AmeriSave Mortgage
IT Security Analyst / Manager
AmeriSave Mortgage, Washington, District of Columbia, us, 20022
IT Security Analyst/Manager
AmeriSave Mortgage has set the standard in online mortgage lending with over $130 billion in funded loan volume. As one of the top-rated, largest privately-owned online mortgage lenders in the nation, our mission is to deliver beneficial, responsible home lending solutions with unwavering integrity, dedication, and excellence. Our employees are the driving force behind our success. We believe in the power of a dynamic and talented workforce and creating an environment where your contributions are not just recognized, they're celebrated. Your success is our success, and we are seeking skilled professionals who are ready to bring their A-game, exceed benchmarks, and enhance the overall excellence of AmeriSave, while also growing and advancing their careers. At AmeriSave, we're one team with one shared dream - to be the best. Let's redefine excellence together! Role Overview
AmeriSave is seeking an IT Security Analyst/Manager (level dependent on skills and experience). You will be responsible for safeguarding AmeriSave's digital infrastructure by managing IT risk, implementing cybersecurity controls, optimizing secure email gateway configurations, and deploying AI-ready data loss prevention strategies. This role ensures compliance with internal policies and external regulations while supporting secure and efficient business operations. What You'll Do
Cybersecurity Operations Monitor and respond to security incidents across endpoints, networks, and cloud environments. Stay current on emerging threats and recommend proactive defense strategies. IT Risk Management Perform risk assessments for systems, vendors, and AI applications. Document and escalate risk acceptance decisions in alignment with AmeriSave's IT Risk Acceptance Procedure. Collaborate with Compliance and Legal to ensure alignment with GLBA, CCPA/CPRA, and PCI-DSS. Secure Email Gateway (SEG) Administration Manage and tune SEG platforms. Analyze threat reports and enforce email protection policies against phishing, spam, and malware. Coordinate with IT Infrastructure to align SEG and Microsoft Purview DLP configurations. AI-Ready Data Loss Prevention Implement DLP policies that support AI-driven detection and encryption of sensitive data in outbound communications. Evaluate AI systems for data privacy, integrity, and intellectual property leakage risks. Develop incident response playbooks for AI-related security events, including model retraining and anomaly detection. What You'll Need
Bachelor's degree in Information Security or related field. 3+ years of experience in IT security, IT risk management, or third party risk management. Hands-on experience with SEG platforms and DLP tools. Familiarity with AI governance frameworks and anomaly detection tools. Strong understanding of regulatory compliance (GLBA, CCPA/CPRA, PCI-DSS). Preferred Skills: Certifications: CISSP, CISM, GIAC, or equivalent. Experience with AI LLMs for data extraction and security analysis. Knowledge of NIST and SANS Institute cybersecurity frameworks and incident response protocols. Compensation: Target annual compensation is $100,000-$160,000 depending on level/experience. Benefits: 401(k), dental insurance, disability insurance, employee discounts, health insurance, life insurance, paid time off, 12 paid holidays per year, paid training, referral program, vision insurance, referral bonuses. AmeriSave is an equal opportunity employer. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.
AmeriSave Mortgage has set the standard in online mortgage lending with over $130 billion in funded loan volume. As one of the top-rated, largest privately-owned online mortgage lenders in the nation, our mission is to deliver beneficial, responsible home lending solutions with unwavering integrity, dedication, and excellence. Our employees are the driving force behind our success. We believe in the power of a dynamic and talented workforce and creating an environment where your contributions are not just recognized, they're celebrated. Your success is our success, and we are seeking skilled professionals who are ready to bring their A-game, exceed benchmarks, and enhance the overall excellence of AmeriSave, while also growing and advancing their careers. At AmeriSave, we're one team with one shared dream - to be the best. Let's redefine excellence together! Role Overview
AmeriSave is seeking an IT Security Analyst/Manager (level dependent on skills and experience). You will be responsible for safeguarding AmeriSave's digital infrastructure by managing IT risk, implementing cybersecurity controls, optimizing secure email gateway configurations, and deploying AI-ready data loss prevention strategies. This role ensures compliance with internal policies and external regulations while supporting secure and efficient business operations. What You'll Do
Cybersecurity Operations Monitor and respond to security incidents across endpoints, networks, and cloud environments. Stay current on emerging threats and recommend proactive defense strategies. IT Risk Management Perform risk assessments for systems, vendors, and AI applications. Document and escalate risk acceptance decisions in alignment with AmeriSave's IT Risk Acceptance Procedure. Collaborate with Compliance and Legal to ensure alignment with GLBA, CCPA/CPRA, and PCI-DSS. Secure Email Gateway (SEG) Administration Manage and tune SEG platforms. Analyze threat reports and enforce email protection policies against phishing, spam, and malware. Coordinate with IT Infrastructure to align SEG and Microsoft Purview DLP configurations. AI-Ready Data Loss Prevention Implement DLP policies that support AI-driven detection and encryption of sensitive data in outbound communications. Evaluate AI systems for data privacy, integrity, and intellectual property leakage risks. Develop incident response playbooks for AI-related security events, including model retraining and anomaly detection. What You'll Need
Bachelor's degree in Information Security or related field. 3+ years of experience in IT security, IT risk management, or third party risk management. Hands-on experience with SEG platforms and DLP tools. Familiarity with AI governance frameworks and anomaly detection tools. Strong understanding of regulatory compliance (GLBA, CCPA/CPRA, PCI-DSS). Preferred Skills: Certifications: CISSP, CISM, GIAC, or equivalent. Experience with AI LLMs for data extraction and security analysis. Knowledge of NIST and SANS Institute cybersecurity frameworks and incident response protocols. Compensation: Target annual compensation is $100,000-$160,000 depending on level/experience. Benefits: 401(k), dental insurance, disability insurance, employee discounts, health insurance, life insurance, paid time off, 12 paid holidays per year, paid training, referral program, vision insurance, referral bonuses. AmeriSave is an equal opportunity employer. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.