Skip Navigation

AVP, Senior Information Security Analyst

  • New York, NY
  • Full Time

Apply for the AVP, Senior Information Security Analyst position

"*" indicates required fields

Max. file size: 10 MB.
Drop files, or upload here
Madison-Davis is committed to protecting and respecting your privacy, and we will only use your personal information to contact you regarding the services you requested from us. Your contact information will not be shared or sold to third parties for marketing purposes. We would like to contact you about our products and services, as well as other content that may be of interest to you; messaging frequency will vary based on hiring needs and opportunities. If you consent to us contacting you for this purpose, please check the box below.
I agree to receive communications from Madison-Davis
You may unsubscribe from these communications at any time by replying STOP. You may also text HELP for more information. Mobile messaging and data rates may apply.
This field is for validation purposes and should be left unchanged.

Office Status: On-Site
Salary: Up to $130,000

Responsibilities:

  • Experience leading risk assessments, audits, policy, governance, and/or reporting, preferably in a financial institution
  • Assist with mapping controls to policies, procedures, and processes and testing of those controls to ensure adequate coverage
  • Establish and maintain security manuals
  • Work with control owners in the remediation and tracking of deficiencies.
  • Assist with increasing the maturity of the Information Security program, strategy and process.
  • Provide security services in identifying, assessing, managing, and tracking remediation of information security risks related to IT infrastructure, applications, platforms and suppliers and drive explicit requirements and timelines in all environments
  • Provide update to the CISO and/or CRO on progress of remediation efforts
  • Tufin – Firewall rule review and approval
  • AlienVault – SIEM – System event monitoring and analysis with follow up if issue is detected
  • Tipping Point – IPS – Monitoring network for signs of malicious activity or exploitation
  • Trellix EPO + TMS – Daily monitoring of Data Loss Prevention tools
  • Manage phishing campaigns, create email templates, perform testing, analyze results, and write report
  • Spirion – Create scans to monitor files containing PII and ensure they are destroyed in accordance with data retention policy
  • Privileged Access Management (PAM) and reporting
  • Chair weekly IT meeting to discuss vulnerabilities, patching, and alarms generated by IS tools
  • Threat Intelligence – Monitor Qualys Threat Protection Feed and CISA emails for relevant information to protect the network
  • Work with vendors for troubleshooting and maintenance of IS tools