Business Information Security Specialist, Senior Associate Business Information Security Specialist, Senior  …

State Street Corporation
in Kraków, Malopolskie, Poland
Permanent, Full time
Be the first to apply
Competitive
State Street Corporation
in Kraków, Malopolskie, Poland
Permanent, Full time
Be the first to apply
Competitive
State Street Corporation
Business Information Security Specialist, Senior Associate
Business Information Security Specialists support the business unit information security program through the coordination and execution of processes implemented to ensure the business units' compliance with security policies and controls. The business unit Senior Information Security Officer or Information Security Officer are ultimately responsible for the execution and oversight of Business Information Security Specialist tasks performed for their area.

Responsibilities:
Business Information Security Specialist roles and responsibilities are defined under three (3) domain areas; Information Security Program Support, Information Security Business Support and Education. The following details the objective and specific responsibilities for each domain.

Information Security Program Support (Support the development and management of the information security program within the business unit):
  • Provide input and support the development and management of the information security program and strategy, playing a key role in information security program activities
  • Support the development, communication and integration of information security into processes, procedures and other documentation to support the implementation of the information security program
  • Support process and application owners in the remediation of identified business control failures (including CATS/audit issues)
  • Act as backup for Information Security Officer or Sr. Information Security Officer (when required)

Information Security Business Support (Integrate information security requirements into business unit processes)
  • Access Management - Support SVP recertification of restricted access and non-standard authorized approvers
  • Access Management - Coordinate the resolution of problematic access, including segregation of duties violations
  • Access Management - Oversee process to support removal of user access for terminated and transferred employees
  • Application Risk - Support application owners in the completion and review of Information Security Risk Management Program (ISRMP) assessment process
  • Application Risk - Support onboarding of applications per the SailPoint Application Integration Schedule with Information Security Officer or Sr. Information Security Officer (when required)
  • Information Classification - Provide clear guidance, education and awareness, and develop SOP's to support classification of information by data owners
  • 3rd Party Risk - Support business in understanding processes, and provide guidance to answer information security related TPRM requests
  • Education & Awareness - Support the creation of education and awareness content
  • Management & Risk Committee Reporting - Support the creation of management and risk committee reporting

Education (Maintain up to date knowledge of evolving information security threat landscape)
  • Demonstrate a commitment to information security by obtaining additional training and staying current with information security technologies and practices.

Required Qualifications:
  • Bachelor's degree or equivalent
  • 1 to 3 years of information security experience
  • Financial services experience a plus
  • Business concepts including financial, business requirements, compliance and risk management
  • Strong analytical, communication, research and organizational skills
  • Strong computer skills including knowledge of word processing, spreadsheet, email and collaborative tools
  • Ability to manage multiple priorities while maintaining attention to detail
  • Fluent English

We offer:
  • Employee savings plan
  • Premium life insurance package
  • VIP medical package
  • International operating environment
  • Language classes
  • Soft skills trainings
  • Technical workshops
  • Development sessions with a mentor
  • Diversity of opportunities across a range of challenging and highly complex activities
  • Technical or leadership career pathway

Company Overview

From technology and product innovation to corporate responsibility and community development, we're making our mark on the financial services industry. For more than two centuries, we've been helping our clients safeguard and steward the investments of millions of people - strengthening markets, building communities and creating opportunities for growth.

We owe that longevity to the commitment, expertise and creativity of our employees. Our continued success depends on our ability to attract and develop the best talent in the industry. That's why we're keenly focused on employee development, corporate citizenship and inclusion.

For us, success comes in the mark we make as an organization - for the industry, our clients, our communities and each other.

 

Close
Loading...