Expoint - all jobs in one place

The point where experts and best companies meet

Limitless High-tech career opportunities - Expoint

Bank Of America Information Security Assessment Mgmt Sr 
United States, Colorado, Denver 
456459876

13.08.2024

Job Description:


Associate performs research, analysis, and testing of Core Infrastructure identified AITs leveraging industry standard baselines to identify potential ransomware and malware vulnerabilities that could be exploited by a threat actor.

Ideal candidates will possess, a broad information security background, and strong communications and interpersonal skills to engage with a variety of constituents.


Responsibilities:

As a CIAR - Info Security Exposure Mgmt Senior Specialist, the individual will be focused in the following areas:

  • Perform Critical Infrastructure Assurance Review (CIAR) process design and documentation.

  • Testing of Core Infrastructure identified AITs leveraging industry standard baselines to identify potential ransomware and malware vulnerabilities etc.

  • Works routinely with technical (infrastructure) teams and SMEs on a variety of infrastructure.

  • Complete the assigned work within the appropriate Service Level Agreement (SLA).

  • Exercise independent judgment in methods, techniques, and evaluation criteria for obtaining results.

  • Perform the assessment and perform pre-assessment examination of systems of record.

  • Finding of failed controls and submission of observations for continue monitoring.

  • Facilitates the collection of evidence with the FLU.

  • Perform level 1 QA and determine level of compliance.

  • Tracking and reporting of assessment status to leadership team.

Required Qualifications:

  • Proficient in ransomware and malware tactics, techniques, and procedures

  • 5 years exp.

  • Experience in Information Security and/or IT Audit

  • Technical writing and verbal communication skills

  • Ability to effectively work with partners at varying knowledge and organization levels

  • Ability to communicate clearly and effectively with both technology/development and business partners – ability to translate between these two constituencies.

  • Highly organized and motivated to deliver results with minimal direction.

  • Creative and proactive problem solver – ability to understand what the team needs and offer suggestions above and beyond what they desire.

  • Naturally curious individual with the ability to quickly become the authority in the various data and systems used by the team.

  • Strong relationship, team building and facilitation skills.

  • Good knowledge of current ransomware and malware threats and vulnerabilities, operating systems, database management and OSI Model.

  • Proficient with Microsoft Office (Word, PowerPoint, Excel), Tableau, SharePoint.

Desired skills:

  • Information Security certifications, including ISO27002 / CISSP / CEH / CISM / CISA

  • Experience in coordinating team projects

  • Knowledge of NIST and NSA guidelines

This job will be open and accepting applications for a minimum of seven days from the date it was posted.

1st shift (United States of America)