Senior Cyber Security And Information Risk Engineer : Vp

Senior Cyber Security And Information Risk Engineer : Vp
Company:

(Confidential)


Senior Cyber Security And Information Risk Engineer : Vp

Details of the offer

SMBC Capital Markets, Inc. is a market maker for swaps, including interest rate, currency and commodity swaps and related derivative products, headquartered in New York as a wholly owned subsidiary of SMBC. SMBC Capital Markets, Inc. was provisionally registered as a swap dealer with the Commodity Futures Trading Commission on December 31, 2012. Our business works in close collaboration with SMBC Nikko Capital Markets, Capital Markets Limited in the UK, and SMBC Capital Markets Asia, Ltd in Hong Kong to provide global coverage to SMBCs corporate, institutional, and project clients. Capital Markets maintains its own middle and back:office functions, including Risk Management, Compliance, Systems, Finance, and Operations.

The Senior Cyber Security and Information Risk Engineer will be responsible for ensuring that Information Security systems are configured, deployed, and maintained in accordance with SMBCs polices and standards. This position requires participation in technical research and development to enable continuing innovation for Cyber Security and Information Risk management.

Responsibilities
Focuses on hands on engineering and architecting cybersecurity solutions and ways to protect the firm from various threat actors.
Performs as the Subject Matter expert focused in multiple technologies within the Security arena (IAM, Cloud Security, Data Security, Network Security, Encryption, Privileged Access Management, Federation etc.).
Establishes a strategic security architecture vision, including standards and frameworks for medium to large enterprises.
Develops and maintains log analysis solutions, including data collection and aggregations, data normalization, and reporting.
Review and analysis security logs from a wide variety of sources.
Creating use cases to ensure visibility across various logs sources for potential incidents. Experience with ELK stack a plus.
Contribute to workflow or process change and redesign, and to form a strong basic understanding of the specific product or process; May also be accountable for regular reporting or process administration as owner.
Coordinate and perform security audits and vulnerability assessments to assess internal security procedures and compliance requirements.
Work with relevant internal IT Application, Infrastructure, Network and Support teams to ensure that security controls are implemented at all significant layers, test those controls and perform gap analysis to find areas of improvement.
Strong understanding and hands on implementation experience with SANS/CIS Top 20, NIST CSF, 800:53, ISO27001 controls.
Strong Incident Response skillset using MITRE ATT and CK and Cyber Kill Chain frameworks. Being able to conduct threat modeling in order to determine major threats facing the firm.
Good understanding of Zero Trust principles.
Strong Information Security Risk Assessment experience conducting cloud and third:party risk assessments.
Develop and maintain documentation for security systems procedures and processes. Develop security awareness training for new and existing employees.
Participate in information security working groups.
Perform testing to evaluate new products for network and system security controls.
Maintain logging and monitoring standards, technical investigative techniques and reporting.
Supporting offensive architecture analysis and design of defense:in:depth solutions.
Participate in the development of the security roadmap and communicate the Technology Security vision to senior management and technical departments.
Works with and/or leads internal implementation teams and internal business organizations to define, document, and present project requirements.
Coordinates with project team the implementation, upgrade and maintenance of security solutions.
Assists in the coordination of troubleshooting activities to resolve business process issues and the successful transition of implementations from development and testing through pr


Source: Tiptopjob_Xml


Area:

Requirements

Senior manager, billing operations

The Senior Manager, Billing Operations will be responsible for all operationally related aspects of the Quote-to-Cash (Q2C) process, particularly around pricing...


From Baker Mckenzie - Illinois

Published 22 days ago

Sr application developr

IBM Global Systems Inc has multiple openings for IT positions in Irving, TX and unanticipated locations throughout the U.S. All positions require a Master’s...


From Ibm Global Systems - Texas

Published 22 days ago

Inventory and purchasing coordinator

Inventory and Purchasing Coordinator Company Overview Silco is a growing,family owned and managed business since 1959. Silco has over 280 employees spread...


From Silco Fire & Security - Ohio

Published 22 days ago

Network administrator

(Reston,VA): Responsible to Install, configure, support LAN, WAN and internet/network systems, monitor network availability to all users and perform maintenance...


From Global Enterprise Management Solutions - Virginia

Published 22 days ago