Principal Information Security Analyst - Mainframe Services
TECHNOLOGY SERVICES GROUP (TSG)
is the central infrastructure services group with a proven track record of innovating to help BNY Mellon and its customers have most reliable, nimble and cost-effective solutions in the financial services market place. BNY Mellon App Engine technology is leading edge with industry first PasS/IaaS fully integrated solution, combined with enterprise standards for developers. TSG
is building next generation scalable, efficient data center as a service using the latest innovation infrastructure. Building on top of the cloud deployments in BNY Mellon, we are aggressively automating and bridging the green field cloud with the existing virtual computing environments. Mainframe Services
at BNY Mellon is at the very foundation of our business. We're a dynamic and growing environment supporting many of our Core Business Systems. The Mainframe Services team is responsible for delivering highly resilient systems on the latest IBM hardware and multi-vendor software. As a member of this team, you can be a part of implementing technology driven by several significant investment programs to move us to the next level of processing.
The Mainframe Security team
designs and at a high level maintains the ACF2 and RACF environments that runs on the IBM Mainframe. Having adequate support for Mainframe security at a time when more and more emphasis is being placed on heightened security and monitoring and reports on security events. This role will provide third level support to resolve Security Administrator issues. This role will interface with many different areas of BNY Mellon to design Mainframe security solutions. Key responsibilities include
Supporting the IBM Mainframe ACF2 and RACF security environment engineering functions.
Support of third party vendor software utilities and packages as well as in-house developed solutions that are used to manage the security environments.
Interaction with auditors and provide information required to complete auditing tasks.
Principal Information Security Analyst->> Consults on a senior level and provides professional support for major components of the company's information security infrastructure. Contributes to the development and implementation of security architecture, standards, procedures and guidelines for multiple platforms in diverse system environments. Consults with the business and operational infrastructure personnel regarding new and existing technologies. Recommends new security tools to management and reports and provides guidance and expertise in their implementation. Reviews and analyzes highly complex data and information to provide insights, conclusions and actionable recommendations. Defines, implements, and applies area-wide security and/or COB policies and standards by leveraging in-depth knowledge of globally accepted information security and/or COB principles. Addresses high risk security concerns or incidents. Recommends course of action to mitigate risk and ensures that appropriate standards are established and published. Contributes to the achievement of area objectives. Qualifications
BNY Mellon is an Equal Employment Opportunity/Affirmative Action Employer.
Bachelor's degree in computer science or a related discipline, or equivalent work experience is required, advanced degree is preferred.
Ten to twelve (10-12) years of experience in information security or related technology experience is required.
Experience in the securities or financial services industry is a plus.
Candidate should be proficient with aspects of the z/OS operating system such as JCL, TSO, VSAM, etc.
Experience with the engineering and system programming functions of ACF2 and/or RACF.
Extensive knowledge of both CA ACF2 and/or IBM RACF security systems. This would include both administrative functions and system internals.
Knowledge of other products used to support Mainframe security such as zSecure, EFT/A ESR-F and others.
Working knowledge of Mainframe subsystems such as MQ, DB2, CICS, and IMS with a focus on the security requirements of each.
Working knowledge of Mainframe pervasive encryption solutions is a plus.
Candidate must have strong written and oral communication skills and will often be a direct liaison with other IS Development and Infrastructure teams.
Support audit activities and be able to respond to requests from Auditors, Application Developers, and End Users in a timely fashion.
Minorities/Females/Individuals With Disabilities/Protected Veterans. Our ambition is to build the best global team - one that is representative and inclusive of the diverse talent, clients and communities we work with and serve - and to empower our team to do their best work. We support wellbeing and a balanced life, and offer a range of family-friendly, inclusive employment policies and employee forums. Primary Location:
United States-Pennsylvania-Pittsburgh Internal Jobcode:
Information Technology Organization:
Technology Services Group-HR06725 Requisition Number: