Pay is based on a number of factors including the successful candidate’s job-related knowledge and skills, qualifications, and prior experience. Arvest offers a comprehensive suite of benefits, including a full range of health and life, financial, and wellness benefits. For more information about benefits, please visit www.arvest.com/careers/benefits.

A Vulnerability Analyst at Arvest is integral in identifying and mitigating vulnerabilities that can lead to a disruption of services. They identify, validate, and risk-rank vulnerabilities and create remediation plans to protect against ongoing threats. A Vulnerability Analyst deeply understands threats and vulnerabilities and how they can impact the reliability and availability of services. They will directly and immediately impact the security of customer-facing solutions.

Position is Monday through Friday from 8 am to 5 pm with the ability to work additional hours as project needs demand.

Incumbent should be located within the Arvest 4 State Footprint (AR, KS, MO, OK).

Remote work options may be available outside of the 4-state footprint upon further review during the interview process.

Preferred Qualification: Splunk, Tableau, or PowerBI

The story of Arvest is one of commitment started by our founders in 1961, with an intense dedication to focusing on our customers. We will always be active and involved members of the communities we serve, and we will always work to put the needs of our customers first as we continue to fulfill our mission – People helping people find financial solutions for life.

Job Title: Vulnerability Analyst

A Vulnerability Analyst at Arvest is integral in identifying and mitigating vulnerabilities that can lead to a disruption of services. They identify, validate, and risk-rank vulnerabilities and create remediation plans to protect against ongoing threats. A Vulnerability Analyst deeply understands threats and vulnerabilities and how they can impact the reliability and availability of services. They will directly and immediately impact the security of customer-facing solutions.

What You’ll Do at Arvest: (Other duties may be assigned.)

● Cleanse and normalize data and look for trends and patterns across various vulnerability data collections.

● Conduct vulnerability assessments to identify and address potential security risks associated with vulnerabilities.

● Catalog vulnerabilities and their potential resolutions into a backlog management system (Jira).

● Collaborate with technical engineering teams to communicate the backlog of work and help them understand potential resolutions.

● Coordinate agreed-upon remediation plans, including timelines, with responsible stakeholders and required resources.

● Partner with the vulnerability management team to create dashboards and evaluate metrics.

● Serve as a technical point of contact regarding mitigation of vulnerabilities.

● Work with system administrators and developers to address and remediate identified vulnerabilities.

● Stay updated with the latest security threats, trends, and technologies, and recommend new or updated security controls.

● Foster a culture of security awareness and accountability throughout the organization.

● Understand and comply with bank policy, laws, regulations, and the bank's BSA/AML Program, as applicable to your job duties. This includes but is not limited to; complete compliance training and adhere to internal procedures and controls; report any known violations of compliance policy, laws, or regulations and report any suspicious customer and/or account activity.

Responsibilities:

Toolbox for Success:

● Bachelor's degree in Computer Science, Cybersecurity, or a related field of study or equivalent relevant work or military experience.

● 2 years of experience in a vulnerability management, vulnerability remediation, patching, or configuration management role.

● Experience with large data format reporting such as Splunk, Tableau, or PowerBI.

● Security experience with vulnerability detection tools (Qualys, Rapid7, etc.)

● Technical experience with patching and configuration management.

● A broad range of knowledge, including:

○ Analyzing large quantities of data

○ Dashboarding and Reporting

○ Agile and Scrum processes

● Knowledge of security by design principles, architecture level concepts, security frameworks (NIST and PCI), OWASP, CIS, etc.

● Familiarity with regulatory requirements related to security and privacy.

● Strong programming and scripting skills (e.g., Python, Java) for automation and integration purposes.

● Excellent analytical and problem-solving skills.

● Strong attention to detail and accuracy.

● Excellent communication and interpersonal skills.

● Ability to work independently and manage multiple priorities in a fast-paced environment.

● Relevant military experience is considered for veterans and transitioning service members.

Preferred Experience:

● Certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Data Management Professional (CDMP) are highly desirable.

● Ability to clearly communicate gaps and risks to leadership through verbal dialogue or written communication.

● Demonstrable teamwork skills and ability to partner, even in difficult situations.

● Ability to be proactive in a rapidly changing environment.

● Sharp analytical abilities and proven design skills.

● Experience in the banking or financial services industry.

● Knowledge of regulatory requirements related to cybersecurity in the banking sector.

Physical Demands:

The associate must be able to travel occasionally by themselves within the US, possibly overnight. Reasonable accommodations may be made to enable qualified individuals with disabilities to perform the essential functions.

We offer competitive compensation, benefits packages, and significant professional growth.

Arvest Bank is committed to providing equal opportunity to all persons regardless of race, color, race-based hairstyles and textures, religion, marital status, sex, sexual orientation, gender identity, pregnancy, age, national origin, disability, veteran status, or any other basis, which now or in the future may be specified by law.

Along with an excellent benefits package, our associates are engaged, rewarded for performance, and encouraged to grow professionally and personally. Our future is driven by our associates. If you want to be recognized for your results and empowered to reach your potential, we urge you to apply.

Grade 14I

**Pay Range: **$70,300 - $100,000 per year