Tech Security Analyst

Job Description

• Work closely with Business, Vendor Senior Management, collaborate as Tech SME to drive product adoption, onboarding of the SaaS/PaaS platform(s)

• Collaborate effectively with colleagues globally, sharing information and knowledge effectively.

• Strong leadership skills and ability to mobilize and influence teams, both internal and external that are not in direct reporting line.

• Conduct security assessment of Cloud deployment projects, to ensure security gaps are identified and recommend remediation actions.

• Engage with IS teams to understand IS guidelines for internal and public Cloud usage/adoption

• Work with SaaS vendors to assess the security guardrails for secure deployment of applications in private and public Cloud

• Plan the resolution of any identified vulnerabilities/issues during onboarding, yearly compliance by tracking them towards closure.

• Reduce risk by analyzing the root cause of issues, their impact, and required corrective actions

• Act as subject matter expert on Application Information Security, Architecture best practices across BCMA tech and IS partner forums

• Streamlines the Technology support, adoption of the SaaS/PaaS platform.

Here is what you bring –

• 10+ years of experience in Information Security domain, with at least 5+ years of experience as application security consultant / security architect, with focus on assessing secure deployment of SaaS applications

• 2-4 years of Software development experience must have.

• 2-4 year of Technology Architect experience must have.

• 2-4 year of Technology Project Management must have.

• Must have SME level knowledge of security guardrails for deploying applications in SaaS and public Cloud environment.

• In depth understanding of public Cloud and application architectures and technologies

• Strong understanding of information security and risk analysis processes, including threat modeling is a huge plus

• Identify opportunities for process improvement

• Advanced knowledge of software development lifecycle, Software development experience is a plus

• Deep understanding of information security and risk analysis processes, including vulnerability tests.

• Demonstrated ability to take ownership and work with cross functional teams to manage multiple projects simultaneously under pressure

• Consistently demonstrates clear and concise written and verbal communication as well as presentation skills for interaction with Sr leaders in Technology and business.

• Proficient in interpreting and applying policies, standards and procedures

• Good interpersonal skills with a natural ability to work with various teams, ability to adapt to and work effectively with clients and co-workers with different work styles and levels of technical knowledge

• Ability to build, manage a team,

• Excellent verbal, written and interpersonal communication skills

• Ability to work independently given general guidance

• Demonstrated ability to succinctly summarize issues/communicate to senior business stakeholders

• Excellent verbal, written and interpersonal communication skills Education:

• Bachelor's degree or equivalent experience

• Experience and/or knowledge of financial & banking industry is a plus

• industry certification such as CISSP, CCSP, and other vendor certification are highly preferred