Senior Information Security Officer
NEW YORK-10006, NY, US
12/05/2019
-
Required Skills
Company
Infinity Consulting Solutions, Inc
Experience
-
Job Description
Senior Information Security Officer
Role Purpose:
Lead information security risk assessment and management to meet regulatory requirements
Manage external dependency risk
Facilitate the application security management
Oversee the information security operation
Key Responsibilities (but not limited to):
Facilitate the information security risk management process in the Bank; Provide for information security risk assessment, consistent with GLBA, FACT Act and other appropriate industry standards, and designed safeguard to control risks identified in the risk assessment.
Perform periodic information security risk assessment.
Document and regularly renew security-related policies and procedures according to NYS DSF 500, GLBA regulations, and ISO/IEC 27001, 27002, 27005, NIST CSF and SP800, SP1800 standards and guidelines.
Manage external dependency risk, oversee the services providers and contracts from an information security perspective; conduct vendor information security risk assessment annually, follow up the identified risks.
Periodically assess the cybersecurity maturity of the Bank in accordance with FFIEC Cybersecurity Maturity guidelines.
Coordinate with IT to implement the application security policy and procedure.
Contribute to the annual information security awareness training to the staff and management.
Oversee the daily operation of information security, put in place monitoring procedures and controls to detect actual and attempted attacks on or intrusions into customer information systems.
Collaborate with IT Leadership to advance Information Security awareness and the Bank's overall security posture.
Skills, Experience and Qualifications:
Experience with risk assessment for NYSDFS Part 500 requirements preferred
Experience with information security compliance management.
Experience with security projects in financial institution, consulting in the areas of process improvement, assurance and information technology (IT) consulting
Familiar with US law,regulation,standards on information security
Security related certifications (such as Security+, CCNA Security, SANS GIAC, GSEC, CEH, etc.) are a plus.
Security Analyst
Information Technology
No Preference
FullTime Job
Other
1
Candidate Requirements
-
Bachelors
Walkin Information
-
12/4/2019
-
Recruiter Details
Doug Klares
1350 Broadway, Suite 2205,
NEW YORK-10018, NY
-