Vacancy expired!
Software Guidance & Assistance, Inc., (SGA), is searching for an Information Security & Governance Analyst for a Full-Time assignment with one of our premier Financial Advisory clients in New York, NY . Position Summary : The Information Security Team is responsible for developing and propagating Moelis & Company's information governance and risk management policies and procedures; evaluating and remediating impact to the Firm resulting from the unauthorized access, use, modification, destruction, disclosure of Firm and / or client data, documents, work products, or formal records or information technology environment; ensuring leadership is making informed risk based decisions; and implementing and maintaining information security policies in the Firm's global information technology environment. The Information Security team also assists in evaluating, selecting, and implementing new security technologies and establishing processes and best practices. Essential Functions : Analyze key information and research in order to recommend improvements to information governance processes that align with business goals; Review audits and ensure that remediation steps are designed and implemented to prevent repeat failures or inadequate audits; Ensure third party risk assessments are performed in a timely manner; Promptly reporting any and all exceptions to policies, procedures, and operational standards to the Director, Security Analytics and Threat intelligence, and/or Chief Information Security Officer as necessary; Executing the Firm's information security threat management process, ensuring all aspects of an event are documented and remediated, and communicated to the Director, Information Security; Monitoring and analyzing security relevant logs, events, and alerts including, but not limited to, logs from systems, applications, SIEM, AV, Firewalls, and IPS; document relevant incidents and suggest/coordinate appropriate remedial actions; Coordinate with the SOC and various teams to investigate security events/incidents. Analyze security appliance logs and respond to security incidents Reviewing all operational, hardware, and software changes that may impact the firm's standard information governance and risk management posture; Participating in all projects, programs, and initiatives to ensure implementation of and adherence to the Firm's information governance and risk management policies, procedures, processes, and technologies; Providing consultative direction and advice regarding to information governance and risk management standards, technologies, policies, and procedures for all Firm offices and facilities. Must be able to coordinate project work with others inside and outside the department. Able to respond to and remediate information governance and risk management events that arise unpredictably, and have a good overall understanding of the required work to maintain a highly secure environment. Skills and Characteristics : The candidate should have data analytics skills Working knowledge of the industry standards, policies, processes, procedures, and currently available technologies applicable to maintaining and supporting a mature information security program; Exhibiting the ability to think and act strategically as well as tactically, utilizing interpersonal as well as written and verbal communication skills to effectively support the Firm's global information governance and risk management functions; Sound analytical and operational judgment, the use of tact in daily and stressful situations, and sound analytical rigor applied to supporting and remediating events in the Firm's information security systems, processes, and procedures; Good interpersonal, communication, organization, collaboration, and team-building skills; Able to work effectively with internal resources, partners, administrators, clients and other management personnel; Knowledge of scripting language such as python, power shell a plus Education and Experience: At least 1 to 3 years' experience in one or more security domain, proven track record of implementing and operating information security systems, and working in projects related to the core domains applicable to information security architecture. Bachelor's Degree in Engineering or Computer Science a plus. 2-5 years of progressive relevant hands-on IT experience SGA is a technology and resource solutions provider driven to stand out. We are a women-owned business. Our mission: to solve big IT problems with a more personal, boutique approach. Each year, we match consultants like you to more than 1,000 engagements. When we say let's work better together, we mean it. You'll join a diverse team built on these core values: customer service, employee development, and quality and integrity in everything we do. Be yourself, love what you do and find your passion at work. Please find us at https://sgainc.com . EEO Employer: Race, Color, Sex, Sexual Orientation, Gender Identity, Religion, National Origin, Disability, Veteran Status, Age, Marital Status, Pregnancy, Genetic Information, or Other Legally Protected Status.
Vacancy expired!