Information Security Analyst with experience with either IAM or ServiceNow
Job Description
CLIENT PARTNER PROFILE & VALUE PROPOSITION: Our client partner is an established Financial Services Client that offers a full complement of banking, trust and investment services.
POSITION TITLE: Information Security Analyst III with experience with either IAM or ServiceNow
POSITION SUMMARY: The Information Security Analyst plays key role in the Information Security program with responsibility for collecting and analyzing technical and qualitative security data to provide actionable recommendations to bank leadership to mitigate security risk. The Information Security Analyst is a subject-area specialist with specialized training, methods and analytic techniques to create recommendations and directions for cyber risk mitigation in a complex technical environment.
ESSENTIAL DUTIES AND RESPONSIBILITIES:
The Information Security Analyst role requires extensive critical thinking and problem solving, often using specialized frameworks or techniques to generate meaningful insight out of complex and technical data. Focus areas of security assessment by the Information Security Analyst include external threats and trends, applications and infrastructure security, cloud security, third party security and overall security program effectiveness in mitigating risk. The Information Security Analyst's goal to create actionable information for IT and business leadership, and to provide objective assessment of cyber security risks for auditors, regulators and external parties. This requires routinely authoring detailed reports and gathering metrics ensure stakeholders receive accurate and complete information.
The Info Security Administrator keeps abreast of external cyber security trends, technologies and cyber risk management approaches, and often works with other teams on cyber risk-related initiatives to provide subject-matter recommendations and guidance to achieve a posture within the bank's overall risk appetite.
Define analysis objectives, collect data from internal and external sources, and evaluate/analyze data to provide objective information on cyber risks for IT and business management with both summary and detailed reporting
Assess risk within subject specialty area to evaluate the design and effectiveness of security controls
Provide insight and guidance to IT software and hardware upgrades and other projects to ensure production environments meet and exceed minimum security standards and will effectively counter cyber threats
POSITION REQUIREMENTS:
Minimum of 5 years’ experience in Information/Cyber Security field
Minimum of 3’ year experience in cyber security operations, incident response, IT risk management or cyber investigations
Demonstrated experience analyzing complex cyber security data sets within subject area specialty
Demonstrated knowledge of cyber security landscape threats, trends, technologies
Demonstrated knowledge of financial regulation and control frameworks applicable to cyber security or IT risk
Excellent communication and interpersonal skills. Including a strong ability to create positive and professional business relationships with internal clients.
Strong commitment to working as a team and providing excellent customer service.
Exposure to banking or equivalent highly controlled technology environment is preferred