Senior Analyst, Compliance Incident Responder
CME Group is the world's leading and most diverse derivatives marketplace. But who we are goes deeper than that. Here, you can impact markets worldwide. Transform industries. And build a career shaping tomorrow. We invest in your success and you own it, all while working alongside a team of leading experts who inspire you in ways big and small. Joining our company gives you the opportunity to make a difference in global financial markets every day, whether you work on our industry-leading technology and risk management services, our benchmark products or in a corporate services area that helps us serve our customers better. We're small enough for you and your contributions to be known. But big enough for your ideas to make an impact. The pace is dynamic, the work is unlike any other firm in the business, and the possibilities are endless. Problem solvers, difference makers, trailblazers. Those are our people. And we're looking for more.
To learn more about what a career at CME Group can offer you, visit us at www.wherefuturesaremade.com . Sr Analyst, Compliance Incident Responder
The Sr Analyst, Compliance Incident Responder is responsible for performing activities to respond to and resolve incidents where there is a suspected unauthorized collection, use, access, or modification of data in accordance with established processes and procedures. This includes performing initial analysis of the origin, handling documentation and project management aspects of the incident response process and collaborating with other groups involved in managing incidents. The Sr Analyst will serve as the primary responder and lead incidents on behalf of the Information Governance team within Corporate Compliance. Responsibilities and Duties:
Qualifications and Experience:
- Serves as the point of contact for compliance related incidents.
- Leads the investigation and resolution tasks for most incident types and severities within Information Governance.
- Responsible for escalating and engaging with management, legal and compliance officers and other relevant teams including Global Information Security (GIS) according to documented procedures.
- Document incident tasks and updates in the incident management system.
- Manage incident communications, including establishing/scheduling bridge lines and periodic incident update calls.
- Works closely with GIS to investigate, diagnose and resolve incidents, when applicable.
- Facilitation of resolution activities with internal and external resources.
- Remains highly responsive, available, and manages deadlines in accordance with service level expectations.
- Monitor incidents to ensure tasks are being completed, providing management with regular status reports.
- Participate in activities to identify incident trending and analysis
- Assist with cross training and mentoring with colleagues.
- Maintain procedures, including incident response plans which detail how the company responds to incidents.
- Remain abreast of privacy, confidentiality, and legal incident/breach requirements.
- When workload permits, assist team members with Information Governance tasks.
- Strong customer-service orientation.
- Able to prioritize and execute tasks in a high-pressure environment.
- Strong analytical and troubleshooting skills.
- High level critical thinking skills.
- Ability to maintain a high-degree of confidentiality.
- Strong written and oral communication skills.
- Strong listening and interpersonal skills.
- Comfortable dealing with all levels of management.
- Understanding of regulations and privacy laws, regarding breach response.
- Comfortable working in a dynamic environment with multiple goals.
- Highly self-motivated and directed, with keen attention to detail.
- Working knowledge of current data collection, storage, and chain of custody best practices.
- Experience working in a team-oriented, collaborative environment.
Formal Education & Certifications
- 2-5 Years, experience with Incident Management
- Familiarity with incident management solutions (e.g. Archer)
- Bachelor's degree. (e.g., Computer Information Systems, Computer Science, Information Systems Management, Privacy, Records Management or equivalent educational or professional experience and/or qualifications.