Information Security Associate

United States, Texas
Permanent
Job ID: 1566, 1567

Job Description

Opportunity to join one of the finest financial organisations on the planet in a highly-influential, strategic position. This newly-formed role offers incredibly high visibility into one of the most important domains of the global business. As an Information Security Associate you’ll act as the ‘go-to’ within this function, so expect to work hand-in-hand with many senior leadership individuals, up to and including CISO level, as well as being exposed to the most bleeding-edge technology.

You’ll join the team which manages the technology risk portfolio and business roadmap, which is currently focused on strategic growth. In this role, you will have an enormous impact on the business and will bring ideas about how to continuously take the function to the next level.


Role Responsibilities:

  • Build the overall risk profile of the division and work with stakeholders to create a plan towards reducing risk exposure in an agile and collaborative manner
  • Provide advice to business and technology users on:
    • understanding of relevant policies and standards
    • principles of security and controls as defined by the firm's frameworks
    • adoption of secure and resilient solutions
  • Perform risk assessments to identify gaps in compliance to information security (application and infrastructure) and business continuity plan (BCP) standards and policies, for both internal technology solutions as well as solutions provided by third-party service providers
  • Provide clear and concise verbal and written recommendations and guidance to both business and technology staff on matters of technology risk management
  • Maintain a thorough understanding of global, regional, and local regulatory requirements that have technology impact
  • Contribute to global, regional, and local initiatives aimed at improving the baseline on information protection, resiliency, and controls of technology processes and services
  • Promote and assist in the training and awareness of information security and BCP within the region

Technical Experience and Qualifications Required

  • 1+ years (analyst) or 3+ years (associate) of technology experience in one or more of the following areas: Information Security, Technology Governance, Operational Risk, Technology Audit, Technology Infrastructure or Application Development
  • 1 or more years of experience in Information Security, BCP, Technology Controls or Technology Risk Management fields is a significant advantage
  • Strong understanding of the technology implications of regulations
  • Strong program and project management skills and technology expertise
  • Ability to analyse internal and external processes and integration to understand risk
  • Ability to assess and evaluate corporate risk tolerance and translate into goals and new processes including software engineering, IT teams, and other relevant stakeholders
  • Understanding of relevant audit and control standards and the ability to drive and maintain the compliance initiative across the organisation
  • Experience collaborating with a team of security experts in a diverse set of security topics including, but not limited to, security architecture, financial controls and regulatory compliance, identity and access management, penetration testing, data loss prevention, network security, security monitoring, white box testing/static code analysis, and building secure systems
  • Experience with risk management methodologies such as, but not limited to, FAIR
  • Experience in financial services is a plus

Share this role with your network



Apply for this role

All fields marked with * are required.

  I confirm that I have the right to work in this location. *

Back to Job Listings