Purpose:
The Information Security Analyst Advisory is responsible for contributing to the achievement of the Bank's information security objectives of integrity, confidentiality/privacy, availability and continuity.
Supporting and contributing to the research and evaluation of emerging information security technologies, as part of a team, which the Bank can exploit as enabling solutions that support business/product innovation;
Keeping current with the overall direction of the Cyber / Information Security industry
Complexity of Position:
The incumbent is expected to be able to work with and be comfortable using PC and server hardware running various Windows and UNIX operating systems including virtual environments such as VMware and Microsoft Hyper-V. The incumbent is expected to be capable of obtaining an understanding of the Bank's technical platforms/disciplines including mainframe operations, security software, hardware, cryptography, biometrics, telecommunications and system utilities. The technical platforms will be those of highest risk and most technically complex.
The incumbent must be able to perform research and evaluations, and gain an understanding of very complex and new security and anti-fraud technologies and their applicability to the Bank. This requires the ability to acquire both a broad technical knowledge and a grasp of the business and technical implications of existing and new security technologies.
The incumbent must acquire a good understanding of the technical components of applications systems, operating system software, telecommunications, security software, and numerous utilities and their interrelationship. This must be combined with an in depth knowledge of the Bank's security objectives in order to evaluate security implications.
The incumbent is expected to remain current on new security and anti-fraud technologies/applications and recommend, for evaluation and testing, those which have the potential to significantly improve the security of the Bank's information.
Preparing and presenting the results of evaluations and research requires excellent verbal and written communication skills. The incumbent will be required to help describe and explain very complex technical subjects in a clear, understandable way to an audience ranging from technical staff to senior executives of the Bank.
The incumbent is expected to work as part of a team, but be able to function independently when required.
Key Accountabilities:
Perform the research and evaluation of emerging and breakthrough security technologies through analysis, developing/updating documentation, writing and executing test cases and writing completion reports' in line with investigative requirements and Bank standard security requirements.
Support the dissemination of an understanding of security architectures, especially fraud prevention and detection, to all Bank staff and customers as appropriate.
Assist in maintaining and communicating a current understanding of the evolutionary direction of security technology within the Bank's architectures and technical platforms in order to meet dynamic business and customer needs.
Provide quality service to the user community by consistently understanding our client's needs and provide solutions that meet or exceed their expectations, while at the same time ensuring that the Bank's information and systems continue to be protected.
Education:
The candidate should have a technical degree in computer science or engineering, appropriate professional designations (such as CISSP or other information security accreditations) or related technical experience.