An International Bank located in midtown NYC is seeking a 3-5 year professional to help establish and run their IT Security policy and procedures for the NY Branch.
This role will be hybrid, but requires at least 10 days a month in the office, so only local NYC or tri-state area candidates please.
Since knowledge of the financial services regulatory environment is required, only candidates who have worked for a Bank or similar financial services firm will be considered at this time.
1.1 IT Security
§ Ensure compliance with internal and external IT security guidelines, requirements, policies and controls
§ Continuously assess risks and remediate them through approved risk treatments
§ Select, test and deploy security-related infrastructure
§ Configure, administer and operate security-related infrastructure
§ Set up and maintain secure access to internal and external services (SSO / MFA)
§ Identify and configure appropriate application security parameters
§ Remediate identified vulnerabilities
§ Proactively manage hardware and software lifecycles
§ Assist in addressing security topics during audits, examinations, attestations and controls
§ Perform security-related corrective audit and examination measures
§ Contribute in service continuity management and disaster recovery planning
§ Perform event, availability and capacity management tasks
§ Manage and monitor backups including performing periodic restore tests
§ Interface with current and prospective vendors on security topics
§ Implement IT security and hardening measures
§ Assist in the investigation of security incidents
§ Assist service desk in troubleshooting security-related calls
§ Assist in the preparation of technical documentation
§ Serve on the Information Security Committee
§ Collaborate closely with IT Security and Information Security Management
Qualifications
§ 3-5 years of experience in IT Security
§ GIAC Security Essentials (GSEC) or CompTIA Cybersecurity Analyst (CySA+)
§ Understanding of market and regulatory standards (FFIEC, NYDFS, SSMK, ISO 27001,
ISO27035, NIST CSF)
§ Experience with Microsoft Cloud Security
§ Commitment, reliability and responsibility
§ Ability to cooperate and achieve aims
§ Problem solving, analytical thinking and goal orientation
§ Strong techniques of time management and organizing oneself
§ Polished presentation and communications skills