Job #: F10671 | Added Date: 10/17/2024
Information Security Analyst (ISA) / Japanese fluency is not required
ACCOUNTING & FINANCE
- Full-time
- $90-110K
- Region: US
- Location: NYC , NY
Overview
A financial institution in Midtown is seeking an Information Security Analyst to perform daily monitoring, periodic reviews, and assessments. This position will assist the Chief Information Security Officer (CISO) in managing, monitoring, and maintaining the Information Security Program for the Branch. Japanese fluency is not required.
Description
Position Responsibilities and Duties
The Information Security Analyst (ISA) will perform daily monitoring, periodic reviews and assessments. This position will assist the CISO to manage, monitor and maintain the Information Security Program of the Branch. This involves, Information Security Architecture, Information Security Operations, and the Information Security Risk and Compliance area.
I. Information Security Architecture:
A. Information Security Policies and Procedures
• The ISA will assist the CISO in the development, implementation and revisions of the Branch’s Information Security Policies and Procedures in a timely manner.
B. Business Continuity Management
• The ISA will be responsible for all Information Security initiatives assigned by the CISO during the business continuity process, annual OAT Testing and its relevant tasks.
C. Secure Software/System Development
• The ISA will be responsible for monitoring secure software and system implementation and development within the branch. These duties will include the monitoring of the system changes and access control
D. Physical Security
The ISA will assist the CISO in maintaining the physical security of the Branch and performing periodic physical security assessments in the Branch primary office, Datacenter and Back-up site.
• The ISA will perform periodic unannounced physical security inspection throughout the Branch office premises or as directed by the CISO.
II. Information Security Operations:
A. System and Network Access/ Monitoring Activity
• Daily Monitoring
i. The ISA will be responsible for reviewing daily system access control and security log monitoring activities as defined in The Information Security Policies & Procedures.
ii. Monitoring includes day-to-day and investigative, including review of intrusion detection reports as well as review of daily usage logs such as servers, mainframes, firewalls, networks, and applications.
• Access Control
i. Review and approve appropriate access request, verify approved changes and maintenance of the IS Access Database.
ii. Process account creation/deletion for the New Hire/Termination of Branch employees.
iii. Perform periodic user entitlements review covering Branch systems, Privileged IDs, Third Party applications and folder permissions.
iv. Assist in ensuring compliance with the 10-day mandatory leave by enforcing the disabling of user accounts, laptops, and mobile phones for sensitive staff.
v. Assist in maintaining the various Information Security Acceptable Use agreements in the Branch.
• Vulnerability Management
i. Using Nessus vulnerability scanner to identify patches and vulnerabilities in the Branch IT Infrastructure.
ii. Facilitate and coordinate vulnerability assessments, scanning, review of assessment results and reporting for remediation to the IT team and status to Senior Management.
iii. Maintain technical configuration for critical systems by using the CIS Benchmarks.
iv. Perform end of life system reviews throughout the IT Infrastructure and maintain tracking of the remediation progress.
v. Assist in the coordination of the annual Penetration Test including the execution of Phishing and Social Engineering Campaigns.
B. User Awareness Training
• The ISA will be responsible for providing security awareness training programs for Branch users and system operators. This includes periodic security advisories, training sessions and other awareness campaigns to maintain the integrity of the branch systems and informational resources.
• Provide security awareness training topics as required by the NYDFS Part 500 and Swift CSP.
• The ISA will function as a secondary option to the CISO for conducting new hire awareness training in the Branch.
C. Incident Management
• Under the direction of the CISO, the ISA will be responsible for initial research of the Incident and will take appropriate steps to prevent the security breaches and tracking/gathering of evidence.
• Research and conduct Threat Intelligence to understand the evolving threat landscape and areas of concern that could potentially impact the Branch environment.
• Assist in conducting the annual tabletop exercise related to cybersecurity incidents or social engineering attacks.
• LogRhythm – Security Information and Event Management (SIEM)
i. The ISA will manage and maintain log aggregation using LogRhythm to ensure all system, agents and applications are accurately logging and monitored for signs of abuse, violations, or incidents.
ii. Develop new reports for any system changes or as required by Senior Management.
iii. Investigate potential security incidents using LogRhythm alerts and serve as initial incident responder
iv. Perform periodic security updates on LogRhythm to ensure system stability and resiliency.
III. Information Security Risk & Compliance:
A. Governance of Risk & Compliance
• The ISA will be responsible for preparing and maintaining all risk profile reports under the direction of the CISO. The ISA will also independently report risk profile of the branch’s Information Security and Information security concerns directly to the branch senior management monthly and as needed basis. The ISA will also assist in preparing documents related to Information Security issues to the Branch Oversight Committee (BOC) and IT & Operational Risk Committee.
B. Information Security Assessments
• The ISA will assist the CISO in managing various types of Information Security assessments as part of the routine Information Security compliance check, vulnerability assessment, risk assessment and any ad-hoc assessments.
C. Audit & Regulations
• The ISA will prepare audit materials as requested by the Internal Audit Division, Head Office and regulators under the direction of the CISO.
• Assist in researching and monitoring for new regulations, standards or guidelines by a governing body that is applicable to the Branch.
• Assist in the preparation of annual certification/attestation for the NYDFS Part 500, Swift CSP, FFIEC and DTCC requirements.
D. Vendor/Third Party Management
• The ISA will assist the CISO in managing and maintaining the Vendor Management program.
• Conduct third party risk assessments and perform third party onboarding and termination process.
• Prepare and conduct periodic Third-Party awareness training to applicable staff.
The Information Security Analyst (ISA) will perform daily monitoring, periodic reviews and assessments. This position will assist the CISO to manage, monitor and maintain the Information Security Program of the Branch. This involves, Information Security Architecture, Information Security Operations, and the Information Security Risk and Compliance area.
I. Information Security Architecture:
A. Information Security Policies and Procedures
• The ISA will assist the CISO in the development, implementation and revisions of the Branch’s Information Security Policies and Procedures in a timely manner.
B. Business Continuity Management
• The ISA will be responsible for all Information Security initiatives assigned by the CISO during the business continuity process, annual OAT Testing and its relevant tasks.
C. Secure Software/System Development
• The ISA will be responsible for monitoring secure software and system implementation and development within the branch. These duties will include the monitoring of the system changes and access control
D. Physical Security
The ISA will assist the CISO in maintaining the physical security of the Branch and performing periodic physical security assessments in the Branch primary office, Datacenter and Back-up site.
• The ISA will perform periodic unannounced physical security inspection throughout the Branch office premises or as directed by the CISO.
II. Information Security Operations:
A. System and Network Access/ Monitoring Activity
• Daily Monitoring
i. The ISA will be responsible for reviewing daily system access control and security log monitoring activities as defined in The Information Security Policies & Procedures.
ii. Monitoring includes day-to-day and investigative, including review of intrusion detection reports as well as review of daily usage logs such as servers, mainframes, firewalls, networks, and applications.
• Access Control
i. Review and approve appropriate access request, verify approved changes and maintenance of the IS Access Database.
ii. Process account creation/deletion for the New Hire/Termination of Branch employees.
iii. Perform periodic user entitlements review covering Branch systems, Privileged IDs, Third Party applications and folder permissions.
iv. Assist in ensuring compliance with the 10-day mandatory leave by enforcing the disabling of user accounts, laptops, and mobile phones for sensitive staff.
v. Assist in maintaining the various Information Security Acceptable Use agreements in the Branch.
• Vulnerability Management
i. Using Nessus vulnerability scanner to identify patches and vulnerabilities in the Branch IT Infrastructure.
ii. Facilitate and coordinate vulnerability assessments, scanning, review of assessment results and reporting for remediation to the IT team and status to Senior Management.
iii. Maintain technical configuration for critical systems by using the CIS Benchmarks.
iv. Perform end of life system reviews throughout the IT Infrastructure and maintain tracking of the remediation progress.
v. Assist in the coordination of the annual Penetration Test including the execution of Phishing and Social Engineering Campaigns.
B. User Awareness Training
• The ISA will be responsible for providing security awareness training programs for Branch users and system operators. This includes periodic security advisories, training sessions and other awareness campaigns to maintain the integrity of the branch systems and informational resources.
• Provide security awareness training topics as required by the NYDFS Part 500 and Swift CSP.
• The ISA will function as a secondary option to the CISO for conducting new hire awareness training in the Branch.
C. Incident Management
• Under the direction of the CISO, the ISA will be responsible for initial research of the Incident and will take appropriate steps to prevent the security breaches and tracking/gathering of evidence.
• Research and conduct Threat Intelligence to understand the evolving threat landscape and areas of concern that could potentially impact the Branch environment.
• Assist in conducting the annual tabletop exercise related to cybersecurity incidents or social engineering attacks.
• LogRhythm – Security Information and Event Management (SIEM)
i. The ISA will manage and maintain log aggregation using LogRhythm to ensure all system, agents and applications are accurately logging and monitored for signs of abuse, violations, or incidents.
ii. Develop new reports for any system changes or as required by Senior Management.
iii. Investigate potential security incidents using LogRhythm alerts and serve as initial incident responder
iv. Perform periodic security updates on LogRhythm to ensure system stability and resiliency.
III. Information Security Risk & Compliance:
A. Governance of Risk & Compliance
• The ISA will be responsible for preparing and maintaining all risk profile reports under the direction of the CISO. The ISA will also independently report risk profile of the branch’s Information Security and Information security concerns directly to the branch senior management monthly and as needed basis. The ISA will also assist in preparing documents related to Information Security issues to the Branch Oversight Committee (BOC) and IT & Operational Risk Committee.
B. Information Security Assessments
• The ISA will assist the CISO in managing various types of Information Security assessments as part of the routine Information Security compliance check, vulnerability assessment, risk assessment and any ad-hoc assessments.
C. Audit & Regulations
• The ISA will prepare audit materials as requested by the Internal Audit Division, Head Office and regulators under the direction of the CISO.
• Assist in researching and monitoring for new regulations, standards or guidelines by a governing body that is applicable to the Branch.
• Assist in the preparation of annual certification/attestation for the NYDFS Part 500, Swift CSP, FFIEC and DTCC requirements.
D. Vendor/Third Party Management
• The ISA will assist the CISO in managing and maintaining the Vendor Management program.
• Conduct third party risk assessments and perform third party onboarding and termination process.
• Prepare and conduct periodic Third-Party awareness training to applicable staff.
Requirements
• Bachelor’s degree in Information Security, Computer Science or related field.
• Knowledge of Windows, Windows servers including active Directory and AS400 platforms.
• Knowledge of security tools such as Anti-Virus, Vulnerability Scanner and SIEM software.
• In-depth understanding of Information Security Administration.
• Professional Security certification not required but a plus.
v. Knowledge of information security related topics such as FFIEC, NYDFS Part500, ISO 270XX, etc.
• Knowledge of Windows, Windows servers including active Directory and AS400 platforms.
• Knowledge of security tools such as Anti-Virus, Vulnerability Scanner and SIEM software.
• In-depth understanding of Information Security Administration.
• Professional Security certification not required but a plus.
v. Knowledge of information security related topics such as FFIEC, NYDFS Part500, ISO 270XX, etc.
The position offers a hybrid work arrangement, requiring two days in the office and three days working from home each week.
