Job offer
Information Security Specialist
The Information Security Specialist is responsible for performing technical security tasks and monitoring activities to ensure compliance with bank policies and to monitor the IT security infrastructure for the business units. The specialist must have in-depth knowledge of security tools, IT architecture, web applications, and networks in order to identify and mitigate potential security risks.
Job description
Under general supervision, the Information Security Specialist performs technical tasks and monitoring activities in the area of information security, in accordance with the bank’s policies. He provides status reports to management, works on the development and improvement of security projects with some supervision, and monitors and controls the IT security infrastructure for the business units to identify, mitigate, and control risks by ensuring compliance with agreed-upon rules and standards.Tasks and responsibilities
* Carry out IT security activities to ensure that customers receive high-quality, cost-effective services that comply with agreed-upon business plans and standards. * In-depth knowledge of security tools such as log aggregators, firewalls, proxies, DLP, and others. * Monitor and control infrastructure data by implementing agreed-upon rules and standards within the business unit to effectively mitigate and control data security risks. * Ensure that appropriate audits, risk/vulnerability analyses, and penetration tests are conducted regularly to identify potential security risks/vulnerabilities, malware, and security breaches, and to find and escalate solutions as necessary. * Technical knowledge of IT architecture, web applications, and networks. * Contribute to the review of the design, development, and specifications of new or revised processes, systems, information, documentation, and supporting materials to compile reports that ensure customer requirements are fully understood and met. * Assist in the timely and accurate delivery of security projects and initiatives to ensure they meet specifications and budget constraints. * Responsible for understanding and complying with all bank policies, procedures, and standards, as well as state rules and regulations relevant to the position. * Monitor user activities related to application and system security, such as expired passwords, administrative/power-user activities, inactive user accounts, and other elements consistent with the bank’s security management practices. * Perform routine security management tasks and/or maintenance for all systems and bank applications to ensure that policies and/or standards are not violated, and report findings to management. * Communicate instances where users do not comply with bank policies and ensure that issues are resolved in a timely manner. * Contribute to the implementation of new and innovative processes or technologies that advance the information security program. * Stay current on current and emerging technical developments in the field of information security, including relevant federal and state laws and certification requirements. * Maintain the confidentiality of corporate information, including specified security elements and controls. * Collaborate effectively with IT, Audit, Internal Control, headquarters, and other groups as needed. * Technical knowledge of operating systems from an information security perspective. * Comprehensive understanding of the company’s technology and IT systems. * Plan, research, and design security architectures. * Test the final security system and update and upgrade it as needed. * Respond quickly and effectively to allJob details