Senior Information Security Lead -Job ID P121235 - Full-time

This Security Infrastructure Management (SIM) LEAD position requires exceptional leadership, talent to establish rewarding partnerships with all levels of the organization, a proven record of managing multiple conflicting priorities, embracing Corporate Values & Leadership, and experience leading interactions and facilitating evidence with auditors and regulators. The SIM LEAD will be consistently challenged with articulating our security and risk positions, planning and aligning business demands with our overall technology roadmap, and coordinating collaborative work with internal and external business partners, under pressure, in critical and sensitive environments. If you are interested in applying, please provide a statement (in your attached cover letter) emphasizing how your leadership competencies, and your business experience, enrich this role.
The candidate will be primarily responsible for supporting the Business Technology-Info Security (BT-IS) infrastructure diverse and complex systems; in addition to providing advanced technical support and info security guidance on the infrastructure components, client interfaces, application services, proxy, remote access, endpoint, data security, firewalls, logs, and threat and vulnerability management, and DR/BCP technologies, etc. with complete focus on availability and performance.

Job Duties:

Conduct Security Infrastructure Operations Tasks.

Primary Tasks:
• Lead a group of technical professionals to achieve the desired results, and ensure completeness and defect-free deployments
• Take on the effective challenge to proactively think strategically, anticipate risks and manage contingencies
• Become the go-to person on multiple security technologies and apply the right security controls when approached for guidance
• Implement practical mechanism to ensure consistent dashboard reporting to upper management on actions taken to address vulnerabilities, alerts, bulletins, event flow disruptions, etc.
• Partner with Security Engineering to facilitate the operationalization of new technology solutions
• Work closely with BT teams as required
• Provide Subject Matter Expertise for info security controls, infra, processes, solutions, technologies, etc.
• Provide advanced troubleshooting and resolution to complex systems and application issues
• Identify, troubleshoot, and resolve issues related to wide array of security technologies
• Conduct the required troubleshooting, upgrade, refresh, standardization in support of key projects
• Support security infrastructure to maintain availability and compliance
• Analyze root cause of chronic infra components, and perform maintenance and/or upgrades as required
• Report trends, analysis, infra performance and system logs, and evaluate solutions for optimal performance and maximized availability
• Perform post-incident review and analysis on outages, and develop recommendations and/or solutions to prevent reoccurrence
• Support Change Management process, calls, meetings and events
• Support production incidents, rapid resolution, and root cause processes
• Evaluate client requests for approval, and respond to inquiries and help client with resolution
• Resolve the SIM ticket queue and ensure zero defects
• Develop tools and procedures to support the BT-IS teams
• Participate in 24X7 On-Call pager support/rotation
• Respond at once to incidents if paged

Secondary Tasks:
• Represent BT-IS in project meetings/forums as the SIM-designate as required
• Conduct research on security related technical issues
• Work with various teams to understand and support info security architecture and technologies
• Work with teams to define new ways of reconfiguring their application security to minimize security risks and exposure
• Work with various teams to perform tests and implement new security configurations
• Review application security assessments and evaluate compliance

Other Day-to-Day Tasks:
• Flexibility to perform other Information Security duties and responsibilities
• Consultant and technical liaison between BT-IS and other BT teams
• Complete technical documentation
• Work with business partners, peers and staff to identify business efficiencies and improvement opportunities
• Maintain and utilize documentation, assessments and procedures

• Promote a risk-aware culture, ensure efficient and effective risk and compliance management practices by adhering to required standards and processes.

Qualifications

• A successful record of prior IT Security leadership experience is a MUST
• College Degree and/or 10 years of technical experience in financial services
• Operating system experience; minimum 5 years of working knowledge of Microsoft/Windows and/or UNIX products & technologies
• Working knowledge of DFS and affiliates systems, applications and processes a plus
• Solid technical understanding of networking, proxy, remote access, endpoints and firewalls
• Proven leadership role and supervision of technical groups
• Creating and maintaining documentation, process flows, and technical designs as needed
• Experience in presenting/interacting with senior management
• Experience in ticket resolution and achieving >99% customer satisfaction
• Experience implementation of infra network requests/changes (e.g. firewall, proxy) in accordance with corporate security policy and established procedures – is desirable
• Information security certifications and/or CISSP, CISA, GIAC is preferred
Security Infra Technology
The successful candidate should have experience/knowledge working with the following technologies:
• Proxy Server Management
• Remote Access Infrastructure
• Two Factor Authentication
• Firewalls
• Data Security: Data Leakage Protection
• Data Governance Solutions
• Endpoint Protection
• Scan Engines
• Encryption
• Log Management: Aggregation/Monitoring
• Threat: Threat Intelligence; Malware Protection; Network Intrusion Prevention/Detection
• Vulnerability Management
• Security Platforms: Windows Security or UNIX Security
• Centralized Administration / Privileged Access Compliance
• BYOD
• Cloud Technology

#LI-SS1
PLEASE indicate Infra EXPERIENCE in # years and RATE knowledge 1-10 (highest)

Skills
1.) Personal commitment to the Corporate Values and Leadership Behaviors.
2.) In depth knowledge of Operating Systems
3.) Good understanding of network components
4.) Confidence communicating with technical teams regarding infrastructure operational issues
5.) Experience with endpoint infrastructure and technologies
6.) Expertise in troubleshooting proxy traffic
7.) Working knowledge of remote access solutions
8.) Experience troubleshooting traffic passing through firewalls and connectivity issues
9.) Ability to make good decisions under pressure
10.) Proven capability in completing detailed technical documentation
11.) Strong knowledge of desktop, file system security, and access control lists (ACLs)
12.) Knowledge of audit requirements and information security controls
13.) Understanding PCI compliance
14.) Knowledge of role-based access controls
15.) Strong interpersonal, communication and problem solving skills
16.) Positive and customer-oriented outlook
17.) Self-starter and an effective contributor in a team environment
18.) Ability to coordinate multiple tasks simultaneously We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity, status as a veteran, and basis of disability or any other federal, state or local protected class.