Information Security Specialist (US)
About The Position
The Information Security Specialist defines, develops and/or implements Technology Controls / Information Security related policies, programs, tools and provides specialized expertise and guidance on assessing risks, identifying potential gaps and providing security solutions to mitigate risks and protect the Bank. Participates on projects of moderate to high complexity and provides complex reporting, analysis, and assessments at the functional, business line or enterprise level for own area. Depth & Scope: Participates on complex, comprehensive or large projects and initiatives Acts as a lead expert resource in technology controls / information security for project teams, the business / organization and/or outside vendors Has advanced knowledge of organization, technology controls / security/ risk issues. Provides managerial oversight and support for all U.S. technology remediation activities, including oversight of responses, tracking of management commitments, and escalation of at-risk issues to the U.S. Technology Regulatory Remediation Program Oversight Lead. Responsible for reporting the status of all technology and cybersecurity remediation activities to the U.S. Technology Regulatory Remediation Program Oversight Lead. Responsible for advising control owners, quality control testing teams, and project teams on the actions to address technology related regulatory remediation commitments (e.g.) metric design, technology remediation, governance enhancements, and assessments). Acts as a lead expert resource in technology controls / information security for project teams, the business / organization and/or outside vendors
Requirements
- Bachelor's degree preferred
- 7+ years of relevant experience
- Expert knowledge of IT security and risk disciplines and practices
Nice To Haves
- Information security certification / accreditation an asset
- Detailed depth of knowledge in Access Management, Data Security, Infrastructure Security, Application Security, Resiliency, and/or Technology Operations
- Regulatory examination and/or remediation experience in financial services industry
- Consulting experience with information security and/or cybersecurity in financial services industry
Responsibilities
- Defines, develops and/or implements Technology Controls / Information Security related policies, programs, tools.
- Provides specialized expertise and guidance on assessing risks, identifying potential gaps and providing security solutions to mitigate risks and protect the Bank.
- Participates on projects of moderate to high complexity and provides complex reporting, analysis, and assessments at the functional, business line or enterprise level for own area.
- Acts as a lead expert resource in technology controls / information security for project teams, the business / organization and/or outside vendors.
- Has advanced knowledge of organization, technology controls / security/ risk issues.
- Provides managerial oversight and support for all U.S. technology remediation activities, including oversight of responses, tracking of management commitments, and escalation of at-risk issues to the U.S. Technology Regulatory Remediation Program Oversight Lead.
- Responsible for reporting the status of all technology and cybersecurity remediation activities to the U.S. Technology Regulatory Remediation Program Oversight Lead.
- Responsible for advising control owners, quality control testing teams, and project teams on the actions to address technology related regulatory remediation commitments (e.g.) metric design, technology remediation, governance enhancements, and assessments).
Benefits
- health and well-being benefits
- savings and retirement programs
- paid time off (including Vacation PTO, Flex PTO, and Holiday PTO)
- banking benefits and discounts
- career development
- reward and recognition
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
