Principal, Information Security
- Employer
- BNY Mellon
- Location
- Lake Mary, USA
- Salary
- Competitive
- Posted
- Jan 31, 2023
- Closes
- Feb 14, 2023
- Ref
- 18627833
- Job Function
- Other
- Industry Sector
- Finance - General
- Employment Type
- Full Time
- Education
- Bachelors
Overview
Drive implementation of technology solutions focused on achieving risk reduction in a cost-effective manner through performing requirements analysis, and employing project management best practices supporting multiple stakeholders
Participate in internal and external audit examinations, ensuring that corrective actions are implemented to address findings and recommendations
Identify, analyse, monitor and minimize the most complex areas of risk that pertain to information technology.
Perform independent quantitative and qualitative risk analysis across multiple information and technology risk domains and deliver results, root cause analysis and recommendations to senior technology managers and key stakeholders
Perform moderately complex data mining, trend analysis, metric and report production, process maturity and compliance assessment, process flow charting, and iterative process activities (e.g. validity checks, change reviews, data quality checks, and process reviews).
Deliver risk reporting to senior business stakeholders and IT managers.
Lead high-impact and complex projects that involve working with the businesses to improve controls that would mitigate any deficiencies.
Supports Risk Framework practices and Uses in-depth knowledge of information technology, risk and control frameworks, risk and control theory and practice, and controls implementation and assessment to determine potential risks to the organization. Supports analysis and draws conclusions in order to recommend and direct any resulting change needed to mitigate risk. Responsible for implementing risk framework and identifying, analyzing, monitoring, reporting, and minimizing information technology risks. Consult and advise on all technology risk matters. Supports related risk programs: audit response, regulatory inquiry and response, etc. Manages complex projects that involve working with the businesses to improve controls to mitigate any deficiencies. Strong written and verbal communication. Communications and organization skills; team work skills. Ability to work independently or with a team. Experience in the securities or financial services industry is a plus. CISA, CISSP or CRISC and ISACA certifications preferred. Contributes to the achievement of related teams' objectives.
Experience defining, implementing and monitoring IT risk management programs, including cyber security related risks
2+ years of related experience in the securities or financial services industry required - mixed experience in application development, computer architecture, and technology/information risk, assurance or advisory required.
Communication skills must range from participation in detailed technical discussions to business-oriented presentations to working closely with senior management.
CISA, CISSP or CRISC and ISACA certifications preferred.
Experience understanding design and operating effectiveness of IT controls and industry related frameworks.
Bachelor's degree or equivalent combination of education and work experience required.5-7 years of total work experience preferred.
BNY Mellon assesses market data to ensure a competitive compensation package for our employees. The base salary for this position is expected to be between $108,000 and $200,000 per year at the commencement of employment. However, base salary if hired will be determined on an individualized basis, including as to experience and market location, and is only part of the BNYM total compensation package, which, depending on the position, may also include commission earnings, discretionary bonuses, short and long-term incentive packages, and Company-sponsored benefit programs.
This position is at-will and the Company reserves the right to modify base salary (as well as any other discretionary payment or compensation) at any time, including for reasons related to individual performance, change in geographic location, Company or individual department/team performance, and market factors.
Employer Description:
For over 230 years, the people of BNY Mellon have been at the forefront of finance, expanding the financial markets while supporting investors throughout the investment lifecycle. BNY Mellon can act as a single point of contact for clients looking to create, trade, hold, manage, service, distribute or restructure investments and safeguards nearly one-fifth of the world's financial assets. BNY Mellon remains one of the safest, most trusted and admired companies. Every day our employees make their mark by helping clients better manage and service their financial assets around the world. Whether providing financial services for institutions, corporations or individual investors, clients count on the people of BNY Mellon across time zones and in 35 countries and more than 100 markets. It's the collective ambition, innovative thinking and exceptionally focused client service paired with a commitment to doing what is right that continues to set us apart. Make your mark: bnymellon.com/careers.
EEO Statement:
BNY Mellon is an Equal Employment Opportunity/Affirmative Action Employer. Minorities/Females/Individuals With Disabilities/Protected Veterans. Our ambition is to build the best global team - one that is representative and inclusive of the diverse talent, clients and communities we work with and serve - and to empower our team to do their best work. We support wellbeing and a balanced life, and offer a range of family-friendly, inclusive employment policies and employee forums.
Drive implementation of technology solutions focused on achieving risk reduction in a cost-effective manner through performing requirements analysis, and employing project management best practices supporting multiple stakeholders
Participate in internal and external audit examinations, ensuring that corrective actions are implemented to address findings and recommendations
Identify, analyse, monitor and minimize the most complex areas of risk that pertain to information technology.
Perform independent quantitative and qualitative risk analysis across multiple information and technology risk domains and deliver results, root cause analysis and recommendations to senior technology managers and key stakeholders
Perform moderately complex data mining, trend analysis, metric and report production, process maturity and compliance assessment, process flow charting, and iterative process activities (e.g. validity checks, change reviews, data quality checks, and process reviews).
Deliver risk reporting to senior business stakeholders and IT managers.
Lead high-impact and complex projects that involve working with the businesses to improve controls that would mitigate any deficiencies.
Supports Risk Framework practices and Uses in-depth knowledge of information technology, risk and control frameworks, risk and control theory and practice, and controls implementation and assessment to determine potential risks to the organization. Supports analysis and draws conclusions in order to recommend and direct any resulting change needed to mitigate risk. Responsible for implementing risk framework and identifying, analyzing, monitoring, reporting, and minimizing information technology risks. Consult and advise on all technology risk matters. Supports related risk programs: audit response, regulatory inquiry and response, etc. Manages complex projects that involve working with the businesses to improve controls to mitigate any deficiencies. Strong written and verbal communication. Communications and organization skills; team work skills. Ability to work independently or with a team. Experience in the securities or financial services industry is a plus. CISA, CISSP or CRISC and ISACA certifications preferred. Contributes to the achievement of related teams' objectives.
Experience defining, implementing and monitoring IT risk management programs, including cyber security related risks
2+ years of related experience in the securities or financial services industry required - mixed experience in application development, computer architecture, and technology/information risk, assurance or advisory required.
Communication skills must range from participation in detailed technical discussions to business-oriented presentations to working closely with senior management.
CISA, CISSP or CRISC and ISACA certifications preferred.
Experience understanding design and operating effectiveness of IT controls and industry related frameworks.
Bachelor's degree or equivalent combination of education and work experience required.5-7 years of total work experience preferred.
BNY Mellon assesses market data to ensure a competitive compensation package for our employees. The base salary for this position is expected to be between $108,000 and $200,000 per year at the commencement of employment. However, base salary if hired will be determined on an individualized basis, including as to experience and market location, and is only part of the BNYM total compensation package, which, depending on the position, may also include commission earnings, discretionary bonuses, short and long-term incentive packages, and Company-sponsored benefit programs.
This position is at-will and the Company reserves the right to modify base salary (as well as any other discretionary payment or compensation) at any time, including for reasons related to individual performance, change in geographic location, Company or individual department/team performance, and market factors.
Employer Description:
For over 230 years, the people of BNY Mellon have been at the forefront of finance, expanding the financial markets while supporting investors throughout the investment lifecycle. BNY Mellon can act as a single point of contact for clients looking to create, trade, hold, manage, service, distribute or restructure investments and safeguards nearly one-fifth of the world's financial assets. BNY Mellon remains one of the safest, most trusted and admired companies. Every day our employees make their mark by helping clients better manage and service their financial assets around the world. Whether providing financial services for institutions, corporations or individual investors, clients count on the people of BNY Mellon across time zones and in 35 countries and more than 100 markets. It's the collective ambition, innovative thinking and exceptionally focused client service paired with a commitment to doing what is right that continues to set us apart. Make your mark: bnymellon.com/careers.
EEO Statement:
BNY Mellon is an Equal Employment Opportunity/Affirmative Action Employer. Minorities/Females/Individuals With Disabilities/Protected Veterans. Our ambition is to build the best global team - one that is representative and inclusive of the diverse talent, clients and communities we work with and serve - and to empower our team to do their best work. We support wellbeing and a balanced life, and offer a range of family-friendly, inclusive employment policies and employee forums.