Vacancy expired!
Job Description:
As part of the Bank's Global Information Security (GIS) organization, the Cyber Security Operations (CSO) team's aim is to protect the bank and execute end-to-end responsibility for key operational cyber security controls. The Control Health Monitoring (CHM) team takes a proactive approach to monitoring the performance and health for the full suite of CSO cyber controls to improve detection, prevention, and response capabilities, aggressively address threats and risks, and proactively analyze control health to identify opportunities for improvement.Role Summary: The Senior Information Security Threat Management Specialist will work as a key member of the global CHM team to build the reporting and analysis function leveraging control health outputs that spans all the CSO security teams and other key GIS partners. As part of the broader CHM Program, the effort will include working with a global team to build a reporting and analysis process leveraging the Control Health Monitoring dashboard and provide a robust feedback loop to the Threat Defense Operations process to improve control health.Key Responsibilities:- Primarily responsible for the definition and development of a global control health reporting and analysis function that spans all CSO security teams and other key GIS partners.- Assist in the identification of control operational gaps and suggested improvements to both processes and technologies to augment current state.- Lead the definition and implementation to a set of operational dashboard views to support CSO Cyber Threat Operations Centers.- Primary contributor to the definition and implementation of an overarching framework for control health monitoring that includes people, process, and technology.Professional Competencies:- Proven ability to drive complex initiatives and the development of new capabilities to improve cyber security operations.- Expertise and experience in cyber security operations in multiple domains, e.g., data loss prevention, malware.- Competent at adapting to changing business needs, applying critical thinking, communicating effectively, focusing on stakeholders, demonstrating initiative, and influencing others.- Strong communication and presentation skills (both orally and in writing), with the ability to effectively interact, partner and influence leaders and employees at all levels of the organization.- Demonstrated history of process design, continuous process improvement and process optimization and organization and resource management.- Strong analytical viewpoint towards balancing risk management with operational imperatives in a fast-moving environment.- Strong attention to detail.- Ability to work in a global team environment as well as independently.- Bias towards collaboration and expanding relationships across the organization.Technical Expertise:- Advanced knowledge of cyber security incident lifecycle, threat landscape, cyber-attack kill-chain / MITRE ATT&CK, security vulnerabilities, exploits, malware, digital forensics, network security vulnerabilities, exploits and attacks.- Firm understanding of operational resilience concepts and frameworks.- Knowledge of information systems define, design, build and deploy processes.- Familiarity with traditional IT functions and deployment processes (servers, firewalls, networks, datacenters).Desired Experience/Skills:- College degree, or specialized training or equivalent work experience.- Typically requires 8+ plus years of related work experience.Shift:1st shift (United States of America)Hours Per Week:40Learn more about this role