expertise in cybersecurity frameworks and regulatory compliance.
Full Job Description
Position Summary

AgTrust is seeking an Information Security & Technology Risk Analyst to help strengthen the organization's cybersecurity and technology risk oversight. This role oversees the governance of IT controls, information security practices, and third-party technology services to ensure AgTrust's systems and data remain secure and resilient.

The position works closely with internal teams and outsourced technology providers to monitor cybersecurity controls, evaluate technology risks, and support regulatory compliance. This role also serves as the Association's Designated Security Officer, coordinating the Information Security Program and helping leadership understand and manage technology-related risks across the organization.

This is a hands-on governance and security oversight role focused on IT controls, cybersecurity risk, and vendor technology oversight rather than day-to-day system administration or engineering.

Key Responsibilities

IT Risk & Security Oversight:
  • Monitor and support IT general controls (ITGCs) for internal systems, automation tools, and AI-enabled processes.
  • Evaluate cybersecurity controls and security practices associated with outsourced IT services provided by the District Funding Bank.
  • Assist in identifying, assessing, and mitigating technology-related risks impacting systems, data, and operations.
  • Support coordination of incident response activities and documentation for technology or cybersecurity events.
  • Maintain alignment with recognized frameworks such as those from the National Institute of Standards and Technology (NIST) and ISACA COBIT.

Information Security Program:
  • Serve as the Association's Designated Security Officer, helping oversee the Information Security Program.
  • Maintain and support information security policies, procedures, and standards.
  • Coordinate security awareness efforts and periodic cybersecurity reporting to leadership.
  • Assist with monitoring and responding to cybersecurity threats impacting internal or outsourced systems.

Technology Resilience:
  • Maintain and periodically test business continuity and disaster recovery plans for critical systems.
  • Coordinate recovery planning and testing with internal stakeholders and the District Funding Bank.

Third-Party Technology Risk:
  • Assist in evaluating and monitoring risks associated with technology vendors and outsourced IT services.
  • Conduct vendor security reviews, documentation, and follow-up on risk mitigation activities.

Technology Governance & Compliance:
  • Develop and enforce IT and enterprise risk policies, procedures, and governance standards.
  • Collaborate with leadership to communicate risk awareness, provide guidance, and conduct training for staff.
  • Assist with internal and external audits related to IT controls, cybersecurity, and regulatory expectations.
  • Maintain documentation supporting technology risk management and regulatory expectations

Enterprise Risk Collaboration:
  • Provide input to the Enterprise Risk Management Workgroup on technology and cybersecurity risks.
  • Review business processes through an IT and data security lens to help identify potential vulnerabilities.

Strategic Initiatives & Project Support:
  • Provide risk guidance for organizational initiatives, system implementations, process improvements, and digital transformation projects.
  • Support evaluation of automation and AI processes for compliance, security, and operational efficiency.

What Success Looks Like in the First 12 Months

First 90 Days:
  • Gain an understanding of AgTrust's technology environment and outsourced IT services.
  • Review existing IT controls, security policies, and cybersecurity practices.
  • Build working relationships with internal teams and technology contacts at the District Funding Bank.

First 6 Months:
  • Identify opportunities to strengthen IT controls and cybersecurity documentation.
  • Support updates to the Information Security Program.
  • Participate in vendor technology risk reviews and security awareness efforts.

First 12 Months:
  • Improve visibility into technology and cybersecurity risks across systems and vendors.
  • Support successful completion of IT and cybersecurity audits or regulatory reviews.
  • Strengthen coordination with outsourced technology providers on security governance and resilience planning.

A Day in the Life of this Role

In this role, your work will focus on strengthening AgTrust's technology governance and cybersecurity posture while collaborating across teams and with our outsourced technology providers.

A typical week may include:
  • Reviewing system access reports and IT control activities to ensure appropriate access management and change controls are functioning effectively.
  • Meeting with contacts at the District Funding Bank to discuss security controls, vendor updates, or technology risk considerations.
  • Updating or refining information security policies and procedures to align with evolving regulatory expectations and cybersecurity frameworks from the National Institute of Standards and Technology or ISACA.
  • Supporting preparation for IT or cybersecurity audits, gathering documentation and validating controls.
  • Reviewing a vendor or third-party service to understand technology risks and security controls.
  • Helping plan or participate in business continuity or disaster recovery testing for critical systems.
  • Providing insight to leadership or the Enterprise Risk Management Workgroup on technology risks affecting business processes.

This Role Is a Great Fit If You...
  • Enjoy strengthening cybersecurity and IT control environments rather than performing system administration.
  • Like working at the intersection of technology, risk, and business operations.
  • Are comfortable collaborating with auditors, leadership, and outsourced technology providers.

This Role May Not Be the Best Fit If You
  • Are seeking a network engineering, system administration, or SOC analyst role.
  • Prefer a position focused solely on enterprise risk or policy development.
  • Are primarily looking for a people management role.

Qualifications

Required:
  • Bachelor's degree in information systems, cybersecurity, computer science, or a related field.
  • 4-7 years of experience in IT risk management, cybersecurity governance, IT audit, or technology compliance.
  • Familiarity with IT control and cybersecurity frameworks such as those from the National Institute of Standards and Technology, ISACA, or the International Organization for Standardization.
  • Experience with IT general controls (ITGCs) including access management, change management, and system monitoring.
  • Ability to communicate technical and cybersecurity risks in clear business terms.
  • Strong analytical, communication, and collaboration skills; able to work cross-functionally in a small team.

Preferred:
  • Professional certifications such as:
    • Certified Information Systems Auditor (CISA)
    • Certified Information Security Manager (CISM)
    • Certified in Risk and Information Systems Control (CRISC)
    • Certified Information Systems Security Professional (CISSP)
  • Experience in financial services or regulated industries.
  • Familiarity with third-party technology risk management and outsourced IT environments.
  • Experience supporting business continuity and disaster recovery planning.

* Ladders Estimates

Similar Jobs

Ad banner background

Get Ready For Your
Next Interview

More Finance & Insurance Jobs

Find similar Information Security & Technology Risk Analyst jobs:

NationwideFort Worth, TX