BNY Mellon Careers

Principal Information Security Analyst

New York, New York
Information Technology


Job Description

BNY Mellon Technology has a mission to provide our business partners with technology-based solutions that enhance their ability to be successful through world-class software solutions maintained on a stable and secure infrastructure, and to provide our employees with the tools and means to enhance their professional qualifications and careers.    The Information Security Division (ISD) develops and maintains the enterprise cybersecurity strategy for BNY Mellon. ISD collaborates with its colleagues across all three lines of defense, including Information Risk Management, Internal Audit, our businesses and information technology teams. Our emphasis on collaboration ensures the development and delivery of services that are responsive to the evolving threat landscape and drive value to our customers.   This team member will be part of our Cybersecurity Analytics Threat Detection team focusing on use-case development & visualization to support Application security & Fraud.     Position duties: 
  • Interface with Analysts, Security/Risk managers, Developers, App/Information owners, DevOps and other support personnel to understand gaps/requirements to help identify need for threat detection use case development.
  • Work with business representatives like app/info owners and security/risk managers to understand their application, supported business process(es) and help identify potentially missing or ineffective controls.
  • Enable visualization of Threat Detection scenarios/use-cases to help stakeholders understand the business context as well as supporting threat models and mitigating capabilities.
  • Assist in prioritization and management use case development and inventory in terms of adequate coverage and effectiveness.
  • Develop process and procedures to support Threat Detection capabilities.
   

 

Job Scope:

 

Principal Information Security Analyst->> Consults on a senior level and provides professional support for major components of the company's information security infrastructure. Contributes to the development and implementation of security architecture, standards, procedures and guidelines for multiple platforms in diverse system environments. Consults with the business and operational infrastructure personnel regarding new and existing technologies. Recommends new security tools to management and reports and provides guidance and expertise in their implementation. Reviews and analyzes highly complex data and information to provide insights, conclusions and actionable recommendations. Defines, implements, and applies area-wide security and/or COB policies and standards by leveraging in-depth knowledge of globally accepted information security and/or COB principles. Addresses high risk security concerns or incidents. Recommends course of action to mitigate risk and ensures that appropriate standards are established and published. Contributes to the achievement of area objectives. Bachelor's degree in computer science or a related discipline, or equivalent work experience required, advanced degree preferred 10-12 years of experience in information security or related technology experience required, experience in the securities or financial services industry is a plus.

Qualifications

Qualifications  
  • Bachelor's degree in computer science or a related discipline, or equivalent work experience required, advanced degree preferred,
  • 10-12 years of experience in information security or related technology experience required, experience in the securities or financial services industry is a plus.
  • Experience in general AppSec and Fraud application specific controls
  • Ability to speak and understand both in technical and business terms with a variety of stakeholders
  • Demonstrated knowledge of the threat landscape
  • A passion for surfacing threats, understanding them and communicating them to stakeholders
  • Skills with reporting and metrics tracking for efficacy
  • Amazing presentation skills to provide visualization for customers and partners
  • Ability to quickly learn new technology/tools based on changing requirements
  • Interest and curiosity to seek out and understand the big picture

 

#multipost

#LI-RM1



For over 230 years, the people of BNY Mellon have been at the forefront of finance, expanding the financial markets while supporting investors throughout the investment lifecycle. BNY Mellon can act as a single point of contact for clients looking to create, trade, hold, manage, service, distribute or restructure investments & safeguards nearly one-fifth of the world's financial assets. BNY Mellon remains one of the safest, most trusted and admired companies. Every day our employees make their mark by helping clients better manage and service their financial assets around the world. Whether providing financial services for institutions, corporations or individual investors, clients count on the people of BNY Mellon across time zones and in 35 countries and more than 100 markets. It's the collective ambition, innovative thinking and exceptionally focused client service paired with a commitment to doing what is right that continues to set us apart. Make your mark: bnymellon.com/careers.

Client Technology Solutions provides our business partners with client-focused, technology-based solutions. These enhance their ability to be successful through world-class software solutions and leading-edge infrastructure. Client Technology Solutions provides employees with the tools and resources to enhance their professional qualifications and careers.

BNY Mellon is an Equal Employment Opportunity/Affirmative Action Employer.
Minorities/Females/Individuals With Disabilities/Protected Veterans.


Primary Location: United States-New York-New York
Internal Jobcode: 45183
Job: Information Technology
Organization: Information Security-HR11724
Requisition Number: 1801614