IT Security Analyst Senior

Company: FIS Global
Location: Durham
Posted on: February 15, 2020

Job Description:

Position Type Full time-Regular Type of Hire Education Desired Bachelor of Computer Science Travel Percentage 25% Job Description Are you curious, motivated, and forward-thinking? At FIS you'll have the opportunity to work on some of the most challenging and relevant issues in financial services and technology. Our talented people empower us, and we believe in being part of a team that is open, collaborative, entrepreneurial, passionate and above all fun. About the team: The Process, Security and Compliance (PSC) team within Digital and Banking includes the functions of Process Management, Risk and Information Security, Compliance, plus the RISC Liaison function. The PSC represents the first line of defense in the FIS risk model. Our mission is to have: - The most secure production environments, as represented by a high degree of security testing, a low number of serious vulnerabilities and adherence to remediation standards; - The best managed overall risk, as reflected by low numbers of RMIS tickets and adherence to remediation timelines - The most satisfied clients, as measured by low audit findings for information security and risk topics, and high overall ratings from surveys and word of mouth The PSC team today provides services for the legacy Profile core banking platform (Profile 7), and is expanding to support Profile 8 (CAPE) and Digital One. Our clients include the largest FIS clients such as American Express, Ally Bank, Schwab, Mitsubishi Union Bank, Goldman Sachs and Citizens. What you will be doing: You will be a senior security analyst for the team, with daily, hands-on responsibility to keep client environments secure, ensure that access is appropriate and approved, and manage application vulnerabilities. You will perform First Line of Defense functions, activities and procedures necessary to ensure the safety of information systems assets and to protect systems from intentional or inadvertent exploit, access or destruction. The role includes monitoring security reports and taking appropriate actions, reviewing and approving requests for security access, monitoring password issues, reviewing and approving BoKS and Active Directory bastion access, and other technical reviews. You will manage application vulnerabilities, ensuring that tracking systems are updated and that vulnerabilities do not fall behind remediation schedules. The role includes building and publishing various reports for management review. - Monitor security reports from various sources, synthesize and develop new extracts and reports, and take appropriate actions - Review and approve requests for security access from CMS, DASH and other systems. Follow-up with individuals or managers if requests are inappropriate or can be modified to meet 'least privilege' requirements - Monitor password issues for process ID's across Profile. Ensure that passwords are changed according to FIS policy. - Review and approving BoKS and Active Directory bastion access - Manage application vulnerabilities, ensuring that tracking systems such as JIRA, VMS and Whitehat Sentinel are updated and that vulnerabilities do not fall behind remediation schedules. - Build and publish various reports for management review What you bring: - Bachelor's degree from a four year college or university on computer science preferred or in a related field, or the equivalent combination of education, training, or work experience. - Medium to high knowledge of security technologies (encryption, access management, data protection, design, privilege access, etc) - Medium to high Excel skills. Understanding of database technologies such as SQL and Access, and other querying tools and reporting building programs. - Proficiency in time management, communications, decision making, presentation and organizational skills - Knowledge of UK and/or European information security laws, regulations, and best practices - Knowledge of general banking processes and workflows - Proficiency in planning, reporting, establishing goals and objectives, standards, priorities and schedules - Basic to intermediate decision-making and problem solving skills - Basic to intermediate verbal and written communication skills to technical and non-technical audiences of various levels in the organization Added bonus if you have: - Information Security industry certifications, or pursuit thereof - FIS knowledge and experience, specifically with Profile or other core banking platforms - Client support experience in a high-demand role such as security analyst, business analyst, or production support. What we offer you: - A multifaceted job with a high degree of responsibility and a broad spectrum of opportunities - The chance to work on some of the most challenging, relevant issues in financial services & technology - A work environment built on collaboration, flexibility and respect Privacy Statement FIS is committed to protecting the privacy and security of all personal information that we process in order to provide services to our clients. For specific information on how FIS protects personal information online, please see the Online Privacy Notice. EEOC Statement FIS is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, marital status, genetic information, national origin, disability, veteran status, and other protected characteristics. The EEO is the Law poster is available here supplement document available here For positions located in the US, the following conditions apply. If you are made a conditional offer of employment, you will be required to undergo a drug test. ADA Disclaimer: In developing this job description care was taken to include all competencies needed to successfully perform in this position. However, for Americans with Disabilities Act (ADA) purposes, the essential functions of the job may or may not have been described for purposes of ADA reasonable accommodation. All reasonable accommodation requests will be reviewed and evaluated on a case-by-case basis. Sourcing Model Recruitment at FIS works primarily on a direct sourcing model; a relatively small portion of our hiring is through recruitment agencies. FIS does not accept resumes from recruitment agencies which are not on the preferred supplier list and is not responsible for any related fees for resumes submitted to job postings, our employees, or any other part of our company.

Keywords: FIS Global, Durham , IT Security Analyst Senior, Professions , Durham, North Carolina