Federal Reserve Bank Info Sec Compliance Specialist in Dallas, Texas
Responsible for supporting the District's understanding and compliance with the Federal Reserve System information security policies, practices, and related industry best practices. Responsibilities include executing information security- related projects and operational tasks, as well as providing information security policy and practice expertise to IT and business customers.
Performs process and technology analysis to identify and implement the best solutions in support of project objectives. Estimates level of effort necessary to complete assigned project tasks. Ensure the completion of assignments within established time frames and budget while meeting project objectives. Plans and coordinates meetings, report progress status, develop new or proposed improvements to existing security procedures and provide communication and awareness to customers.
Participates in and/or leads risk and vulnerability assessments of District information assets and recommends appropriate controls to mitigate identified risks.
Interfaces with audit and system compliance groups to support compliance efforts.
Proactively verifies appropriate controls are implemented and tested.
Tracks risk exceptions and provides risk gap analysis for District management. Tracks compliance with Federal Reserve System's information security policies, practices, and standards, through proactive monitoring and consulting, as well as providing information security awareness educational activities.
Provides consulting services to business asset owners on information security topics as directed and with support from more senior team members or supervisor.
Participates in project teams in identifying technical and process solutions to problems and identified risks regarding District information assets.
Actively participates on District and/or System teams for information security related initiatives.*MINIMUM QUALIFICATIONS:*
Strong understanding of information security concepts and frameworks (NIST, ISO, COBIT).
Understanding of information security risk assessment processes.
Understanding of audit and compliance processes as demonstrated through previous experience. Problem-solving and analytical skills.
Ability to successfully execute on a variety of project tasks and meet deadlines. Effective communication skills, written and oral.
Demonstrate the ability to estimate work effort for tasks.
Flexibility in switching between tasks; multi-tasking.
Technical Knowledge, Skills and Abilities: Understands basic security capabilities and vulnerabilities within the following systems:
Security Systems (e.g. Firewalls, Directory Services, PKI, Biometrics, Encryption, IPSec, etc.)
CISSP certification is a plus.
Project management experience, PMP or CAPM certification a plus.
NIST-based security controls and frameworks a plus.
Knowledge of the Federal Reserve system and/or Security Assurance For the Federal Reserve (SAFR) a plus.
Process Management: Good at figuring out the processes necessary to get things done. Knows how to organize people and activities. Knows what to measure and how to measure it. Can simplify complex processes. Understands how to separate and combine tasks into efficient work flow. Gets more out of fewer resources.
Time Management: Uses time effectively and efficiently. Concentrates efforts on the more important priorities. Gets more done in less time than others. Can attend to a broad range of activities.
Planning: Accurately scopes out length and difficulty of tasks and projects. Sets objectives and goals. Breaks down work into the process steps. Develops schedules and task assignments. Measures performance against goals. Evaluates results.
Learning on the Fly: Learns quickly when facing new problems. Open to change. Analyzes both successes and failures for clues to improvement. Experiments and will try anything to find solutions. Enjoys the challenge of unfamiliar tasks. Quickly grasps the essence and the underlying structure of anything.
EDUCATION AND EXPERIENCE:
At least two years of practical experience in the field of Information Security related to all or some of the primary responsibilities
Bachelor's degree in Business, Management Information Systems, Computer Science or related field of study.
Equivalent education and/or experience may be substituted for the above.
WORK HOURS AND CONDITIONS: 8:00 a.m. to 5:00 p.m., Monday through Friday. On-call support and overtime as required by work schedules or management.
By federal law, this position requires that candidates fall within one of the following citizenship categories: (1) U.S. citizen, (2) U.S. national, (3) U.S. permanent residents who are not yet eligible to apply for naturalization, or (4) U.S. permanent residents who have applied for naturalization within six months of being eligible to do so.
This position may be filled at various levels based on candidate experience and department needs.
The selected candidate for this position will be required to pass abackground andfinancial credit check.
We are proud to be an equal opportunity employer.
Organization: *Federal Reserve Bank of Dallas
Title: Info Sec Compliance Specialist
Requisition ID: 248427