Information Security Risk Manager - job id 30563


Your Way To Work™

Information Security Risk Manager

$$

Jersey City, NJ



How to Apply

logo

Maxim Nikouline


logo

(646) 876-9538


logo

(212) 616-4800 ext-190




A Contract position at One of the largest international banking networks with strong positions in Asia and a significant presence in the United States..

Pay Options: w2.

Contact Maxim . call (646) 876-9538 / (212) 616-4800 ext.190 or email max@sans.com with the Job Code MN30563 or Click the Apply Now button (Sorry, NO IC - Self Incorporated or 3rd Party (Subcontract) or 1099 for this position!).

Location: Jersey City.

Skills required for the position: System Architect, SECURITY, NETWORK, INFRASTRUCTURE, HTTP, JAVA, C#, C++.


Detailed Info: to advise senior management including business sponsors on Security risks and should be able to translate security risks to business impact. Must be able to translate vulnerabilities and gaps into business risks. Should be able to understand Network level and Application level reference architecture and be able to advise implementation teams on secure design. Work with IT project community and to advise on application security standard controls and best practices. Work closely with other IT operation groups for identifying and remediation of systems with security issues. Should have practical implementation knowledge to advise IT development and implementation teams on how to fix potential vulnerabilities. Review application, database and network architecture and highlight risks. Onboard applications into the existing Security frameworks and participate in an advisory capacity until project deployment.


Development/Computing Environment: 1-3 years professional experience in Risk Management. 8-10 years of professional experience in an information security function for a financial, insurance, pharmaceutical, or similar commercial industry preferred. Bachelor's Degree in Computer Science or related field preferred. Perform Risk assessments for applications and underlying systems and recommend security requirements based on upstream Business requirements. Should have knowledge on Network and Infrastructure architecture. Ability to review and understand organizational security policies and incorporate into standard processes in a project. Expert understanding of HTTP, HTTPS, and other application layer protocols. Expert understanding of network layer protocols & industry best practices. Actively contributes to strategic security departmental planning in alignment with architectural goals. Strong analytical and problem solving skills. Excellent written, verbal communication & presentation skills. Should be able to work as a team player.


Helpful Skills

CISSP Certified.

CISM/CRISC Certified

Experience with the following:

oArcher

oRisk Models

oArchitecture Reviews.

oDB vulnerability management.

oWeb Application vulnerability management.

oCloud Security


.

The position offers competitive rate.


Job Id: 30563