Senior Security Services Analyst

We are at the forefront of transforming the future of technology in the financial industry, and we seek curious, practical individuals to help us pave the way. Our team is not intimidated by taking calculated risks, as they relish a good challenge and are eager to engage in problem-solving. As a member of our team, you will work alongside like-minded experts in a culture that is deeply rooted in innovation and progression. Join us to be part of a transformative journey that can shape the industry's future.

We are seeking a Sr. Security Services Analyst that will be responsible  for collecting and logging vulnerabilities: Gathering data from various sources such as Risk Register, Tanium, Qualys, Bit sight, SEC and FINRA exams, Pen Tests, and other self-identified vulnerabilities. Log or import this data into our vulnerability tracking system.

What you will do:

• Collect and log Vulnerabilities: Gather data from various sources such as Risk Register, Tanium, Qualys, Bitsight, SEC and FINRA exams, Pen Tests, and other self-identified vulnerabilities. Log or import this data into our vulnerability tracking system.
• Prioritize and Assign: Evaluate the risk level of each vulnerability, determine due dates, and assign them to the appropriate parties responsible for remediation.
• Follow-Up: Monitor and follow up with vulnerability owners to ensure timely remediation of issues, especially those that are coming due or overdue.
• Evidence Collection: Collect and attach evidence of remediation to the tracking system. Close out vulnerabilities/issues once they are successfully remediated or automatically closed by the system if resolved by the latest scan or input.
• Collaboration: Work closely with various teams to ensure vulnerabilities are addressed promptly and effectively.
• Document Exception: track and report on exceptions and risk acceptances related to system patches.

What you need to have: 

• Experience: 3-6 years of experience in IT controls, IT Risk Management,  Vulnerability Management or a related field.
• Knowledge: Familiarity with vulnerability management tools such as Tanium, Qualys, Bitsight, and experience with regulatory exams (SEC, FINRA).
• Skills: Strong analytical and problem-solving skills, attention to detail, and the ability to prioritize tasks based on risk.
• Communication: Excellent verbal and written communication skills to effectively follow up with various stakeholders.
• Certifications: Relevant certifications such as CISA, CASP, CIA or similar are a plus.

Compensation: 

The salary range for this role is $130,000 - $160,000 plus competitive performance-based bonus. Compensation packages are based on a wide array of factors unique to each candidate, including but not limited to skill set, years and depth of experience, certifications, and specific office location. Compensation ranges may differ in differing locations due to cost of labor considerations.

#LI-Hybrid

Salary : $130,000 - $160,000