This site uses cookies. To find out more, see our Cookies Policy

Information Assurance Analyst in Lynn, MA at Eastern

Date Posted: 4/4/2018

Job Snapshot

  • Employee Type:
  • Location:
    Lynn, MA
  • Job Type:
  • Experience:
    At least 3 year(s)
  • Date Posted:

Job Description

When you join Eastern Bank, you join the largest and oldest mutual bank in the country. We pride ourselves in having knowledgeable and experienced professionals that can provide the expertise, personal attention and service our customers deserve.
As the fourth-largest full-service commercial bank in Greater Boston, we are able to offer you unique opportunities for career growth throughout the organization, as well as a competitive compensation and benefits program.
As an inclusive company, we work to ensure that our valued employees are treated fairly, recognized for their individuality, and encouraged to reach their fullest potential. These values have earned us a reputation as a great place to work and provide a strong reason why you should consider a career with us.
Responsibilities include, but are not limited to the following:
  • Provide information security subject matter expertise in bank technology project planning meetings. Identify and escalate project security risks for tracking and remediation
  • With guidance, perform security risk assessments of bank and third-party technology platforms
  • Assess and document design effectiveness of controls across the bank; maintenance of security tools, control design, and documentation
    • Thorough analysis of key systems, data points, or periodic sample-based testing ensure security controls are consistently implemented
    • Periodic validation of key preventative and detective security controls through targeted penetration testing of bank systems
    • Develop, maintain, and execute a process to identify document, approve and monitor control exceptions
    • Collaborative development and improvement of technology control environment with all areas of the bank
  • Execute vulnerability management program inclusive of assessment, analysis, prioritization & reporting
  • Document key information security performance metrics, provide summary analysis of metrics from all Technology areas
  • Lead production control and change management processes

Job Requirements

Education and Experience:
  • BS in Management Information Systems, Computer Information Systems, Information Technology, or Information Security or equivalent combination of training and experience
  • Minimum of 3 years of relevant experience
  • Strongly prefer experience security consulting practices in global consulting firms

  • Technical certifications such as CISA, CISM, CISSP, PMP
  • Basic understanding of information security threats, risks, processes, and controls 
  • Familiarity with current and emerging technology architectures including: Windows, Linux, public cloud architecture, virtualization, security technologies, etc.
  • Understanding of Unix and Windows operating systems internals, forensics analysis processes, penetration testing processes, and enterprise security controls
  • Basic understanding of security frameworks, such as CIS CSCs, NIST CSF, and ISO 27001
  • Fundamental understanding of networking, including TCP/IP protocols and network topology
  • Familiarity with Python or other programming languages to be leveraged for automation of processes
  • Ability to identify key risks and controls, recommend improved controls, perform controls readiness projects and identify and assess configuration of controls in IT infrastructure (security, change management, operations, and program development)