The Federal Reserve Bank of San Francisco is looking for an Sr. / ITSecurity Analyst to join our Information Security Team.
The FederalReserve has a global mission and offers leading-edge work in a stableenvironment with competitive pay, superior benefits AND a true work lifebalance .
If you desire to be part of a world-class team and to develop yourskills and experience beyond anything available in the commercial sector, theFederal Reserve is the place for you.
In this role, you will perform at an advisory level, andleverage your experience in Cyber Risk management, and Information Security, tocollaborate with our team of five professionals.
You will advise on all effortsrelated to Security Assurance for the Federal Reserve (internally known as SAFR ) assessments, for all internal technologies, and external serviceproviders.
Essential responsibilities :
Provide advice and support to the Federal Reserve System(FRS) and 12L District risk strategies, identify risks in the Bank’s processesand technologies, and lead improvement initiatives to minimize risk.
The idealcandidate for this role will have the ability to blend and utilize their technical,organizational, business, and cyber security skill-sets.
Understandtechnical implementation details necessary to assess and recommend Security controlimprovements and / or identify mitigating controls.
Supportand ensure compliance with Bank and FRS security controls, policies andprocedures.
Driveeducation of process / control owners so they better understand the controlsframework and their operational responsibilities.
Partnerwith stakeholders to make sure there are successful security programs thatalign with compliance requirements.
Bachelordegree in Information Technology / Computer Science / MIS, or related disciplinesand / or equivalent work experience.
Familiaritywith NIST, FedRAMP or other government frameworks.
CISSPcertified or the ability to work towards obtaining the certification.
U.S.Citizenship is required for this role.
IT Security Analyst typically requirestwo or more years of work experience within related information technologyfield, which include one year of experience in the security aspects of multipleplatforms, operating systems, communications, and network protocols.
At Sr. level, typically requires five or moreyears of work experience within related information technology field, whichincludes three or more years of experience in the security aspects of multipleplatforms, operating systems, communications, and network protocols.
Excellentinterpersonal, communication, organizational, and analytical skills.
Excellentconsultative skills, and the demonstrable ability to work effectively withbusiness partners, internal management and staff, vendors and consultants.
Demonstrableability to communicate technical issues to technical and non-technical businesspartners.
Strongcritical thinking, analytic and problem-solving skills required.
Certificationin SAFR is required within 3 months of hire.
Preferred qualifications :
Familiarwith NIST 800 special publications, ISO 27000, Cloud Security Alliance (CSA),and FedRAMP.
Meaningfulindustry certifications such as AWS Security, CISSP, CISA, CRISC, CCSK, and / orCCSP.
Knowledgeof the roles and responsibilities of the Federal Reserve’s IT organizations,National Information Technology Operations (NITOs), and other FRS supportorganizations.
Demonstratedunderstanding of compliance, audit process and ability to adhere / manage variousrisk controls.
Demonstrableability to influence and build relationships with various technical teams,business owners and management at all levels of the organization tosuccessfully deliver on changing business need.
Solidskills in programs including, but not limited to, the MS Office Suite, MSVisio, MS Project and MS SharePoint.
At the Federal ReserveBank of San Francisco we believe in the diversity of our people, ideas, andexperiences and are committed to building an inclusive culture that isrepresentative of the communities we serve.
The Federal Reserve Bank of SanFrancisco is an Equal Opportunity Employer.