Expert Security & Infrastructure Analyst

Responsibilities

Expert Security & Infrastructure Analyst

What will you contribute?

The Expert Security & Infrastructure Analyst will run and support the tactical advancement of Finastra's Cybersecurity program. This role will participate in a multidisciplinary information security team, applying fundamental systems security understanding, skills, expertise, and experience to maintain and operate complex information systems and security tools that satisfy organizational mission and/or business requirements, including stakeholder protection needs and security requirements. The role will be responsible for routine activities related to operational activities while also providing internal customer support. The ideal candidate will be self-directed and work effectively in a diverse team environment.

• Assist in the configuration and maintenance of security tools, applications, and cloud environments used within our infrastructure
• Deploy strong identity and access management controls across application and computing environments
• Supports the evaluation and implementation of security products/services
• Provides security services related to Cybersecurity roadmap initiatives to improve our broader security posture, demonstrated by metrics
• General management of credentials, including those that are interactive, non-interactive, API-based, etc.
• Engages in continuous tool improvement, process improvement and quality control through feedback loop with engineering team
• Updates the relevant documentation and training required for privileged access management solutions and processes
• Configures relevant policies, platforms, safes, users to meet business requirements
• Reports progress and system health through metrics and KPIs that are risk-driven and/or operational in nature
• Promotes and delivers with an agile and CI/CD delivery mindset to achieve program objectives
• Addresses ticket queue in timely fashion and follows appropriate change management procedures
• Understands risk and communicates clearly and concisely
• Effectively communicates issues/risks, options, pros/cons, and recommendations to drive change and overcome obstacles
• Stays current on security trends and industry best practices, providing input and recommendations based on research

• Extensive knowledge of key Cybersecurity controls and technologies, such as Security Information and Event Management (SIEM) systems, intrusion detection/prevention systems (IDS/IPS), public key infrastructure (PKI), identity and access management (IDAM) systems, antivirus and firewalls, in addition to newer offerings such as endpoint detection and response (EDR), threat intelligence platforms, privileged access management (PAM), security automation and orchestration, deception technologies and application controls
• Experienced in cloud operations, with cloud access security broker (CASB) experience preferred, with at least 2-3+ years exposure with Amazon Web Services (AWS), Microsoft Azure or VMware
• Knowledge of LDAP/Active Directory, and relevant IT architecture experience.
• Knowledge of web technologies (XML, HTML, SPML/SOAP, etc.), PowerShell, SaaS applications, network operations (networks, protocols, and email).
• Knowledge of both Windows and Unix platforms, with programming (PowerShell, etc.) a plus.
• Knowledge of relational databases (Oracle, MS SQL Server, etc.).
• Familiarity with identity and access management (IAM) concepts, such as lifecycle (joiner, mover, leaver), password policies, RBAC/ABAC, least privilege, etc.
• Excellent understanding of Vulnerability Management Lifecycle, Cyber Kill Chain, Cloud Kill Chain, FFIEC CAT, NIST CSF, ISO2700 and PCI.
• Excellent written and verbal communication skills along with the ability to absorb and present large amounts of detail through various forms of communications to any level of Business Users, IT Management or technical roles.

• 5+ years of hands-on experience in Cybersecurity, information technology and related services and management. Experience in the FinTech or Financial Services industry is a plus
• 3+ years of experience running enterprise-wide privileged access management technology solution support across medium-to-large scale companies
• Experience on small-to-medium, complex projects that have state and/or enterprise-wide impact and require subject matter expertise of process improvement areas and process improvement tools.
• Experience using programming languages (JAVA, .NET, C++, etc.).
• Experience with endpoint security technologies a plus.

• Bachelor's degree from an accredited college or university, or equivalent experience. A degree in Computer Science, Computer/Data Systems Management or a related field or discipline is preferred but not required.
• Certification in one or more of the following areas is desired but not required: Certified Information Security Professional (CISSP), Certified Cloud Security Professional (CCSP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM)