Sr.Specialist Information Security Analyst- Identity Access Management (IAM) Risk Management
IAM Audit andRegulatory - Respond to IAM related inquiries from internal/external auditorsand regulators, and work with stakeholders to develop plan and response.
IAM Policy &Standards - Develop and maintain IAM Policy/Standards.
IAM Risk and ControlAssessment - Provide SME support on IAM related risk statements and controlobjectives, develop/maintain IAM control statements to mitigate risks in linewith policy, standards and control objectives. Perform/coordinate controltesting to evaluate control effectiveness.
IAM Risk Reporting -Design KRI/KPI/KCI, IAM risk dashboard and related reporting requirement tomeasure IAM risk.
Provide advisorysupport to business, users and relevant stakeholders and perform other IAMrelated duties as required.
Consults with stakeholders to analyze, define, challenge and prioritize the business requirements, functional specifications and operational architecture for a functional work stream within a complex strategic, global program. Formulates and defines program scope and objectives for the work stream with thorough understanding of business processes in a specific business domain. Tailors standard processes and templates for team to elicit, challenge, and prioritize requirements, and translates into functional design and use case models. Understands the Elevated Access concepts and works with Business teams to collect the inventory of users with Elevated Access. Contributes in documenting requirements, processes , data flows, procedures and guidelines for Elevated Access. Reviews and analyzes the collected inventory and information to provide insights, conclusions and actionable recommendations provides direction and guidance on reports and analyses and ensures recommendations are aligned with customer/business needs and capabilities. Applies problem solving skills, experience and judgment to analyze information. Ensures that all significant security concerns and controls are addressed. Recommends course of action to mitigate risk and ensures that appropriate standards are established and published. Contributes to the achievement of area objectives and should be able to articulate real business impact of delivering or failing to deliver against a requirement.
Consults with other IT areas and thebusinesses and provides professional support for major components of thecompany's information security infrastructure.
Contributes to the development andimplementation of security architecture, standards, procedures and guidelinesfor multiple platforms.
Consults with the business andoperational infrastructure personnel regarding new and existing technologies.Recommends new security tools to management and reports and provides guidanceand expertise in their implementation.
Reviews and analyzes complex dataand information to provide insights, conclusions and actionable recommendations
Provides direction and guidance onreports and analyses and ensures recommendations are aligned withcustomer/business needs and capabilities.
Ensures that all significantsecurity concerns are addressed. Recommends course of action to mitigate riskand ensures that appropriate standards are established and published. Qualifications
- Bachelor's degree in computer science or a related discipline, or equivalent work experience is required
- Experienced in working with data.
- 8-10 years of experience in information security or related technology experience required; experience in the securities or financial services industry is a plus
For over 230 years, the people of BNY Mellon have been at the forefront of finance, expanding the financial markets while supporting investors throughout the investment lifecycle. BNY Mellon can act as a single point of contact for clients looking to create, trade, hold, manage, service, distribute or restructure investments & safeguards nearly one-fifth of the world's financial assets. BNY Mellon remains one of the safest, most trusted and admired companies. Every day our employees make their mark by helping clients better manage and service their financial assets around the world. Whether providing financial services for institutions, corporations or individual investors, clients count on the people of BNY Mellon across time zones and in 35 countries and more than 100 markets. It's the collective ambition, innovative thinking and exceptionally focused client service paired with a commitment to doing what is right that continues to set us apart. Make your mark: bnymellon.com/careers.
Client Technology Solutions provides our business partners with client-focused, technology-based solutions. These enhance their ability to be successful through world-class software solutions and leading-edge infrastructure. Client Technology Solutions provides employees with the tools and resources to enhance their professional qualifications and careers. BNY Mellon is an Equal Employment Opportunity/Affirmative Action Employer.
Minorities/Females/Individuals With Disabilities/Protected Veterans. Primary Location:
United States-New York-New York Internal Jobcode:
Information Technology Organization:
Information Security-HR11724 Requisition Number: