About State Street Global Advisors
Across the globe, institutional investors rely on State Street Global Advisors to help them mitigate risk, respond to challenges, and drive performance and profitability. We keep our clients at the heart of everything we do, and intelligent, engaged employees are critical to our continued success.
Our promise to maintain an environment where every employee feels valued and able to meet their full potential infuses our core values. It’s also part of our dedication to inclusion, development and engagement, and corporate social responsibility. We offer a diverse environment that allows you personal and professional growth. You’ll have tools to help balance your professional and personal life, paid volunteer days, and access to employee networks that help you stay connected to what matters to you. Join us.
State Street is an Affirmative Action/ Equal Opportunity Employer/Vet/Disability.
The SSGA Business Controls Office is seeking an Information Security Officer, AVP where you will support SSGA to abide by corporate information security policies and other controls and regulations. You will also support the management of internal and external audits and the access governance program of SSGA IT. In addition to the job responsibilities listed below, you will also work on other ad hoc special projects. You will need to be familiar with Parent/Child role relationships in Access Governance models and the SDLC of an application. The ideal candidate will be ready to jump in and learn new things, building off of their existing experience.
Job responsibilities include, but are not limited to:
- Provide critical support to the first line of defense (employees in our business units)
- Identify and communicate known information security control issues to business area management
- Participate in security incident response program representing the business area to detect and to respond to incidents in a timely manner
- Manage information security compliance assessment of business processes
- Handle remediation of identified business control failures (including CATS/audit issues)
- Review and approve non-standard access for high risk access (e.g. blocked web sites, mass storage, application access, non-standard device and non-expiring passwords, process and system IDs)
- Demonstrate a commitment to information security by obtaining additional training and staying ahead of information security technologies and practices
- Support business lines in developing responses to audit and regulatory inquiries about security controls
- Act as backup for Senior Information Security Officer (if applicable)
- Attend and actively participate in recurring meetings of State Street’s global Information Security Officer Network
- Maintain among all levels of business line staff a high level of awareness about security issues and control objectives
- Support SSGA in other initiatives such as Privacy, Business Continuity, etc. as determined by management
- Create and/or participate in processes (such as strategic business planning sessions) to ensure that potential security risks associated with new and existing business processes and IT applications are identified and addressed
- Actively help business unit management evaluate and mitigate risks associated with third party vendors, as part of State Street’s broader third party risk program
- Oversee the work of the business unit Information Security Administrator(s) (ISA)
Skills and Qualifications:
- 3-5 years of IT Risk, Access Governance, or Regulatory experience preferred
- Familiarity with databases (Oracle/MSSQL)
- Proficient in MS Excel, VLOOKUP, Pivot Tables, large data sets
- Attention to detail with an aptitude for quick paced learning
- Good organization and interpersonal skills with a security first mentality
- Demonstrated ability to extrapolate compensating controls for remediation and risk mitigation
- Willing to obtain CISSP, CISA, and other certifications
Find one job in US 