Overview
On Site
69.5/hr - 78.31/hr
Full Time
Skills
Microsoft Office
Google Cloud Platform
Cloud security
Financial services
Information security
Cloud computing
Microsoft Azure
Identity management
Network security
Cloud storage
Data security
Analytical skill
Critical thinking
Health care
SaaS
Data warehouse
Due diligence
Regulatory Compliance
Leadership
Finance
Cyber security
Hosting
National Institute of Standards and Technology
FFIEC
ISO 9000
Agile
Scrum
Kanban
Management
Microsoft Excel
Microsoft Visio
Microsoft Outlook
Migration
Auditing
CISA
CISM
CISSP
ISACA
Amazon Web Services
Utilities
SQL
MI
Database
Extract
transform
load
Analytics
Software deployment
Quality assurance
Job Details
Outstanding long-term contract opportunity! A well-known Financial Services Company is looking for a Lead Information Security Analyst.
Work with the brightest minds at one of the largest financial institutions in the world. This is long-term contract opportunity that includes a competitive benefit package! Our client has been around for over 150 years and is continuously innovating in today's digital age. If you want to work for a company that is not only a household name, but also truly cares about satisfying customers' financial needs and helping people succeed financially, apply today.
Contract Duration: 6 Months
Required Skills & Experience
Desired Skills:
What You Will Be Doing:
This position will be responsible for executing cloud security control validation, ensuring cloud application workloads, cloud platforms and cloud services adhere to the Cloud Control Framework (CCF). In addition, the position will support evidence gathering in support of validation of cloud controls. Candidates for this role must be knowledgeable of Information Security industry and government standard frameworks, as well as having experience navigating and working with Cloud Service Provider platforms and associated services and controls (Azure and/or Google). Our public cloud program is ramping up volumes of deployments for Azure AKS, ASE, SQL MI, while also introducing additional Database/ETL services on Azure and further upscaling of the use of services on Google Cloud Platform for Data Warehouse/Analytics. Based on all of that, Based on all of that, the ideal candidate for this role must have a strong understanding of Azure and Google, overall strong cloud technology and security knowledge and understanding and specific experience or at minimum strong conceptual understand of the cloud platforms and services specified herein.
Day to Day activities of the role include:
Work with the brightest minds at one of the largest financial institutions in the world. This is long-term contract opportunity that includes a competitive benefit package! Our client has been around for over 150 years and is continuously innovating in today's digital age. If you want to work for a company that is not only a household name, but also truly cares about satisfying customers' financial needs and helping people succeed financially, apply today.
Contract Duration: 6 Months
Required Skills & Experience
- 5+ years of Information/Cybersecurity experience
- 2+ years of intermediate to advanced experience with public cloud computing/hosting (preferably Microsoft Azure and/or Google)
- Demonstrated deep understanding of cloud technology and cloud security concepts, spanning cloud platforms/landing zone, cloud services, Identity & Access Management, boundary protection / network security, cloud storage and data protection
- Strong understanding of and ability to apply knowledge of industry/government standards and frameworks to "real world" business and technical requirements (e.g. NIST, CIS, CSA, FFIEC, ISO)
- Experience with Agile Scrum or Kanban methodologies
- Strong analytical skills, proven critical thinking capabilities and ability to solve complex problems with minimal direct oversight
- Ability to handle multiple, high priority deliverables concurrently
- Ability to communicate confidentially, professionally, and effectively, in both written and verbal formats, with stakeholders and partners
- Intermediate to advanced experience working with Microsoft Office products (e.g. Word, Excel, PowerPoint, Visio, Outlook, MS Teams, SharePoint)
- Must have intermediate to advanced experience working with Microsoft Office products (e.g. Word, Excel, PowerPoint, Visio, Outlook, Teams, SharePoint)
Desired Skills:
- Specific experience conduction Cloud implementation/migration control and or security capability validations
- Cloud auditing experience
- Cloud, Risk and/or Cybersecurity certifications (e.g., CISA, CISM, CISSP, CRISC, CCSK)
- Cloud certifications specific to Azure, Google or AWS
- Understanding of information security threats, trends and industry best practices and security tools
- Finance sector security experience or other regulated industry (e.g., utilities, health care, government)
What You Will Be Doing:
This position will be responsible for executing cloud security control validation, ensuring cloud application workloads, cloud platforms and cloud services adhere to the Cloud Control Framework (CCF). In addition, the position will support evidence gathering in support of validation of cloud controls. Candidates for this role must be knowledgeable of Information Security industry and government standard frameworks, as well as having experience navigating and working with Cloud Service Provider platforms and associated services and controls (Azure and/or Google). Our public cloud program is ramping up volumes of deployments for Azure AKS, ASE, SQL MI, while also introducing additional Database/ETL services on Azure and further upscaling of the use of services on Google Cloud Platform for Data Warehouse/Analytics. Based on all of that, Based on all of that, the ideal candidate for this role must have a strong understanding of Azure and Google, overall strong cloud technology and security knowledge and understanding and specific experience or at minimum strong conceptual understand of the cloud platforms and services specified herein.
Day to Day activities of the role include:
- Evaluate cloud app workload, platform and/or service implementations for adherence to the Cloud Control Framework (CCF)
- Identify risks, control gaps and control validation evidence deficiencies to ensure cloud workloads are secure prior to deployment, or validate as a post-deployment QA process
- Gather evidence of control adherence for the cloud platform, cloud application workloads and for cloud services.
- Work with development teams, platform architects and process engineers to gather evidence of control adherence, negotiate as needed to obtain sufficient evidence for successful validation with a high level of due diligence.