Audit Senior Job in The Bank Of New York Mellon Corporation

BNYMellon is seeking a highly motivated professional to joinits Cyber Security Audit team. The successful candidate will work in atechnically diverse and dynamic environment with a team of Technology AuditSecurity professionals responsible for auditing all aspects of theorganizations cyber security activities. The successful candidate will beinvolved in multiple aspects of the cyber security audit program.

The individual works closely with an Audit project leaderand/or audit management, other auditors and the auditees (the client) on eachproject. Additionally the individual would work closely with clients andmust be able to explain the audit process (if appropriate) and any findings orresults. This requires both good oral and written communications skillsand an ability to be sensitive to the needs of clients and team members.Must be able to keep sensitive information confidential and know how to useappropriately.

Key Roles & Responsibilities of this position include,but are not limited to:

Assess incident response team actions andprocedures.

Support investigations and research forpossible computer security related incidents.

Perform internal audits to validate theeffectiveness of cyber security controls

Conduct application, network, and operatingsystem security assessments.

Assess security monitoring of clients,servers, applications, and network infrastructure activities.

Conduct log analysis to identify suspicious ormalicious activity and anomalous behavior.

Represent cyber security on cross-functionalIT project teams.

Support security projects that implementinfrastructure, applications or systems solutions ensuring timely delivery offunctional, technical and security requirements.

Support the analysis, design, functionalreview and interpretation of requirements of security related hardware andsoftware.

Support the auditing of security policy andprocedure which safeguard infrastructure, systems, files and data.

Assess Vulnerability Management programs

Support Threat Intelligence activities

Understand Data Protection risks andstrategies

Perform Network Penetration testing.

Effective Stakeholder Management

Knowledge of key regulations and industrystandards such as ISO 27001&2, NIST SP800-53, NIST Cybersecurity Framework,NYDFS etc

College degree or equivalent. 4 year degree intechnology field or finance; other subjects may be applicable to specialties /Military experience preferred. Minimum experience: 4-6 yearsrelevant experience.

Qualifications

BE/Bsc Maths/CA