Information Security Consultant

Location:

Job Summary
The Info Security Consultant develops and implements security standards procedures and guidelines for multiple platforms and diverse system environments; facilitates system access operations and maintenance at KeyBank.

Essential Functions

• Identifies and analyzes security risks communicates risks to appropriate parties and ensures mitigation to enable risk-based business decision making.
• Understanding of security and technology strategies related security controls and processes and general business/financial knowledge.
• Strong security networking risk management and technical skills; solid and demonstrable comprehension of security including tools controls policies threats and attacks.
• Solid presentation development; thoughtful organization of content; takes audience into account; solid writing skills; can cohesively present and organize information in support of conclusions/findings; identifies and fills gaps in documentation.
• Performs other duties as assigned; duties responsibilities and/or activities may change or new ones may be assigned at any time with or without notice
• Complies with all KeyBank policies and procedures including without limitation acting professionally at all times conducting business ethically avoiding conflicts of interest and acting in the best interests of Keys clients and Key.

Education

• Bachelors Degree (preferred)

• OR equivalent experience (required)
• CISSP certification (preferred)

Work Experience

• Minimum 3-5 years of security experience including technology-related auditing consulting and/or operational banking experience (required)

Skills

• Working knowledge of the importance of inter-team collaboration in breaking down silos and achieving business results; ability to lead employees from various functions to communicate coordinate work across divisions and collaborate in solving problems as one team.
• Basic understanding of major functional processes and associated operating requirements; ability to apply this knowledge appropriately to diverse situations.
• Working knowledge of techniques and tools that promote effective analysis; ability to determine the root cause of organizational problems and create alternative solutions that resolve these problems.
• Working knowledge of effective communication concepts tools and techniques; ability to effectively transmit receive and accurately interpret ideas information and needs through the application of appropriate communication behaviors.
• Extensive experience with being proactive and committing to action on self-identified job responsibilities and challenges; ability to seek out work and the drive to accomplish goals.
• Basic understanding of tools techniques approaches and processes of cybersecurity risk management; ability to ensure organizational network operation and minimize negative effect by cybersecurity risks.
• Working knowledge of IT security policies standards and procedures; ability to utilize a variety of administrative skill sets and technical knowledge to ensure cyber security compliance.
• Basic understanding of methods and processes to monitor analyze and respond to network attacks intrusions or any unauthorized actions; ability to use techniques and tools to perform network defense.
• Basic understanding of techniques approaches and processes of digital threats; ability to detect monitor analyze and prevent digital threats.
• Working knowledge of the processes tools and techniques of information security management; ability to deploy and monitor information security systems while detecting controlling and preventing violations of IT security.
• Basic understanding of information security audits; ability to assess the effectiveness of information security measures identify potential risk exposures and protect the availability confidentiality and audit trails of information from destruction or manipulation.
• Basic understanding of information security architecture; ability to use the tools and techniques in creating software hardware networking and application infrastructure for information security.

Core Competencies

• All KeyBank employees are expected to demonstrate Keys Values and abide by Keys Code of Conduct.

Physical Demands

• General Office - Prolonged sitting ability to communicate face to face in person or on the phone with teammates and clients frequent use of PC/laptop occasional lifting/pushing/pulling of backpacks computer bags up to 10 lbs.

Work Location Category

• Hybrid (2 days)

COMPENSATION AND BENEFITS

Please click here for a list of benefits for which this position is eligible.

Key has implemented an approach to employee workspaces which prioritizes in-office presence while providing flexible options in circumstances where roles can be performed effectively in a mobile environment.

Qualified individuals with disabilities or disabled veterans who are unable or limited in their ability to apply on this site may request reasonable accommodations by emailing