Sr Information Assurance Analyst

System administration, Governance, Negotiations, Scripting, Analytical skill, Architecture, QA, CISA, IMPACT, Consulting, Standard operating procedure, CISSP, Vulnerability management, Reporting, SAP GRC, Python, Metrics, Perl, Attention to detail, Software security, Troubleshooting, Information systems, EMC RSA Archer, Microsoft Power BI, Presentations, Earned value management, Security, Certified Ethical Hacker, Software, Domo, SOP, GIAC, Software development, Technical support, REACH, Business intelligence, Cisco Certifications, CAN, CISM, Ruby, Vulnerability scanning, Network security
Full Time
Depends on Experience
Travel not required

Job Description

When you join Eastern Bank, you join the largest and oldest mutual bank in the country. 


We pride ourselves in having knowledgeable and experienced professionals that can provide the expertise, personal attention and service our customers deserve.


As the fourth-largest full-service commercial bank in Greater Boston, we are able to offer you unique opportunities for career growth throughout the organization, as well as a competitive compensation and benefits program.


As an inclusive company, we work to ensure that our valued employees are treated fairly, recognized for their individuality, and encouraged to reach their fullest potential. These values have earned us a reputation as a great place to work and provide a strong reason why you should consider a career with us.


Our Technology Team is seeking a candidate to analyze application vulnerabilities and the potential impact of those vulnerabilities to information systems and data. They will use their expertise to prioritize vulnerability remediation efforts and contribute metrics to the Enterprise Vulnerability Management (EVM) Program.


In this role, the Analyst will:

  • Schedule, monitor, and troubleshoot application vulnerability scanning for internal customers
  • Provide support and resolution for scanning and vulnerability remediation related issues
  • Provide support to application development teams to remediate identified vulnerabilities
  • Interpret application scanning reports to understand exposure and identify potential business risk to prioritize remediation and mitigation efforts
  • Identify and resolve gaps related to Governance Risk Compliance
  • Provide consultancy to customers and develop standard operating procedures (SOPs) as necessary
  • Provide technical support for vulnerability management projects
  • Develop and mature operation matrix in support of overall EVM program
  • Possess working knowledge of security concepts in technologies that intersect with own domain
  • Present to team, department, and senior leaders within direct organization.

 Job Requirements 

  • Significant enterprise vulnerability management experience to include application remediation activities in a large company
  • Strong knowledge industry standards regarding vulnerability management
  • Experience with Dynamic Application Security Testing (DAST) and Static Application Security Testing (SAST)
  • Previous Secure Development Lifecycle or Application Assessment experience
  • Familiarity with Archer GRC tools is a plus
  • Extensive knowledge of networking, security architecture and system administration
  • Security-related certifications (i.e. CISSP, CEH, CISM, CISA, CSSLP, CCNP, GIAC)
  • Experience with scripting languages (Python, Ruby, Perl) and BI tools (Domo, PowerBI)
  • Good analytical skills, attention to detail and ability to methodically troubleshoot complex issues
  • Good analytical and negotiation skills
  • Good communication and presentation skills


Posted By

Candace Thomas

Dice Id : 10146278
Position Id : 6396268
Originally Posted : 4 months ago
Have a Job? Post it

Similar Positions

Senior Business Functional Systems Analyst
  • Symbiotic Consulting Group
  • Burlington, MA
Business Analyst/Project Manager
  • CEI Group
  • Boston, MA
IT project manager
  • K Source Inc
  • Cambridge, MA
Project Manager/Business Analyst
  • BOSUN Technology Partners
  • Boston, MA
IVR Administrator/Developer
  • ASAP Staffing
  • Fort Worth, TX
Project Manager - Strategy Planning
  • NTT DATA Services
  • Boston, MA
Cybersecurity Risk Assessment Analyst
  • Solidus Technical Solutions
  • Lexington, MA
E-Commerce Project Manager
  • The Judge Group, Inc.
  • Needham, MA
Cyber Risk Security Analyst
  • Kforce Technology Staffing
  • North Andover, MA
Datalake Project Manager
  • Tenazx
  • Billerica, MA
Web Functional Lead
  • Millennium Consulting
  • Boston, MA