Role Description

The VP, Cyber Data Quality Analyst, is a critical role within the Information Security department and will report to the Director, Information Security Data Operations for the SMBC Americas Division.  This role will be aligned with the Continuous Controls Monitoring (CCM) program.  By partnering closely with Cyber GRC and Technology teams, this role ensures that control-related data is accurate, timely, and reliable, enabling CCM to identify control failures, deviations, and emerging risks before they result in security incidents, compliance violations, or operational disruption. 

The Cyber Data Quality Analyst will be responsible for creating KCIs (Key Control Indicators) and Data Quality (DQ) rules to continuously assess and report on the effectiveness of ISDAD’s internal controls as part of the firm’s GRC Risk Management and CDO Data Governance frameworks.  This is part of the overall cyber data initiative focusing on building the security and risk data platforms for the Cybersecurity Data Lakehouse (CyberDW). The goal of the CyberDW is to centralize the ISDAD data as well as establish effective data governance around the data sources and its data lineage.

Role Objectives

• Operate as the SME for DQ rules for the CCM program.  Analyze data sources, data dictionaries, business glossary, data mappings, ETL processes and data within CyberDW to understand their structure, relationships, dependencies to quantify and document the data quality rules, controls and lineage around the key data elements (KDEs).    
• Partner with the data owners and stakeholders to create KDEs and DQ rules needed for CyberDW data.  Partner with the Data Owners and Data Stewards to understand what critical metrics and data fields are needed for our Cyber critical controls that align to the CRI Profile and NIST frameworks.
• Creation of technical requirements for implementation and maintenance of DQ rules in the Collibra Data Quality (CDQ) platform and KDEs in the Collibra Data Intelligence platform.  Partner with Technology and DQ Managers to ensure KDEs are governed by DQ Rules across various DQ dimensions of accuracy, completeness, uniqueness, timeliness, validity and consistency.  Support reporting on data quality metrics and trends.

• Perform data validations and reconciliations to assess validity and effectiveness of the DQ rules, conduct QA and UAT, create and maintain detailed test plans, execute test cases, and test scripts to validate CDQ results.
• Analyze and “scrub” data to identify patterns, anomalies, inconsistencies, and root causes.  Maintain a reusable library of rules, thresholds, exceptions, and documentation.

Qualifications and Skills

• Bachelor’s degree in computer science, Information Security, Data Management, or related field
• 10+ years’ experience in IT development, data governance, data analyst or related roles, preferably in a highly regulated environment such as financial services
• Must have hands-on technical experience in data management & governance tools (e.g., Collibra DIP/DQIM/DQE). 
• Must have strong prior experience with Data Profiling, KDE and DQ Rule creation along with the ability to identify patterns and detect statistical anomalies in datasets.
• Understanding of data governance concepts (metadata, lineage, owners, stewards, CDEs).
• Hands-on experience in SQL queries and understanding of ETL processes. 
• Strong problem solving and analytical skills, with an initiative-taking and results-oriented approach.
• Knowledge of enterprise Information Security data (i.e., Phishing, Identity Management, Privileged Access, Cloud Security, Incident Response, Vulnerability Management, Threat Detection)
• Exposure to PowerBI for data visualization and reporting is a plus.
• Exposure to Python, PySpark, Java or similar high-level server-side languages for scripting and alert processing is a plus.

Additional Requirements