54 risk assessment jobs found in Stamford, CT

About this role: The Enterprise Data Loss Prevention (EDLP) Innovation team Lead Information Security Analyst is a key role supporting our mission to prevent inappropriate external sharing and distribution of sensitive company, customer and employee information. Responsibilities include, but aren't limited to: - Designing, implementing and tuning rules and techniques to prevent risky user behaviors in partnership with security, investigative partners, business groups and other stakeholders. - Lead and support enterprise transition to next-generation cloud-based DLP solutions. - Lead and support ongoing rule/technique change management and associated controls execution. - Assist with inquiries from risk partners, Internal Audit and regulatory bodies on EDLP controls and procedures. In this role, you will: Provide advanced information security consultation for all aspects of information security compliance policy, risk management, and remediation...

At Wells Fargo, we are looking for talented people who will put our customers at the center of everything we do. We are seeking candidates who embrace diversity, equity and inclusion in a workplace where everyone feels valued and inspired. Help us build a better Wells Fargo. It all begins with outstanding talent. It all begins with you. Wells Fargo is seeking a Lead Information Security Analyst in Technology as a part of The Enterprise Data Loss Prevention (EDLP) Solutions team. Learn more about the career areas and lines of business at wellsfargojobs.com The Lead Information Security Analyst is a key role supporting our mission to prevent inappropriate external sharing and distribution of sensitive company, customer and employee information. In this role, you will: Design, implement, and tune rules and techniques to prevent risky user behaviors in partnership with security, investigative partners, business groups and other stakeholders Lead and support enterprise...

About this role: Wells Fargo is seeking a Lead Information Security Analyst that will be focusing on examining and testing security controls, and assessing how business functions engage and interact with technology in order to tailor initiatives to react to technological trends while exceeding IT security measures. In this role, you will: Provide advanced information security consultation for all aspects of information security compliance policy, risk management, and remediation Direct information security risk assessment and research, and recommend remediation plans and strategies Influence stakeholders on net new or on material changes to an asset to influence control decisions Provide consulting on security risk assessment and research, and recommend remediation plans and strategies Act as more experienced lead to the organization to develop security risk awareness and mitigating actions Consult the organization on complex security issues...

Combine two of the fastest-growing fields on the planet with a culture of performance, collaboration and opportunity and this is what you get. Leading edge technology in an industry that's improving the lives of millions. Here, innovation isn't about another gadget, it's about making health care data available wherever and whenever people need it, safely and reliably. There's no room for error. Join us and start doing your life's best work.(sm) Primary Responsibilities: Managing Quality management systems (QMS), metrics, KPI, continuous improvement, customer satisfaction Ensure compliance to the business agreement, policies, procedures, & regulations along with ability to map controls and compliance requirements Identify process and security gaps, recommend improvements, and assist to implement corrective action Identify required process improvements to proactively address risks/vulnerabilities/threats Perform and manage Control/Risk Assessment and...

Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Come make an impact on the communities we serve as we help advance health equity on a global scale. Here, you will find talented peers, comprehensive benefits, a culture guided by diversity and inclusion, career growth opportunities and your life's best work.(sm) Primary Responsibilities: Dedicated security lead for specific lines of business, and consultatively assists the business with customer RFx’s, targeted security assessment, control framework mapping and validation (e.g. System Security Plan (SSP) & International Standards Organization (ISO)), contracts, audits, proactive incident response support and related business support Subject matter experts / technical...

Job Purpose: The position will be responsible for overseeing and reporting on the management and mitigation of information security risks including cybersecurity across the branch and held accountable for the results of this oversight and reporting. The position is responsible for implementing an information and cybersecurity program adhering to Cybersecurity Regulation (NYDFS Part 500) and other ISO requirements. The position oversees and implements the cybersecurity program and enforces cybersecurity policy and procedures for the branch. Key Responsibilities: Implementing the Information Security / Cybersecurity strategy and objectives including strategies as directed by the CISO, to monitor metrics & reports and manage current and emerging risks. Engaging with third parties for effective third party management practices including 3rd party risk management. Working with management in the lines of business to understand the flows of information the risks to that...

Location: Newark, NY Contract to HIRE A. Education/Degree Required Bachelor's degree in Cybersecurity Master's degree preferred B. Years of Experience Minimum of five (5) year of relevant cybersecurity experience C. Knowledge/Skills Required · A solid understanding of information security standards & methodologies such as NIST · Strong experience with Cloud computing (AWS/AZURE) products and security controls · Direct experience with implementing anti-virus software, intrusion detection, firewalls and content filtering · Knowledge of implementing and operationalizing risk assessment tools, technologies and methods · Experience with third party risk analysis and management · Ability to understand and build systems in compliance with the OWASP (Open Web Application Security Project) Top Ten Risk Factors · Understanding of the OSI (Open Systems Interconnection) model and well-known ports and services · Relevant mid-level networking experience...

One of Insight Global's Pharmaceutical clients is looking for an Information Security Manager. This person will have no direct reports but will be responsible for working with and coordinating with the Head of Information Technology. Incumbent should have knowledge in risk assessment, legal and regulatory requirements, cybersecurity threats, vulnerabilities, and security policies and practices. This person will identify risks, manage operations in relation to incident response, vendor security reviews, firewall rule reviews, and business consultations. The ideal candidate would come from a specialist or analyst position and is willing to take on more responsibilities in their career.

IT Security Analyst Location: 2 MetroTech Center, Brooklyn, NY (On-site) Assignment: 1 year (Extendable) Scheduled Work Hours: Monday Through Friday - 35 hours per week Mandatory Qualifications: At least 12 years of experience with Intrusion Prevention Systems and Tools. Extensive experience performing Cyber and Technical Threat Analyses. Familiarity with Security Regulations and Standards. Monitoring and responding to malicious activity, and perform cybersecurity investigations. Perform technical and forensic investigations. Create playbook for security events. Analyze system services, operating systems, networks, and applications to address possible cyber attacks. Automate processes leveraging scripts (Python, batch, etc.). Run reports to gather data from SQL databases (SQL). Creation of SIEM dashboards to help visualize data and events. Set the program strategy and develop approaches to integrate automation/orchestration services into existing and future...

About this role: At Wells Fargo, we are looking for talented people who will put our customers at the center of everything we do. We are seeking candidates who embrace diversity, equity and inclusion in a workplace where everyone feels valued and inspired. Help us build a better Wells Fargo. It all begins with outstanding talent. It all begins with you. Wells Fargo is seeking a Lead Information Security Engineer, in technology as part of the Threat Detection Services Purple Team (TDS-PT) team. Learn more about the career areas and lines of business at wellsfargojobs.com. The Lead Information Security Engineer will have experience or education in tactical cyber-attack evaluation, exploit testing and analysis, cyber intelligence, and red or purple teaming. The ideal candidate will have experience in using tactical expertise in exploit testing, and exploit proof-of-concept development and analysis, to identify over-the-horizon cyber-attack vectors that may pose a risk...

Job Functions, Duties, Responsibilities and Position Qualifications: Location Hicksville, NY Position Summary The IT Security Specialist’s role is to configure and administer various IT systems, with a focus on maintaining security through confidentiality, integrity and availability. This individual should have demonstrable experience in Windows, Firewalls, IDS/IPS systems, Linux, SQL, IIS, and varying protocols such as HTTP, HTTPS, SMTP, SSH, L2TP/IPsec with knowledge of TCP/IP and various web applications and troubleshooting. The individual will work on security reporting, creating action plans, educating peers, participating in security investigations and audits. The individual will work as part of the larger Security Engineering group under the direction of the Sr. Security Manager. Travel Up to 10% travel is expected. The IT Security Specialist is expected to travel to all the labs within their territory to perform audits....

About this role: Wells Fargo is seeking a Senior Information Security Engineer... In this role, you will: Lead or participate in computer security incident response activities for moderately complex events Conduct technical investigation of security related incidents and post incident digital forensics to identify causes and recommend future mitigation strategies Provide security consulting on medium projects for internal clients to ensure conformity with corporate information, security policy, and standards Design, document, test, maintain, and provide issue resolution recommendations for moderately complex security solutions related to networking, cryptography, cloud, authentication and directory services, email, internet, applications, and endpoint security Review and correlate security logs Utilize subject matter knowledge in industry leading security solutions and best practices to implement one or more components of information security...

About this role: Wells Fargo is seeking a Lead Information Security Engineer supporting the Cyber Resiliency Center of Excellence (COE). This Lead will be accountable for managing and driving Cyber Resiliency strategic dependencies and key intersections with stakeholder organizations such as Enterprise Resiliency, Technology Resiliency, Data Resiliency, Infrastructure and Platform Support teams. This role will involve partnering with application teams to ensure they have adequate practices and plans in place to ensure a timely recovery in the event of a cyber attack. They will identify gaps and assist in the remediation of those gaps. In this role, you will: Lead computer security incident response activities for highly complex events Conduct technical investigation of security related incidents and post incident digital forensics to identify causes and recommend future mitigation strategies Provide security consulting on large projects for internal...

Combine two of the fastest-growing fields on the planet with a culture of performance, collaboration and opportunity and this is what you get. Leading edge technology in an industry that's improving the lives of millions. Here, innovation isn't about another gadget, it's about making health care data available wherever and whenever people need it, safely and reliably. There's no room for error. Join us and start doing your life's best work.(sm) This position is responsible for leading third-party risk assessments and ensuring that the design and effectiveness of IT controls meets both corporate requirements as well as applicable laws and regulations. You’ll enjoy the flexibility to work remotely * from anywhere within the U.S. as you take on some tough challenges. Primary Responsibilities:   Leads projects with minimal supervision and demonstrates technical proficiency for assigned assessments Executes scoping and planning activities, performs...

About this role: Wells Fargo is seeking a Lead Information Security Engineer... In this role, you will: Provide security consulting on large projects for internal clients to ensure conformity with corporate information, security policy, and standards Design, document, test, maintain, and provide issue resolution recommendations for highly complex security solutions related to networking, cryptography, cloud, authentication and directory services, email, internet, applications, and endpoint security Review and correlate security logs Utilize subject matter knowledge in industry leading security solutions and best practices to implement one or more components of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity Identify security vulnerabilities and issues, perform risk assessments, and evaluate remediation...

At Wells Fargo, we are looking for talented people who will put our customers at the center of everything we do. We are seeking candidates who embrace diversity, equity and inclusion in a workplace where everyone feels valued and inspired. Help us build a better Wells Fargo. It all begins with outstanding talent. It all begins with you. About this role: Wells Fargo is seeking a Senior Information Security Engineer in Information Security Engineer as part of Information Security Engineering. Learn more about the career areas and lines of business at wellsfargojobs.com . In this role, you will: Lead or participate in computer security incident response activities for moderately complex events Conduct technical investigation of security related incidents and post incident digital forensics to identify causes and recommend future mitigation strategies Provide security consulting on medium projects for internal clients to ensure conformity with corporate...

The Senior Information Security Analyst will implement and support Segal's Information Security Program. The role will interface with colleagues throughout the organization including the Technology and Security Services group within IT, as well as IT Applications. In addition, the Information Security Analyst will collaborate with, and serve as a resource and advisor to Segal's Data Security Committee and its members, and to Segal as a whole. Responsibilities: Support Segal’s Access Management Program initiatives and evolution. Support Segal’s Vendor Risk Management Program initiatives and evolution. Interface with clients as warrented to represent Segal’s Information Security program and capabilities in correlation to client requirements. Coordinate and track Information Security related third party audits and assessments (e.g. SOC2, HIPAA Security Rule Compliance, penetration and vulnerability tests) including scope of audits, timelines, and outcomes. Generate and...

About this role: Wells Fargo is seeking a Senior Information Security Engineer to perform Dynamic Application Security Testing as part of the Software Development Lifecycle. In this role, you will work with software development partners to identify and mitigate the security vulnerabilities in the applications identified through DAST in test environments. Communication with the business security team, enterprise security group, and development technology partners is critical in this role. You will also act as an application security SME for the development and security communities within Wells Fargo. In this role, you will: Conduct penetration testing / dynamic application security testing using both manual and automated testing tools. Ensure that automated tests are completed successfully Configure tools as required to be successful in evaluating applications Validate all defects identified through testing Triage & Disposition results and...

About this role: Wells Fargo is seeking a Lead Information Security Engineer. As part of the Chief Technology Office (CTO), Modernization Team in Wells Fargo is responsible for thought leadership, technology guidance, standards decisions, and driving the modernization throughout the enterprise. Technology currently supports a portfolio of around 6,000 applications governed by enterprise capabilities such as strategy, risk, policy, compliance, architecture, SDLC, etc. The organization is going through a strategic technology and Agile transformation to simplify, streamline and enable technology of the future. This is an interdisciplinary effort that requires all stakeholders to partner seamlessly and drive the execution with efficient and effective use of process, practice and standards respectively. As part of the transformative changes occurring within Technology, the Modernization Team is driving an accelerated execution program to create the necessary constructs to...

As a Cyber Security Engineer, you will work directly with our business customers, developing, deploying, and supporting cybersecurity solutions, in a fast-paced and challenging environment. You will have the opportunity to apply your skills and experiences in many diverse technologies that you already know, and also learn about the ones you don't.Responsibilities: Build and upgrade security posture for compliance with HIPAA, PCI, and DSS Implement the cybersecurity requirements of networks, systems and applications, documenting them in formal security engineering documents using the Risk Management Framework and supporting artifacts associated with risk assessments. Conducts periodic tests, and scans of networks to find and mitigate vulnerabilities. This includes the monitoring and response to Intrusion Detection System (IDS) cues and anti-virus alerts Configuration of Windows and Linux host-based security as well as network and cloud-based security systems Support and...