Current jobs related to Sr. Information Security Analyst - New York - Quorum Federal Credit Union

  • Information Security Analyst

    4 weeks ago

    New York, United States Lightbend Full time

    Job DescriptionJob DescriptionInformation Security Analyst About Us:Lightbend is a leading organization in the software business, dedicated to delivering innovative solutions and services to our clients. We pride ourselves on our commitment to excellence, integrity, and customer satisfaction. As we continue to grow, we are seeking a skilled and motivated...

  • Information Security Analyst

    2 months ago

    New York, United States ASCAP Full time

    Job DescriptionJob DescriptionAbout ASCAPThe American Society of Composers, Authors and Publishers (ASCAP) is a membership association of more than one million songwriters, composers and music publishers, and represents some of the world’s most talented music creators. Founded and governed by songwriters, composers and publishers, it is the only performing...

  • Information Security Analyst

    1 month ago

    New York, United States SideRamp Part time

    Job DescriptionJob DescriptionAbout SideRampSideRamp allows professionals to engage with part-time opportunities in the gig economy, offering a centralized platform that manages high-quality, flexible side gigs. We focus on connecting our users to various freelance and part-time work—from discovering opportunities to streamlining the application process....

  • Information Security Analyst

    15 hours ago

    New York, New York, United States Considine Search Full time

    Job Title: Information Security AnalystJob Summary:The Information Security Analyst will be responsible for monitoring Firm security systems and assisting in the coordination effort to remediate alerts and respond to incidents. Key responsibilities entail daily monitoring activities including SIEM and other security tools and identification and mitigation of...

  • Senior Information Security Analyst

    2 weeks ago

    New York, United States Winston Resources LLC Full time

    Senior Information Security AnalystPosition SummaryThe goal of information security is to protect the confidentiality, integrity, and availability of information assets. The information security team is responsible for defining and implementing security policy and standards and continuously monitoring for new threats. The Information Security Analyst is a...

  • Information Security Analyst

    4 months ago

    New York, United States eTek IT Services, Inc. Full time

    Job DescriptionJob DescriptionRequired Skills• Describe Project Background and Details? o Oversee risk issue – control structure, what are we going to do to fix it ? o Inherent risk of what the team is doing? o Need to understand GRC cyber controls ? IAM, vulnerability, info sec operations • What are the Day to Day Responsibilities? o Oversee risk...

  • Information Security Analyst

    1 month ago

    New York, United States DRUM UPSKILL Full time

    We are looking for an Information Security Analyst to join a large financial institution with a headquarters in New York City.In this role, you will work on a team that establishes baseline standard controls, resolves security vulnerabilities, and reduces cyber risk. Being a global organization, it’s important that you identify, notify, problem solve, and...

  • Information Security Analyst

    2 months ago

    New York, United States DRUM UPSKILL Full time

    We are looking for an Information Security Analyst to join a large financial institution with a headquarters in New York City.In this role, you will work on a team that establishes baseline standard controls, resolves security vulnerabilities, and reduces cyber risk. Being a global organization, it’s important that you identify, notify, problem solve, and...

  • Information Security Analyst

    3 weeks ago

    New York, New York, United States Mhymatch Inc Full time

    About the Role: As an Information Security Analyst at Mhymatch Inc, you will play a crucial role in protecting our organization's digital assets and ensuring the integrity of our information systems. Location: Remote Company Overview: Mhymatch Inc is a leading firm in the realm of cybersecurity, dedicated to delivering innovative solutions that safeguard...

  • Information Security Analyst

    4 months ago

    New Orleans, United States ExecRecruitment Full time

    Job DescriptionJob DescriptionExecRecruitment is a global professional services provider and contingency staffing company. Our main objective is to source top talent and support professional growth.One of our direct clients is actively seeking a Information Security Analyst to join their team.Job Title: Information Security AnalystLocation: RemoteDuration:...

  • Sr Cyber Security Ops Analyst

    3 weeks ago

    New Hyde Park, United States PamTen Full time

    The Sr. Security Operations Analyst is responsible for security monitoring and incident response for internal and external threats. The Sr. Security Operations Analyst performs advanced threat analysis, collaborates with internal IT teams and MSSP for security monitoring response, improves correlation and monitoring of security events, and leads security...

  • Sr. Systems Analyst

    2 weeks ago

    New York, United States JS Consulting Full time

    Job DescriptionJob DescriptionTitle: Sr. Systems Analyst/EngineerExperience: 3+ MonthsLocation: NYC, NY onsite 10003.Title: Sr. Systems Analyst/EngineerExperience: 3+ MonthsLocation: NYC, NY onsite 10003.JOB DESCRIPTION Provide support for all corporate and enclave firewalls, application delivery controllers, RADIUS, RSA. Develop and implement firewall...

  • Sr Murex Analyst

    1 week ago

    New York City, United States Aqua Information Systems, Inc. Full time

    Sr Murex Analyst - financial services to join our NYC, NY (onsite 3 days a week is a must in Hybris) long-term contract.We are looking for a Murex Analyst with a specialized focus on data quality and risk model validation.The ideal candidate will be instrumental in generating and assessing critical financial data within the Murex platform, supporting...

  • Information Security Analyst

    3 weeks ago

    New Castle, Delaware, United States Delaware River & Bay Authority (DRBA) Full time

    INFORMATION SECURITY ANALYSTPosition Overview:The Information Security Analyst plays a crucial role in proactively identifying and mitigating security threats that could impact the operations, personnel, clients, and partners of the Delaware River and Bay Authority (DRBA). Reporting directly to the Director of Information Technology Services, this position...

  • Information Security Analyst Tier 1

    2 months ago

    New York, United States MORS Full time

    Details Posted: 10-Aug-24 Location: New York, NY, US, Type: Full-time Salary: Open Internal Number: Information Security Analyst Tier 1 US-NY-New York Job ID: - Type: NYU IT (WS) # of Openings: 1 Category: Technology New York University Overview The Information Security Analyst I role involves conducting basic threat...

  • Information Security Analyst Tier 1

    2 weeks ago

    New York, United States MORS Full time

    Details Posted: 10-Sep-24 Location: New York, NY, US, Type: Full-time Salary: Open Internal Number: Information Security Analyst Tier 1 US-NY-New York Job ID: - Type: NYU IT (WS) # of Openings: 1 Category: Technology New York University Overview The Information Security Analyst I role involves conducting basic threat...

  • Information Security Compliance Analyst

    4 months ago

    New Orleans, United States ExecRecruitment Full time

    Job DescriptionJob DescriptionExecRecruitment is a global professional services provider and contingency staffing company. Our main objective is to source top talent and support professional growth.One of our direct clients is actively seeking an Information Security Compliance Analyst to join their team.Job Title: Information Security Compliance...

  • Senior Information Security Analyst

    4 months ago

    New Orleans, United States ExecRecruitment Full time

    Job DescriptionJob DescriptionExecRecruitment is a global professional services provider and contingency staffing company. Our main objective is to source top talent and support professional growth.One of our direct clients is actively seeking a Senior Information Security Analyst to join their team.Job Title: Senior Information Security AnalystLocation:...

  • Information Security Analyst

    3 weeks ago

    New York, New York, United States Noor Staffing Group Full time

    This position is based in a dynamic environment focused on safeguarding information assets.Please be aware that sponsorship is not available for this role, and we are not considering contract-to-contract candidates.The key responsibilities of this position involve identifying and evaluating security vulnerabilities, working collaboratively with various...

  • Information Security Analyst

    3 weeks ago

    New York, New York, United States Noor Staffing Group Full time

    Salary: $125,000-$145,000Work Arrangement: On-Site Monday-Thursday / Remote FridaysPlease note that candidates must reside in the local area as relocation is not an option for this position.The Cybersecurity Specialist plays a crucial role in safeguarding, managing, and overseeing the security of the organization's enterprise infrastructure and network...

Sr. Information Security Analyst

4 months ago

New York, United States Quorum Federal Credit Union Full time

Who is Quorum?

Quorum Federal Credit Union is a national employer of choice that attracts, develops, enables, and retains the right resources to drive the organization forward. We are a human-centered organization that delivers a positive work journey and is committed to enhancing the lives of our employees and helping them to grow personally and professionally. We offer a unique value proposition to employees including Total Rewards, Work Journey, Work Paradigm, and Q-DNA to improve work-life balance and help employees live happier, more productive lives while contributing to our mission.

Job Description Summary

The Sr. Information Security Analyst plays a pivotal role in safeguarding sensitive data and fortifying our technology infrastructure, networks, and systems against an ever-evolving landscape of cyber threats. As a result, this position demands a unique blend of hands-on IT technical engineering expertise and business acumen with a focus on developing and implementing robust cybersecurity policies, procedures, and controls. In this role, you will have the opportunity to contribute to the organizations cybersecurity roadmap and priorities as well as foster cybersecurity awareness, education, and training for employees. Your analytical and problem-solving skills will be essential as you proactively monitor and assess cybersecurity threats, enabling you to implement effective mitigation measures and promptly resolve any information security issues that may arise.

The Sr. Information Security Analyst will also partner with our outsourced Technology Managed Services Provider, ensuring strict oversight to guarantee the fulfillment of contracted services. You will collaborate on matters pertaining to security tools, network monitoring, endpoint data protection, identity management, vulnerability/patch management, and incident response, upholding the highest standards of security throughout our organization.

Key Job Responsibilities and Accountabilities

Oversees the development, execution of information security policies, procedures, and controls to protect our organization's information systems, networks, and the confidentiality of data assets and sensitive information.
Ensures compliance with relevant regulations and industry standards including activities such as conducting internal audits, coordinating external audits, and ensuring adherence to compliance requirements.
Drives continuous improvement by proactively identifying and addressing Information security risks and vulnerabilities.
Communicates and collaborates with key stakeholders, within IT, executive management, and external partners or vendors.
Monitors effectiveness of security tools / processes and reports on the status of security services related to: Endpoint Intrusion Detection/Response, Endpoint Anti-Virus Malware, Vulnerability, SIEM and Patch management, Firewall Rules, Email Anti-Spam Quarantine, DLP, Identity Management, etc.
Responsible to configure and manage security tools, where applicable.
Provides vendor management oversight with our Technology Managed Services provider and other security vendor services to ensure adequate processes and controls are in place to monitor, detect and prevent cybersecurity incidents and threats. Monitors adherence to established service level agreements in conjunction with our Information Security and Vendor Management Policies.
Monitors and analyzes threat intelligence sources and conducts periodic technology risk assessments to identify emerging threats and vulnerabilities. Maintains the IT cybersecurity risk register and associated remediation action plans.
Prepares and delivers regular status health reports on security operations, vulnerabilities and risks, phishing and other security incident response activities, and compliance audit efforts to management. This includes tracking and communicating security-related information to relevant stakeholders as well as executive briefs to senior management.
Develops and implements Information Security education and awareness training programs across the organization.
Creates training materials, conducts regular training sessions, and measures the effectiveness of the training program.
Manages projects along with related communications and content to support deployment and employee training and awareness programs.
Monitors, analyzes, and reports on employee engagement and security awareness as well as provides recommendations to management for improvements.
Ensures cybersecurity awareness benefits are clearly visible and champions related efforts going forward across the organization.
Manages the employee Phishing testing program and related analytics and reporting to assess the success of the program.
Performs technology security architecture evaluations to assess for vulnerabilities and weaknesses, recommending appropriate security technologies and solutions to enhance the organization's security posture.
Manages changes related to technology upgrades and other changes to the information security environment.
Performs cybersecurity risk assessments related to implementation of new technology and recommends appropriate controls to mitigate risk.
Performs vendor due diligence information security risk assessments and SOC audit reviews.
Manages response and mitigation actions related to audit findings conducted by internal audit, regulatory agencies or by other third parties.
Monitors and audits Identity management and user access privileges across Active Directory, Azure and all Single Sign-on SSO connectors.
Functions as a project manager on departmental and/or organization wide projects. Leads discovery and information gathering sessions. Conducts analysis and presents business case to management encompassing benefits, risks, cost, and solution recommendation. Manages the project plan inclusive of tasks, assignees, and project status updates. Contributes subject matter expertise in his/her assigned area, executes deliverables, and ensures the team completes project deliverables as outlined based on the project scope and requirements.
Creates and maintains Information Security documentation (policies and procedure; end-user guides, system administrator guides, etc.) using clear and concise language.
Supports adherence and adoption of IT policies, procedures, and governance standards.
Performs additional duties as required.

Job Requirements, Competencies, and Skills

Bachelors degree in computer science, information technology or other related degree is strongly preferred, however a combination of education and related work experience may be considered.
The position has the following minimum requirements:
Seven plus years of Information Technology experience.
Four plus years of demonstrated hands-on information security engineering experience.
Two plus years of demonstrated hands-on experience running Azure Cloud security products and tools (e.g., MS Defender, XDR, Sentinel, Purview, Entra, Azure Logs, etc.).
Certified Information Systems Security Professional (CISSP) and or Certified Information Security Manager (CISM).
In-depth knowledge of security technologies and tools, such as networking, firewalls, intrusion detection and prevention systems, endpoint protection, Patching, vulnerability, DLP and identity Management tools and processes.
Technical knowledge and experience with Azure Cloud PaaS and SaaS technologies and M365 environments.
Knowledge of relevant regulations and standards, such as FFIEC, SOX, PCI, NIST or NCUA / OCC preferred.
Technical knowledge of Windows server and desktop operating systems and related technologies. Experience supporting virtualized environments, particularly Virtual Desktop Infrastructure using Citrix and Azure VMs.
Good understanding of network protocols (for example: TCP/IP, DNS, DHCP etc.)
Experience using ITIL Service Management based ticketing systems.
Excellent written communication and interpersonal skills, with demonstrated ability to formally package and present business case risk and or solutions to management stakeholders.
Results Driven, Adaptive Thinking, Digital Proficiency.
Excellent problem-solving, analytical, and time management skills.
Ability to provide IT service support and respond to incident alert notifications during off hours, on a rotational basis, is required.
Ability to physically lift, carry and install equipment weighing up to 25 lbs.

Environmental / Physical / Mental Requirements

Stable internet connection with speeds high enough for video conferencing and screen sharing.
Smartphone with current iOS/Android OS
Prolonged periods sitting at a workstation and working on a computer.
Ability to communicate with coworkers and customers via email, chat, teleconference, and/or phone.

Compliance/legal requirements

Quorum is an Equal Employment Opportunity and Affirmative Action Employer. Qualified applicants will be considered for employment without regard to race, color, religion, gender, sexual orientation, national origin, age, marital status, protected veteran status, or disability status.
Quorum will make reasonable accommodations in compliance with the Americans with Disabilities Act of 1990. Reasonable accommodations are available upon request for qualified individuals with disabilities throughout the application and employment process.

**PLEASE NOTE**

We are not able to consider candidates for this role who reside in Montana, Nebraska, Rhode Island, or Puerto Rico

Salary Range: $100,000 to $115,000 annually. Individual salary will vary based on skills and experience. Discretionary incentive compensation may be available based on company and individual performance.

Benefits: Medical, Vision, Dental, Retirement Benefits, and Paid Time Off (PTO)

#LI-Remote

Experience
Required
7 year(s): HS diploma or equal is required & Bachelors in Info Tech or related is preferred; combination of education & related work experience may be considered. Minimum requirement of 7+ years of Information Technology experience, specifically including 4+ years of hands-on INFOSEC engineering experience and 2+ years hands-on experience running Azure Cloud security products and tools (e.g., MS Defender, XDR, Sentinel, Purview, Entra, Azure Logs, etc.). Active CISSP and/or CISM cert is also required
Education
Required
High School or better
Preferred
Bachelors or better in Information Technology or related field

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities

The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractors legal duty to furnish information. 41 CFR 60-1.35(c)

by Jobble