Job Details

Senior Information Security Officer

NEW YORK-10006, NY, US
12/05/2019

-


Required Skills

    CCNA
Company

Infinity Consulting Solutions, Inc

Experience

-

Job Description

Senior Information Security Officer


Role Purpose:

Lead information security risk assessment and management to meet regulatory requirements

Manage external dependency risk

Facilitate the application security management

Oversee the information security operation

Key Responsibilities (but not limited to):

Facilitate the information security risk management process in the Bank; Provide for information security risk assessment, consistent with GLBA, FACT Act and other appropriate industry standards, and designed safeguard to control risks identified in the risk assessment.

Perform periodic information security risk assessment.

Document and regularly renew security-related policies and procedures according to NYS DSF 500, GLBA regulations, and ISO/IEC 27001, 27002, 27005, NIST CSF and SP800, SP1800 standards and guidelines.

Manage external dependency risk, oversee the services providers and contracts from an information security perspective; conduct vendor information security risk assessment annually, follow up the identified risks.

Periodically assess the cybersecurity maturity of the Bank in accordance with FFIEC Cybersecurity Maturity guidelines.

Coordinate with IT to implement the application security policy and procedure.

Contribute to the annual information security awareness training to the staff and management.

Oversee the daily operation of information security, put in place monitoring procedures and controls to detect actual and attempted attacks on or intrusions into customer information systems.

Collaborate with IT Leadership to advance Information Security awareness and the Bank's overall security posture.

Skills, Experience and Qualifications:
Experience with risk assessment for NYSDFS Part 500 requirements preferred

Experience with information security compliance management.

Experience with security projects in financial institution, consulting in the areas of process improvement, assurance and information technology (IT) consulting

Familiar with US law,regulation,standards on information security

Security related certifications (such as Security+, CCNA Security, SANS GIAC, GSEC, CEH, etc.) are a plus.




Security Analyst
Information Technology

No Preference
FullTime Job
Other
1

Candidate Requirements
-
Bachelors

Walkin Information
-
12/4/2019
-

Recruiter Details
Doug Klares
1350 Broadway, Suite 2205, NEW YORK-10018, NY
-