Banking or Financial background
Duration: 12 months
Extension possible: Possibly
Conversion Possible: Possibly
Hybrid, onsite twice a week
MUST HAVE:
Competencies in technology controls, emerging threats, information security and cybersecurity – 10 years' experience
Dev Sec Ops experience – implementing devSecOps based on industry best practice would be huge asset
Experience in managing business process controls projects
GRC background and tools (e.g. RSA Archer, Open Pages, etc.)
Information Security Specialist experience
Infrastructure Expertise
Integration and implementation experience
Risk Assessment
Risk Management
SSDLC
NICE TO HAVE
Banking experience
CCSLP Certificate
GitHub experience
Software development automation experience
SUMMARY OF DAY-TO-DAY RESPONSIBILITIES:
Directs the planning and implementation of enterprise IT system, business operation, and facility defenses against security breaches and vulnerability issues. This individual is also responsible for auditing existing systems, while directing the administration of security policies, activities, and standards. Direct and apply control systems to prevent error, abuse, fraud, etc. Take full responsibility for minimizing disaster threat effects and for recovery. Raise awareness of all levels of the organization regarding security practices
