Description
Information Security Specialist CISSP/CISM HP ArcSight RSA McAffee - Investment Bank
Information Security Specialist is required for a Top Tier Investment bank with experience in an Information Security management role in a large & complex environment
Must have CISSP/CISM. Knowledge/experience of Encase Forensic tools. Knowledge of e-discovery tools- search/retrieval/review and case management etc. Familiarity/experience of specifc security related tools (RSA Arhcer eGRC, Access Data -Summation) would be beneficial. Experience in Security Best practices. Experience in security tools such as HP ArcSight, Qualys, Checkpoint DLP, McAffee suite
Experience in Cyber threats, attacks and vulnerabilities. A strong technical background in IT security is necessary since the position requires risks analysis before taking decisions that may impact the security of the Bank. The Security Special will have good general Information Security knowledge and in-depth knowledge and experience of several areas of Information Security
Role
The purpose of theInformation security Cyber threat and investigations Specialist is to bring specialist Cyber and investigations knowledge to BAU, projects and initiatives as required.
Key responsibilities include:
- Assist in applications security reviews for compliance with policy/business requirements.
- Assist in information security incident/investigation management
- Assist with Forensic investigations and the evolution of tools and process
- Assist with eDiscovery investigations and the evolution of tools and process
- Advise on Information Security topics to Compliance, Legal and other areas of the bank in relation to investigations
- Keep abreast of Information Security threats and understand their impact regionally and globally and to actively work under direction of the UK CISO to reduce potential risks materialising
- Keep up-to-date with market evolution, in respect of new tools to ensure the territory is protected against evolving threats.
- Participate and contribute to Information Security governance.
- Undertake and follow-up Information Security Audits internally/externally.
- Work with the IT OPC team to develop and evolve a relevant Information Security control framework for the UK territory
- Assist, advise and contribute to the Security Information and Event Monitoring tool inc. evolution, the input, patterns/correlations identification and process that support this.
- Proactively monitor and detect threats, attacks and vulnerabilities
- Advice remediation actions against threats, attacks and vulnerabilities and ensure that the bank is adequately prepared to respond to a serious Cyber-attack incident
- Develop, run and/or participate in desktop Cyber and other Security exercises internally or externally and ensure that these are followed-up appropriately.
- Actively participate in the development, selection, trial and implementation of Security monitoring tools such as DLP, APT, etc
Please note the job will encompass operational elements such as external scanning, penetration testing and participation in on-call rota.
Adlam Consulting operates as an Employment Agency & an Employment Business