Cyber Security, Associate
Cyber Security, Associate
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Job Description
About this role
Role Description:
The Information Security team member will augment the Supply Chain Security team and play an integral part in the development implementation and compliance of technical security across the enterprise. The candidate will be key contributor to ongoing security assessments of third-party tools and products and will regularly act as a voice of Information Security to business teams and management building cyber security confidence in support of business development and governance processes.
Responsibilities:
Perform focused assessments of existing or new service providers and technologies being introduced into the firms environment.
Experience in performing cyber security due diligence assessments of third-party service providers and vendors.
Provide governance and oversight over existing and new SaaS and IaaS products
Influence the overall direction for securing infrastructure applications and third parties service providers for the firm
Communicate risk assessment findings to information security stakeholders or business partners and influences the risk mitigation
Provide consultative advice to information security customers that enables them to make informed risk management decisions
Performing assessments of new and existing Internet of Things (IoT) Deployments
Identify appropriate controls to effectively manage information risks as needed
Identify opportunities to improve risk posture developing solutions for remediating or mitigating risks and assessing the residual risk
Maintain strong working relationships with individuals and groups involved in managing information risks across the organization
Support the documentation of Information Security Policies and Standards
Security assessments of third-party software packages deployed on machines
Perform vulnerability impact analysis of newly identified vulnerabilities of the firms critical service providers
Candidates will be evaluated based on their ability to perform the duties listed above while demonstrating the skills and competencies necessary to be highly effective in the role. These skills and competencies include:
Strong documentation and process-oriented background with experience working on complex technology projects
An ability to effectively influence others to account for the plans and collaborative behaviors for results
An ability to communicate complex and technical issues to diverse audiences orally and in writing in an easily understood authoritative and actionable manner
An ability to identify and assesses the severity and potential impact of risks and communicate risk assessment findings to risk owners in a way that influences optimum risk mitigation
Strong decision-making capabilities with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one
Ability to react to high pressure dynamic changing environments
Excellent prioritization capabilities with an aptitude for breaking down work into manageable parts effectively assessing the priority and time required to complete each part
An ability to work on several tasks simultaneously and pay attention to sources of information from inside and outside ones network within an organization
An ability to apply original and innovative thinking to produce new ideas and create innovative products solutions or approaches
A discipline and interpersonal skills to work well in a global environment complementing teams in multiple remote locations
Experience
Degree in Business Computer Engineering Computer Science Information Security or a related field
Working knowledge of data analysis techniques including Excel Python and basic SQL skills
Experience with agile project management
Knowledge of Azure security AWS security web security including API and token security
5 years Information Security experience
3 years with risk advisory and senior management communication metrics collaboration to drive risk-based results
3 years of experience with documenting project management written analysis for Information Security risk assessments
3 years of experience in an Enterprise Risk Management and/or assessing controls within a Technology and/or Financial Services firm
Experience with information security management frameworks (e.g. IS027001 COBIT NIST 800 SOC 2 Type 2)
Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) and/or Certified Information Systems Auditor (CISA)
AWS GCP or Azure security certifications are a plus
Our benefits
To help you stay energized engaged and inspired we offer a wide range of benefits including a strong retirement plan tuition reimbursement comprehensive healthcare support for working parents and Flexible Time Off (FTO) so you can relax recharge and be there for the people you care about.
Our hybrid work model
BlackRocks hybrid work model is designed to enable a culture of collaboration and apprenticeship that enriches the experience of our employees while supporting flexibility for all. Employees are currently required to work at least 4 days in the office per week with the flexibility to work from home 1 day a week. Some business groups may require more time in the office due to their roles and responsibilities. We remain focused on increasing the impactful moments that arise when we work together in person aligned with our commitment to performance and innovation. As a new joiner you can count on this hybrid model to accelerate your learning and onboarding experience here at BlackRock.
About BlackRock
At BlackRock we are all connected by one mission: to help more and more people experience financial well-being. Our clients and the people they serve are saving for retirement paying for their childrens educations buying homes and starting businesses. Their investments also help to strengthen the global economy: support businesses small and large; finance infrastructure projects that connect and power cities; and facilitate innovations that drive progress.
This mission would not be possible without our smartest investment the one we make in our employees. Its why were dedicated to creating an environment where our colleagues feel welcomed valued and supported with networks benefits and development opportunities to help them thrive.
For additional information on BlackRock please visit @blackrock Twitter: @blackrock LinkedIn: is proud to be an Equal Opportunity Employer. We evaluate qualified applicants without regard to age disability family status gender identity race religion sex sexual orientation and other protected attributes at law.
Required Experience:
IC
Employment Type
Full-Time
