|
Reference Number:
ss1788
Job Description:
To perform functions related to Information Security and insure compliance with the company?s Global Information Security policy and best practices across all business units within company?s Global Banking and Markets, North America.
Position Responsibilities:
Execute high-level IT Security requests issued by our clients and advise as to best practices.
Maintain an up-to-date task list in the team task register and provide regular task reports on major projects.
Interface regularly with staff from various departments (e.g. IT, Operational Risk, Internal Audit, Legal and Compliance), communicating security issues and responding to requests for assistance and information.
Train Help Desk Security Access Management team and IT Security staff members and others in performing hands-on security tasks related to Active Directory, NTFS/UNIX File Systems and Database.
Develop and promote security awareness tools and techniques; Understand and be fully fluent in all aspects of our Global Information Security Policy and industry best practices.
Perform security monitoring and resolve or escalate issues that are uncovered by various internal and 3rd party monitoring tools. Respond to security incidents, conduct forensic investigations and targeted review of suspect areas.
Perform application security risk assessments for new or updated internal or third party applications, maintaining the risk info database. Work with IT and Business staff to perform pre-development security evaluation and architecture guidance.
Interface with third party vendors to evaluate new security products or as part of a security assessment process.
Perform other duties, as assigned.
Experience Level:
5+ Years
Requirements:
Position Requirements:
Bachelor?s Degree or equivalent experience in Information Technology; 5+ years experience in Information Security
Excellent problem solving, analytical, communication, organization, task and time management skills
Hands-on security experience is essential. Industry certifications a plus (CISSP, CISA, CISM, CEH)
Ability to work independently and as part of a team
Extensive security experience with: Active Directory, NTFS/UNIX File Systems, and Database (Sybase, SQL, and Oracle)
Experience with aspects of Network Security: firewalls, IPS/IDS, penetration testing, networking fundamentals
Experience with two or more 3rd party or Open-Source security tools or equivalents required: Foundstone, SecureWave, RSA SecurID, Qualys, Guardium, Snort, Vontu, SourceFire, NetPro Change Auditor and Checkpoint Protector
Previous experience in a Financial Services firm a plus
|
