Information Security Risk Analyst
Washington,DC
Skill Set requirements;
§ Minimum 8 years experience in a mission-critical production environment required
§ Minimum 8 years experience with proprietary and sensitive data classifications required
§ Demonstrated knowledge and experience of the Bank Group's and Unit's systems and business processes, policies and procedures, as well as relevant software application systems, hardware configuration and Network Architecture to implement Information Security as a process.
§ Ability to conduct standards based (COBiT/SOX) risk assessment of financial applications and processes, design and implements controls, gather auditable evidence needed to meet compliance standards.
§ Ability to develop specific proactive procedures for detection of security breaches, identifying security risks in the software development process and code promotion procedures.
§ Demonstrated conceptual, analytical and innovative problem-solving and evaluative skills, an ability to conduct independent research and analysis in the event of a security breach, identifying issues, formulating options, proactively closing the security loop-holes, and making conclusions and recommendations.
§ Demonstrate good interpersonal skills; including the ability to work effectively in a team/task force as participant or team leader.
§ Capacity to work independently and willingness to seek advice/assistance.
§ Demonstrated knowledge and experience of working on advanced technologies specifically in the areas of Identity and Access Management, PKI, User Provisioning, Role Mining, Vulnerability Assessment and Penetration Testing tools for Oracle.
§ Analyzing security configurations for Microsoft Windows NT, Microsoft Windows 2000, and Cisco IOS, Oracle 9i/10g platform.