23 enterprise risk management jobs found in New York, NY

Kforce has a client in NYC that is seeking a Senior Risk Specialist - Technology and Cyber Security. Summary: A strong technical background will enable comprehensive strategic and core risk related conversations with technical audiences while building confidence with business stakeholders and the company's leadership when identifying risk and proposing respective remediation plans. In this role, the Senior Risk Specialist will perform full range of technology and information and cyber security risk management lifecycle activities, including risk identification, assessment, reporting and oversight of remediation planning and executio (e.g. third-party, application, database, infrastructure, network penetration testing, etc.). Responsibilities: Build and maintain relationship with multiple stakeholders, including Infrastructure & Application Development, Enterprise Risk, Human Resources, Legal, Compliance, etc. Partner with Head Office and first line teams (CISO and...

About this role: The Enterprise Data Loss Prevention (EDLP) Innovation team Lead Information Security Analyst is a key role supporting our mission to prevent inappropriate external sharing and distribution of sensitive company, customer and employee information. Responsibilities include, but aren't limited to: - Designing, implementing and tuning rules and techniques to prevent risky user behaviors in partnership with security, investigative partners, business groups and other stakeholders. - Lead and support enterprise transition to next-generation cloud-based DLP solutions. - Lead and support ongoing rule/technique change management and associated controls execution. - Assist with inquiries from risk partners, Internal Audit and regulatory bodies on EDLP controls and procedures. In this role, you will: Provide advanced information security consultation for all aspects of information security compliance policy, risk management, and remediation...

At Wells Fargo, we are looking for talented people who will put our customers at the center of everything we do. We are seeking candidates who embrace diversity, equity and inclusion in a workplace where everyone feels valued and inspired. Help us build a better Wells Fargo. It all begins with outstanding talent. It all begins with you. Wells Fargo is seeking a Lead Information Security Analyst in Technology as a part of The Enterprise Data Loss Prevention (EDLP) Solutions team. Learn more about the career areas and lines of business at wellsfargojobs.com The Lead Information Security Analyst is a key role supporting our mission to prevent inappropriate external sharing and distribution of sensitive company, customer and employee information. In this role, you will: Design, implement, and tune rules and techniques to prevent risky user behaviors in partnership with security, investigative partners, business groups and other stakeholders Lead and support enterprise...

About this role: Our ICS team is looking for an information security leader to join our Enterprise Data Loss Prevention (EDLP) team as the manager of the DLP Triage function. The manager will be responsible for leading a team of roughly 8+ in identifying, triaging and managing potential data loss events and data protection initiatives through appropriate resolution paths. This role will partner closely with the EDLP Response and Innovation teams to identify emerging patterns of risky user behaviors and develop actionable recommendations for DLP policy rule enhancements and tuning. General duties include managing daily operations and resource assignments, partnering with security control stakeholders to reduce risk of data loss, continuous tuning/optimization of operations to improve effectiveness and efficiency, as well as responding to audit and regulatory obligations. The position involves regular interactions with senior leadership and business-aligned security leaders,...

About this role: Wells Fargo is seeking a Lead Information Security Analyst that will be focusing on examining and testing security controls, and assessing how business functions engage and interact with technology in order to tailor initiatives to react to technological trends while exceeding IT security measures. In this role, you will: Provide advanced information security consultation for all aspects of information security compliance policy, risk management, and remediation Direct information security risk assessment and research, and recommend remediation plans and strategies Influence stakeholders on net new or on material changes to an asset to influence control decisions Provide consulting on security risk assessment and research, and recommend remediation plans and strategies Act as more experienced lead to the organization to develop security risk awareness and mitigating actions Consult the organization on complex security issues...

About this role: Wells Fargo is seeking a Lead Information Security Engineer supporting the Cyber Resiliency Center of Excellence (COE). This Lead will be accountable for managing and driving Cyber Resiliency strategic dependencies and key intersections with stakeholder organizations such as Enterprise Resiliency, Technology Resiliency, Data Resiliency, Infrastructure and Platform Support teams. This role will involve partnering with application teams to ensure they have adequate practices and plans in place to ensure a timely recovery in the event of a cyber attack. They will identify gaps and assist in the remediation of those gaps. In this role, you will: Lead computer security incident response activities for highly complex events Conduct technical investigation of security related incidents and post incident digital forensics to identify causes and recommend future mitigation strategies Provide security consulting on large projects for internal...

Combine two of the fastest-growing fields on the planet with a culture of performance, collaboration and opportunity and this is what you get. Leading edge technology in an industry that's improving the lives of millions. Here, innovation isn't about another gadget, it's about making health care data available wherever and whenever people need it, safely and reliably. There's no room for error. Join us and start doing your life's best work.(sm) The Sr. Information Security Engineer – IAM SSO will be part of the Web Access Management team (WAM) in the Optum Technology Information Risk Management Division (IRM). The WAM team is focused on integrating customers (internal and external to Optum/UHC) with the appropriate security tools for authenticating users with applications. The primary role of the Engineer is to design, configure and support access management solutions in accordance with our operating guidelines and security practices. This is an individual...

Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Come make an impact on the communities we serve as we help advance health equity on a global scale. Here, you will find talented peers, comprehensive benefits, a culture guided by diversity and inclusion, career growth opportunities and your life's best work.(sm) General Security Engineering: Making critical decisions on enterprise security policies Reporting and reviewing the compliance status and taking remediation actions Understanding of network security best practices and standards through auditing, policy analysis, firewall request review and processing Implement suggested solutions and innovative approaches to complex issues, as well as complex conceptual analysis,...

Combine two of the fastest-growing fields on the planet with a culture of performance, collaboration and opportunity and this is what you get. Leading edge technology in an industry that's improving the lives of millions. Here, innovation isn't about another gadget, it's about making health care data available wherever and whenever people need it, safely and reliably. There's no room for error. Join us and start doing your life's best work.(sm)  This position is responsible for leading cross functional teams within the Enterprise Resilience (ER) function within Enterprise Information Security (EIS).  The ER function is an enterprise function, serving all businesses across UHG, UHC, and Optum.  It is comprised of three core functions (Business Continuity, Disaster Recovery, and Crisis Management).   The Enterprise Resilience organization ensures that all enterprise businesses have current and effective business continuity and technology disaster recovery plans in place for both...

The Senior Information Security Analyst will implement and support Segal's Information Security Program. The role will interface with colleagues throughout the organization including the Technology and Security Services group within IT, as well as IT Applications. In addition, the Information Security Analyst will collaborate with, and serve as a resource and advisor to Segal's Data Security Committee and its members, and to Segal as a whole. Responsibilities: Support Segal’s Access Management Program initiatives and evolution. Support Segal’s Vendor Risk Management Program initiatives and evolution. Interface with clients as warrented to represent Segal’s Information Security program and capabilities in correlation to client requirements. Coordinate and track Information Security related third party audits and assessments (e.g. SOC2, HIPAA Security Rule Compliance, penetration and vulnerability tests) including scope of audits, timelines, and outcomes. Generate and...

About this role: Wells Fargo is seeking a Lead Information Security Engineer. As part of the Chief Technology Office (CTO), Modernization Team in Wells Fargo is responsible for thought leadership, technology guidance, standards decisions, and driving the modernization throughout the enterprise. Technology currently supports a portfolio of around 6,000 applications governed by enterprise capabilities such as strategy, risk, policy, compliance, architecture, SDLC, etc. The organization is going through a strategic technology and Agile transformation to simplify, streamline and enable technology of the future. This is an interdisciplinary effort that requires all stakeholders to partner seamlessly and drive the execution with efficient and effective use of process, practice and standards respectively. As part of the transformative changes occurring within Technology, the Modernization Team is driving an accelerated execution program to create the necessary constructs to...

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. EY Technology: Technology has always been at the heart of what we do and deliver at EY. We need technology to keep an organization the size of ours working efficiently. We have 250,000 people in more than 140 countries, all of whom rely on secure technology to be able to do their job every single day.  Everything from the laptops we use, to the ability to work remotely on our mobile devices and connecting our people and our clients, to enabling hundreds of internal tools and external solutions delivered to our clients.  Technology solutions are integrated in the client services we deliver and is key to us being more innovative...

IT Security Architect Location: 2 MetroTech Center, Brooklyn, NY (On-site) 1 year (Extendable) Scheduled Work Hours: Monday Through Friday- 35 hours per wee k,. Mandatory Qualifications: At least 12 years of experience in information security and/or IT risk management with a focus on security, performance, and reliability. Ability to interact with a broad cross-section of personnel to explain and enforce security measures. Good working knowledge of current IT risks and experience implementing security solutions. Provide expert Information Security architecture, leadership, analytical guidance for technical framework. Ensure technical design incorporate security and provide input into various enterprise architecture. Assist Information Security Engineering team to evaluate and design security solutions such as NGFW, DNS/DNSSEC, Cisco ISE, proxy, cloud solution, and Data Loss prevention technology. Review system security controls and design necessary enhancements....

About this role: Our ICS team is looking for an information security leader to join our Enterprise Data Loss Prevention (EDLP) team as the manager of the DLP Triage function. The manager will be responsible for leading a team of roughly 8+ in identifying, triaging and managing potential data loss events and data protection initiatives through appropriate resolution paths. This role will partner closely with the EDLP Response and Innovation teams to identify emerging patterns of risky user behaviors and develop actionable recommendations for DLP policy rule enhancements and tuning. General duties include managing daily operations and resource assignments, partnering with security control stakeholders to reduce risk of data loss, continuous tuning/optimization of operations to improve effectiveness and efficiency, as well as responding to audit and regulatory obligations. The position involves regular interactions with senior leadership and business-aligned security leaders,...

About this role: Wells Fargo is seeking a Lead Information Security Engineer supporting the Cyber Resiliency Center of Excellence (COE). This Lead will be accountable for managing and driving Cyber Resiliency strategic dependencies and key intersections with stakeholder organizations such as Enterprise Resiliency, Technology Resiliency, Data Resiliency, Infrastructure and Platform Support teams. This role will involve partnering with application teams to ensure they have adequate practices and plans in place to ensure a timely recovery in the event of a cyber attack. They will identify gaps and assist in the remediation of those gaps. In this role, you will: Lead computer security incident response activities for highly complex events Conduct technical investigation of security related incidents and post incident digital forensics to identify causes and recommend future mitigation strategies Provide security consulting on large projects for internal...

About this role: Wells Fargo is seeking a Lead Information Security Engineer... In this role, you will: This position will work closely with the Network Security (NS) leadership team, technical partners, and business groups to develop solutions and strategy for the enterprise. Will be accountable for developing and documenting reference engineering designs and product/service roadmaps to support NS initiatives. Will also support large-scale enterprise technical projects with high visibility. Activities that this position will support or be accountable for: Strategic direction, expert advice, and long-term planning for large NS projects and other corporate initiatives Tactical solutions for immediate problems/changes in response to changing business environments and threats Product strategies for key solutions within SIE Technical partnering with Wells Fargo technical teams and vendors including tracking technical issues and working on solutions...

Summary The information security analyst is a member of the information security team working closely with IT Security Manager to implement a comprehensive information security program. This includes defining security policies, processes and standards. Responsibilities Partners with the IT department to select and deploy technical controls to meet specific security requirements and defines processes and standards to ensure that security configurations are maintained. Responsible for maintaining the Identity & Access Management program, standards for delivering enterprise-wide Identity, Access, Directory and Authentication Services for employees, vendors and members with the capability to support cloud and on-premise application services. Works with information security leadership to develop strategies and plans to enforce security requirements and address identified risks, vulnerabilities and other security exposures, including misuse of information assets and...

Summary The information security analyst is a member of the information security team working closely with IT Security Manager to implement a comprehensive information security program. This includes defining security policies, processes and standards. Responsibilities Partners with the IT department to select and deploy technical controls to meet specific security requirements and defines processes and standards to ensure that security configurations are maintained. Responsible for maintaining the Identity & Access Management program, standards for delivering enterprise-wide Identity, Access, Directory and Authentication Services for employees, vendors and members with the capability to support cloud and on-premise application services. Works with information security leadership to develop strategies and plans to enforce security requirements and address identified risks, vulnerabilities and other security exposures, including misuse of information assets and...

Summary The information security analyst is a member of the information security team working closely with IT Security Manager to implement a comprehensive information security program. This includes defining security policies, processes and standards. Responsibilities Partners with the IT department to select and deploy technical controls to meet specific security requirements and defines processes and standards to ensure that security configurations are maintained. Responsible for maintaining the Identity & Access Management program, standards for delivering enterprise-wide Identity, Access, Directory and Authentication Services for employees, vendors and members with the capability to support cloud and on-premise application services. Works with information security leadership to develop strategies and plans to enforce security requirements and address identified risks, vulnerabilities and other security exposures, including misuse of information assets and...

Summary The information security analyst is a member of the information security team working closely with IT Security Manager to implement a comprehensive information security program. This includes defining security policies, processes and standards. Responsibilities Partners with the IT department to select and deploy technical controls to meet specific security requirements and defines processes and standards to ensure that security configurations are maintained. Responsible for maintaining the Identity & Access Management program, standards for delivering enterprise-wide Identity, Access, Directory and Authentication Services for employees, vendors and members with the capability to support cloud and on-premise application services. Works with information security leadership to develop strategies and plans to enforce security requirements and address identified risks, vulnerabilities and other security exposures, including misuse of information assets and...