Security Analyst

About The Position

Requirements

• Final-year undergraduate or graduate students pursuing degrees in Computer Science or Information Technology with specializations in Network Security, Cloud Security, Data Analytics, Incident Response, or related technical disciplines who are interested in converting to a full-time role post-graduation
• Enthusiastic about building a long-term career in a dynamic, technology-driven organization
• Effective communicators with the ability to collaborate in a team-oriented environment
• Open to feedback and committed to continuous learning and improvement
• Motivated by real-world problem solving and eager to contribute innovative ideas
• Regulatory Compliance Management
• Cybersecurity Regulatory Reporting
• Communication
• Business Writing
• Information Security Risk Management
• Artificial Intelligence
• Cloud Computing
• Data Management
• Incident Management
• Network Security
• Incident response

Responsibilities

• Perform cyber due diligence assessments within State Street’s Third Party Cybersecurity Risk Management Program in alignment with current regulatory requirements and risk-based reviews including new engagements and ongoing monitoring of existing providers.
• Review and ensure quality and timely responses in support of State Street’s global internal business units by providing accurate and in-depth due diligence risk assessments of third-parties holding data outside of State Street’s controls.
• Evaluate how the third party supports and provides services to State Street and how their features affect State Street Security.
• Assist with initial and recurring reviews of third-party Security Schedules; provide guidance and support to legal, the business units and the vendors.
• Continuously monitor and learn compliance efforts and how security assessments of various network components of the global infrastructure identify gaps to regulatory and compliance requirements relative to ISO 27001/27002, NIST 800-53, FFIEC, Cloud Security Alliance (CSA) and others that meet current regulatory environments globally.
• Research, present and execute new and improved methodologies to ensure enhanced process further aligned with increasing volumes and demands.
• Participate in the roundtable review process for global team members to present due diligence findings – ensuring a consistent and high-quality deliverable for third-party information security vendor risk assessments.
• Learn how the team members interact and review each other’s work.

Benefits

• our retirement savings plan (401K) with company match
• insurance coverage including basic life, medical, dental, vision, long-term disability, and other optional additional coverages
• paid-time off including vacation, sick leave, short term disability, and family care responsibilities
• access to our Employee Assistance Program
• incentive compensation including eligibility for annual performance-based awards (excluding certain sales roles subject to sales incentive plans)
• eligibility for certain tax advantaged savings plans
• inclusive development opportunities
• flexible work-life support
• paid volunteer days
• vibrant employee networks