Risk Advisory Services Senior - Information Security

New York, New York

Our client's Financial Services Office (FSO) is a unique, industry-focused business unit that provides a broad range of integrated services that leverage deep industry experience with strong functional capability and product knowledge. FSO's Advisory practice provides integrated advisory services to financial institutions and other capital markets participants, including commercial banks, investment banks, broker-dealers, asset managers (traditional and alternative), insurance and energy trading companies, and other organizations. The service offerings provided by the Advisory practice include: market, credit and operational risk management, regulatory advisory, quantitative advisory, structured finance transaction, actuarial advisory, technology enablement, risk and security, program advisory, and process and controls. The Advisory team includes individuals who have deep industry, product and client knowledge.

This role involves the assisting with the design and implementation of information technology controls and security engagements. Work with client personnel to analyze, evaluate, and enhance information systems to establish trust in an electronic environment. Assist clients and other STS professionals in developing information technology (IT) control and security policies and procedures. Collaborate with other members of the engagement team to plan the engagement, develop project plans and work programs, timelines, risk assessments, and other planning documents. Work with the team to document the business processes dependent on information technology. Ensure high quality client service by informing supervisors of engagement status. Demonstrate and apply a thorough understanding of complex information systems. Use knowledge of the current IT environment and industry IT trends to identify the engagement and client service issues, and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Demonstrate and apply strong project management skills, inspire teamwork and responsibility with engagement team members, and use current technology and tools to enhance the effectiveness of deliverables and services.

• Bachelor's degree in Computer Science, Information Systems, Engineering or a related field
• Must have 2 years of experience working as an advisor to a financial services company or comparable experience
• 1 year of relevant experience would be acceptable for those holding a graduate degree
• Must have experience in one or more of the following: Security risk assessment and analysis, including the use of risk modeling tools or frameworks (e.g., OCTAVE), security program design, including development of security strategies, policies, procedures and guidelines, Development of technical security configuration standards, and design of information security processes such as vulnerability management, incident response, security awareness, security monitoring, or identity and access management, project management of information security projects including development of project charters and plans; management of project execution and successful implementation of the planned solution, use of security technologies such as firewalls, IDS/IPS, access management, scanning tools and/or system administration of operating systems, networks or database technologies, experience in process definition, workflow design and process mapping, and understanding of networking (TCP/IP, OSI model), operating system fundamentals (Windows, UNIX, Mainframe), security technologies (firewalls, IDS/IPS, etc.) and application programming/scripting languages (C, Java, Perl, Shell)

please email all resumes to louis@mindstaff.com for prompt consideration