Technology Risk - Information Security Analyst (Midtown Manhattan)
Will work to Identify Security Risks, Threats and Vulnerabilities for the Firm’s Network, Systems, Applications and New Technology Initiatives. Reporting directly to the VP of Information Governance, the Information Security Analyst will provide support to ISO / Tech Risk Functional Areas.
Responsibilities:
• Will be deeply involved in Info Security, Technology Risk and Technical/Risk Auditing
• Investigate Technology Risk incidents through interviews and conduct targeted Technology Risk Assessments. Oversee the Technology Risk Matrices for incidents and follow-up on outstanding action plans resulting from these incidents and identified risks from the annual Technology Risk Assessment
• Conduct information security assessments to identify potential technology risks
• Establish and monitor compliance with security requirements for all applications. Evaluate and test the security features for any new applications. Manage the quarterly re-certification process for all applications and shared access elements within our environment
• Monitor scans by the Security Incident Event Monitoring Application and investigate anomalies to ensure all activities are in compliance with policies and procedures
• Oversee the documentation of all of the firm’s Information Security and Technology Risk procedures and processes
• Conduct weekly email surveillance reviews for Compliance and HR and investigate any subsequent findings
• Review and analyze security logs to identify any anomalies within our environment and activities within our network as well as from any devices accessing the network
• Oversee the daily operations of the following Information Security applications including training on these applications: RSA’s DLP, CyberArk, Varonis, VCM, BlockMaster and Netezza Mantra for Database Compliance Monitoring
• Assist key stakeholders in identifying and certifying relevant technology risks within each department
• Assist in the coordination and performance of vulnerability assessments and penetration testing on an annual basis
• Research and identify applicable security safeguards based on the threat landscape
• Oversee the user access process and ensure operational integrity of the application security application
• Evaluate and test the security features for all new applications
Requirements:
• Will have a minimum of 2-5 years’ experience in Information Security
• Technology Auditing experience is a deciding plus
• Familiarity with Federal Regulations and Industry standards related to Information Security (FISMA, ISO 27001/27002, NIST, etc.)
• Strong knowledge of intermediate/advanced Excel Functions
• Strong attention to detail with the ability to prioritize and meet deadlines while working independently
• Ability to recognize and deal appropriately with confidential and sensitive information
• Must have flexibility to work overtime if needed
• Absolutely must have excellent verbal and written English communications skills and a proven history of interacting with users at all levels
• Bachelor Degree, preferably in Information Security or IT related field; Strong interest in Information Security Field
• CISSP Certification is a deciding plus
This is NOT a Network Engineering / Network Security position. It is a mid level role and would not be appropriate for someone who is currently working in a Management position
This is a permanent, full time position (NOT a contract). Please do not apply (or refer) unless authorized to work in the US. All candidates must be either US Citizens or US Permanent Residents
All candidates MUST be local to NY City.
Please do not apply if you are not local, even if you would pay your own relocation. Relocation is NOT offered.
Thursday, August 2, 2012
Technology Risk - Information Security Analyst (Midtown Manhattan)
About Me
- Rich Murphy, BryceNet, Inc. (516) 665-3595
- Merrick, NY, United States
- Executive Recruiter with over 30 year's of experience. Currently I'm the Managing Director of BryceNet, Inc., a boutique Executive Search Firm based in Long Island, NY. The firm specializes in Information Technology, primarily in the New York Metropolitan area. I had previously been with CompuSearch/Management Recruiters (Aug 1984 - Mar 2010). While at MRI,I had been the number one Account Executive in the nation numerous times, and I wasconsistently among the top 5 Account Executives nationwide. I was the first and only Account Executive to reach 6 million dollars of production; I had also been named the #2 Account Manager for the Decade of the '90's. I had consistently lead the Woodbury office to its position as the #1 Office in the nation. Prior to that, I served 9 years in the U.S. Marine Corps. While in the Military, I received a full scholarship to college through the Marine Enlisted Commissioning Education Program. Philosophy: I will always do what is in the best interest of everyone involved. I will never try to force a situation if it not a win-win for both the employer and candidate.