The Data Security and Infrastructure Risk (DSIR) Team sits within the Wealth Management (WM) Risk organization and strives to find the right balance between risk management and business enablement. The team works to ensure that our clients' sensitive Personally Identifiable Information (PII) is stored and replicated securely, used properly, and accessed by only authorized individuals. The group also helps WM meet or exceed Firm and regulatory standards by applying additional controls in areas such as: Access Management, Business Resilience and Stability, and Vendor Risk. Finally, through client and workforce education and engagement, the team provides resources to help protect our employees and clients from cyber-enabled fraud. Role Description The End User Security Team seeks an Associate to serve as a Business Unit Information Security Officer (BUISO) to help ensure the protection of our clients' sensitive PII. This individual will play a key role in driving the implementation of preventative and detective controls to reduce the risk of intentional and unintentional data leakage from WM employees and contingents. Primary Responsibilities: - Ensure adherence with Wealth Management's Entitlement Management program, including entitlement design functionality, usage collection and analysis, and strategic initiatives to reduce broad data and PII access - Support access management integration processes as part of future mergers and acquisitions - Coordinate, review, and action access/information security exception requests with business management and local risk teams to ensure alignment and risk awareness - Help the team deliver on the framework and strategy for end user security controls regarding access and exception management - Participate in various internal reviews and readiness examinations to ensure the business is adequately prepared for all audit, compliance, and regulatory reviews - Serve in the capacity of a BUISO, performing both critical data security operational work and providing appropriate guidance and best practices upon request - Maintain an accurate and detailed record of team procedures and request tracking - Create and analyze ad hoc and regular reporting for management and in support of various governance committee meetings - Engage with WM Business partners to help create innovative technology and process solutions, balancing risk management and business enablement - Identify, raise, and discuss information security requirements and resolve any issues in partnership with the Firm's technology and security organizations