BNY Mellon Careers

Lead Info Security Analyst

Wellesley, Massachusetts
Asset Servicing

Job Description

Information Security Compliance Analyst/Specialist

Eagle is seeking an Information Security Compliance Specialist to join the Information Security and Risk Management team.  This individual will help build out the information security controls framework by identifying, evaluating, and interpreting various industry, regulatory, and/or customer security requirements that may be applicable to Eagle.  S/he will also partner with business units and stakeholders to risk assess against the control framework and make recommendations on necessary procedural/control changes.

Key Functions/Responsibilities:

-Translate complex regulations or industry standards into clear, easily understood control   requirements
- Map control requirements across information security framework to identify overlapping requirements and compliance efficiencies
-Risk assess business units against the control requirements
-Create and update information security related policies, standards and/or procedures as needed
-Assist in responding to information security questionnaires and produce artifacts as requested from existing and potential clients
-Assist in audit reviews and information security risk assessments as needed
-Develop compliance communications and drive problem resolution
-Support other information security and risk management related activities as needed



-BA/BS preferred

-Several years of relevant experience with information security, control standards, and frameworks such as IT SOX, SSAE18, ISO27001, NIST 800-53

-Requires strong analytical, organizational, and project management skills

-Requires strong oral and written communication skills and problem solving skills

-Ability to communicate IT, networking, and security concepts as well as compliance requirements to personnel at all levels of experience and responsibility


Desired skills

-Knowledge of the Financial Services Industry regulations, compliance, operations or auditing is highly desirable but not required

-Experience with using RSA Archer eGRC to perform compliance and risk assessments is highly desirable


Lead Information Security Analyst->> Contributes to the effectiveness of security-related operations. Provides programming support and assists in project planning for an operational area in information security. Assists in daily oversight of a security sub-component. Initiates projects intended to improve operations, client satisfaction with operational support, and development of appropriate standards and procedures for assigned operational area. Participates in evaluation, testing and implementation of emerging control technologies, information systems security issues, safeguards, and techniques applicable to assigned operations area. Presents proposed security enhancements to management for approval, funding and implementation. Reviews and analyzes data and information to provide insights, conclusions and actionable recommendations, Produces reports, analyses, findings, etc. Screens and selects tools to automate security administration. Schedules and evaluates vendor security software through testing and discussions with external business users. Contributes to the achievement of related teams' objectives.


Bachelor's degree in computer science or a related discipline, or equivalent work experience required. 4-6 years of experience in information security or related technology experience required, experience in the securities or financial services industry is a plus.

For over 230 years, the people of BNY Mellon have been at the forefront of finance, expanding the financial markets while supporting investors throughout the investment lifecycle. BNY Mellon can act as a single point of contact for clients looking to create, trade, hold, manage, service, distribute or restructure investments & safeguards nearly one-fifth of the world's financial assets. BNY Mellon remains one of the safest, most trusted and admired companies. Every day our employees make their mark by helping clients better manage and service their financial assets around the world. Whether providing financial services for institutions, corporations or individual investors, clients count on the people of BNY Mellon across time zones and in 35 countries and more than 100 markets. It's the collective ambition, innovative thinking and exceptionally focused client service paired with a commitment to doing what is right that continues to set us apart. Make your mark:

BNY Mellon's Asset Servicing business is dedicated to dynamically supporting our clients' investments and safeguarding their assets, keeping them working around the clock and across the world. It's part of our commitment to being a true partner for our clients' investment success. We specialize in operational solutions and capabilities for today's market-enhancing management and administration of investments with services that process, monitor and measure investment data from around the world. By leveraging BNY Mellon's global footprint and deep expertise, we deliver insight-driven solutions for every phase of investing.

BNY Mellon is an Equal Employment Opportunity/Affirmative Action Employer.
Minorities/Females/Individuals With Disabilities/Protected Veterans.

Primary Location: United States-Massachusetts-Wellesley
Internal Jobcode: 45096
Job: Asset Servicing
Organization: AS Eagle And Front Office-HR15484
Requisition Number: 1807991