The Security Risk Assessments Senior Specialist will assess information security risks and controls in various types of assessments, lead information security risk management projects, and play a key role in the expanding IT risk management practice.
Key Responsibilities:
1. Assess information security risks and controls in various types of assessments
2. Lead Proof of Concept (POC) exercises on new risk management software
3. Conduct training sessions and socialization meetings to educate users
4. Support risk management process and technology rollouts
5. Maintain assessment tools and risk register
Core Competencies/Skills:
6. Working knowledge of information security controls, risks, and best practices in a banking environment
7. Knowledge of commonly used banking applications, operating systems, and databases
8. Knowledge of cloud-based applications and tools and security controls specific to SaaS, IaaS, and PaaS solutions
9. Knowledge of cyber security regulations and industry frameworks
10. Self-motivated and disciplined approach to learning and working
11. Ability to work independently and in a team environment
12. Strong verbal and written communication skills
13. Highly developed sense of personal accountability and follow-through
14. Ability to prioritize multiple personal tasks, projects, and goals
Requirements:
15. BA/BS required; MA/MS/MBA preferred
16. 2-5 years of Big-4 IT audit, assurance or consulting experience
17. B.S. or M.S. degree in Information Systems/Technology, Science, or Engineering preferred
18. Exposure to and interest in the field of computer science and associated subject matter
19. Actively pursuing or have designations in the information security and IT risk fields such as CISSP, CISM, CISA, CRISC
If you are a motivated and disciplined individual with a passion for information security risk management and have the required skills and experience, we encourage you