Information Security Consultant

About The Position

Requirements

• Bachelor's Degree (preferred) OR equivalent experience (required)
• CISSP certification (preferred)
• Minimum 3-5+ years of security experience including technology-related auditing, consulting, and/or operational banking experience (required)
• Working knowledge of the importance of inter-team collaboration in breaking down silos and achieving business results; ability to lead employees from various functions to communicate, coordinate work across divisions, and collaborate in solving problems as one team.
• Basic understanding of major functional processes and associated operating requirements; ability to apply this knowledge appropriately to diverse situations.
• Working knowledge of techniques and tools that promote effective analysis; ability to determine the root cause of organizational problems and create alternative solutions that resolve these problems.
• Working knowledge of effective communication concepts, tools and techniques; ability to effectively transmit, receive, and accurately interpret ideas, information, and needs through the application of appropriate communication behaviors.
• Extensive experience with being proactive and committing to action on self-identified job responsibilities and challenges; ability to seek out work and the drive to accomplish goals.
• Basic understanding of tools, techniques, approaches and processes of cybersecurity risk management; ability to ensure organizational network operation and minimize negative effect by cybersecurity risks.
• Working knowledge of IT security policies, standards, and procedures; ability to utilize a variety of administrative skill sets and technical knowledge to ensure cyber security compliance.
• Basic understanding of methods and processes to monitor, analyze and respond to network attacks, intrusions or any unauthorized actions; ability to use techniques and tools to perform network defense.
• Basic understanding of techniques, approaches and processes of digital threats; ability to detect, monitor, analyze and prevent digital threats.
• Working knowledge of the processes, tools and techniques of information security management; ability to deploy and monitor information security systems, while detecting, controlling and preventing violations of IT security.
• Basic understanding of information security audits; ability to assess the effectiveness of information security measures, identify potential risk exposures, and protect the availability, confidentiality and audit trails of information from destruction or manipulation.
• Basic understanding of information security architecture; ability to use the tools and techniques in creating software, hardware, networking and application infrastructure for information security.
• All KeyBank employees are expected to demonstrate Key’s Values and abide by Key’s Code of Conduct.

Nice To Haves

• Bachelor's Degree
• CISSP certification

Responsibilities

• Identifies and analyzes security risks, communicates risks to appropriate parties and ensures mitigation to enable risk-based business decision making.
• Develops and implements security standards, procedures, and guidelines for multiple platforms and diverse system environments.
• Facilitates system access, operations, and maintenance at KeyBank.
• Performs other duties as assigned; duties, responsibilities and/or activities may change or new ones may be assigned at any time with or without notice.
• Complies with all KeyBank policies and procedures, including without limitation, acting professionally at all times, conducting business ethically, avoiding conflicts of interest, and acting in the best interests of Key’s clients and Key.

Benefits

• Eligibility for incentive compensation which may include production, commission, and/or discretionary incentives.