Job Description

:

Job description:

• Provide support and consultation in operations of Information Security sub-components not limited to firewall and internet proxy.
• Review firewall change request and ensure it's compliant with firewall/network security standards and organizational security standards. Perform Firewall Recertification.
• Perform firewall post-change review/reconciliation using security policy management and compliance tools like Tufin, AlgoSec, Redseal, Skybox, etc., and ensure it's compliant with firewall/network security standards and organizational security standards.
• Review internet proxy (Eg.: Blue Coat, McAfee, etc.,) access to internet resources requests for active threat/risk and ensure it's compliant with firewall/network security standards and organizational security standards.
• Review security sub-components and ensure it's compliant with industrial network security standards and organizational security standards.
• Perform URL filtering and Content filtering reviews and ensure access to/from vulnerable, malicious and objectionable internet websites and resources are blocked. Engage security service providers like Symantec, Blue Coat, McAfee, ZScaler etc., to review URL and its contents/risk reputation and categorize accordingly.
• Network Security Hardening Audit - Audit network firewall/proxy configuration and security polices, identify potential security risks, engage security/firewall engineering/admin/operations team for corrective actions and drive it to closure.
• Perform security audit using Information Security/Cyber Security Analytics tools and produce reports, identify potential security risks, assign priority, engage security/firewall engineering/admin/operations team for corrective actions and drive it to closure.
• Assist in ensuring that security concerns are addressed and mitigated.
• Generate automated security audit and compliance reports.

Qualification:
Bachelor's or Master's degree in computer science or a related discipline, or equivalent work experience required. 4-7 years of experience in Information Security or related technology experience required. Experience in banking, financial services sector is a plus.

• Experience in firewall, web/internet proxy, web/internet gateway, and network security - configuration, administration, auditing and recertification.
• Experience or good understanding of network hardening, information security risk assessment, security configuration auditing and compliance.
• Experience or good understanding of security policy orchestration tools such as Tufin, AlgoSec, Skybox, Firemon, etc.
• Very good communication skills.
• CISSP, Security+, or any firewall/proxy/security related certification is a plus.

BNY Mellon is an Equal Employment Opportunity/Affirmative Action Employer. Minorities/Females/Individuals With Disabilities/Protected Veterans.

Our ambition is to build the best global team - one that is representative and inclusive of the diverse talent, clients and communities we work with and serve - and to empower our team to do their best work. We support wellbeing and a balanced life, and offer a range of family-friendly, inclusive employment policies and employee forums.

BNY Mellon