Apply Now

Information Security analyst

Hybrid in Hoboken, NJ, US • Posted 6 hours ago • Updated 6 hours ago

Full Time

No Travel Required

Hybrid

Depends on Experience

Fitment

Dice Job Match Score™

👾 Reticulating splines...

Job Details

Skills

ISO/IEC 27001:2005
Information Security
NIST 800-53
GRC
GRC AND IAM

Summary

Information Security Analyst

Introduction:

The Information Security Analyst will be responsible for designing, developing, and implementing information security programs, policies, and standards for the Bank. They will work under ISO''s supervision to define and implement information security roadmap and strategy. The analyst will also conduct cyber security assessment and control validation reviews, monitor non-compliance issues, and provide training and awareness to end users on cyber security topics.

Responsibilities:

Design, develop and implement information security program, policy, and standards for the Bank.
Work under ISO''s supervision to define and implement information security roadmap and strategy.
Design, develop, and implement cyber security assessment and control validation reviews.
Monitor and track all non-compliance issues and gaps to information security policy and standards.
Review and maintain access control processes such as access re-certification, revocation, etc.
Provide training and awareness to end users on cyber security related topics.
Provide periodic reporting to ISO and management on information security issues and gaps.
Interface with internal, external, and third party contacts.
Partner with risk management and internal audit on enterprise-level issues and provide cyber-SME services.
Perform all functions as assigned by ISO.
Provide high-quality work by ensuring accuracy and seeking to continuously improve Information Security processes.

Requirements:

Bachelor''s degree or equivalent.
At least two years of hands-on experience in cyber governance & cyber risk management related work or internship.
Good knowledge of NIST 800-53, ISO 27001, CIS critical controls, FFIEC handbook.
Ability to perform cyber risk assessments in perimeter, network, host, and application level.
Working knowledge with GRC tools and risk acceptance, policy exception, and issue tracking process.
Good understanding and knowledge of IP Network, Microsoft Windows, Linux, UNIX, Database security.
Working knowledge of Access control (IAM) processes and tools.
Able to develop & maintain cyber security policies and standards in accordance with regulatory requirements.
Able to provide end-user security awareness training and phishing exercises.
Security+ certification would be a plus.
Able to demonstrate clear communication, excellent writing, and presentation skills.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

Dice Id: 10134541
Position Id: 8958194
Posted 6 hours ago

Create job alert

Never miss an opportunity! Create an alert based on the job you applied for.

Similar Jobs

Member of Information & Security

New York, New York

•

Today

{"description": " At Anchorage Digital, we are building the world's most advanced digital asset platform for institutions to participate in crypto. Anchorage Digital is a crypto platform that enables institutions to participate in digital assets through custody, staking, trading, governance, settlement, and the industry's leading security infrastructure. Home to Anchorage Digital Bank N.A., the first federally chartered crypto bank in the U.S., Anchorage Digital also serves institutions through

Full-time

Cybersecurity/SOC AnalystII

Hybrid in New York, New York

•

Today

Major Organization in NYC is seeking a Cybersecurity/SOC analyst- This is a hybrid position Week1(3 days on site) week 2 (2 days on site) and vice-versa-MUST BE LOCAL CANDIDATE- No relocations. Client cannot sponsor at this time.Must have at least 3-5 years exp in cybersecurity/SOC. Focus must be on Threat monitoring and detection, Response, Analysis, Cyber Threat Intelligence to protect and maintain the overall security of the enterprise.Investigate and analyze detections from a diverse set of

Easy Apply

Full-time

$110,000 - $120,000

Senior Cybersecurity and IT Assessor

New York, New York

•

Today

{"description": " Description Position at VMD Corp As a Vision, Mission, and Driven company, VMD has been delivering information technology solutions to the Federal government in Agile Engineering, Cybersecurity, and Critical Infrastructure Protection since 2002. Our mission has now expanded, and we have merged with Xcelerate Solutions to revolutionize end-to-end enterprise security. Together we are committed to protecting our nation's citizens, critical infrastructure, and resources. Why Join V

Full-time

Manager of Information Security

Hybrid in New York, New York

•

16d ago

Manager, Information Security Location: New York, NY, Hybrid This role leads the overall security direction for a professional services organization, with responsibility for protecting sensitive data, client information, and internal systems across the business. The position operates at both a strategic and operational level, shaping how security is approached across the company while ensuring day-to-day protections, processes, and response capabilities are effective. It partners closely with s

Easy Apply

Full-time

$165,000 - $207,000

Search all similar jobs