Job title: IT infrastructure Audit – Manager
Company: State Street
Job description: Cyber Security. Information Security. Cloud Computing. Ethical Hacking. Blue Team. Red Team. Purple Team. Penetration Testing. Platform as a Service (PaaS). Software as a Service (SaaS). Infrastructure as a Service (IaaS). Encryption. IT Operations. Vulnerability Assessment. IT Asset Management. Threat Intelligence. Data Leakage Prevention. Insider Threat. Identity and Access Management.
Do we have your attention yet?
If so, you may have an interest – or be a recent graduate with a degree – in Computer Science, Computer Engineering, or IT Auditing. Perhaps you attended classes where these topics were covered and you were intrigued but weren’t sure how they could pave the way for an exciting and rewarding career. As a member of the IT Audit Infrastructure team for a global financial services firm, you will gain hands-on experience in each of these areas. But that’s just the start.
Would you like to know more?
You may be wondering what a typical day is for a member of the IT Audit Infrastructure team. One thing is for certain, you won’t be bored. On any given day you will be involved in a variety of activities, including but certainly not limited to: performing audits of the infrastructure that support the applications that allow State Street to meet its business objectives; using any number of tools in our Cyber Lab to conduct a review of key network components and their configurations; reviewing management’s remediation activities and evidence for previously identified audit issues; collaborating with colleagues within Corporate Audit to solve complex problems; and, researching new areas of technology that our business is exploring.
The IT Audit Infrastructure team’s primary objective is understanding and assessing the risks and controls around key Information Technology processes in place across the firm. To be successful, we rely on a variety of skillsets across a wide range of technologies; operating systems (Windows, UNIX, Linux), mainframe (AS/400, Tandem), databases (Oracle, DB2, MS SQL), middleware, network devices (firewalls, routers, switches), coding languages (Python, Java, JavaScript, PHP, R, C++), and emerging technologies (blockchain, cloud computing).
The team you will be joining plays an important role in the overall success of the organization. Across the globe, institutional investors rely on us to help them manage risk, respond to challenges, and drive performance and profitability. To make that happen we need team members like you.
What you will be responsible for:
As IT Auditor – IT Infrastructure and Application Professional – Officer you will be:
- Independent advisor — advising management on risks related to strategic initiatives and process and systemic changes
- Subject matter and controls expert—providing knowledge and experience in key risk areas
- Using your technical knowledge to navigate complex business, operational and technology challenges?
What we are looking for – Experience or interest in auditing technology-related areas such as:
- Enterprise security controls frameworks
- Enterprise application development models (i.e., waterfall, rapid prototyping, agile, etc.,)
- Perimeter/Internal Security Technologies (Firewalls, Intrusion Detection and Prevention Systems)
- Data Loss Prevention technologies and support processes
- Network Segmentation and Separation Solutions
- Identity and Access Management/Privileged Access Management/Adaptive Authentication Solutions
- Platform and Configuration Hardening Practices
- IT incident and problem management
- Threat Intelligence and Insider Threat Detection
- Vulnerability Scanning and Penetration Testing
- Security Incident and Event Management (SIEM) Technologies
- Cyber Incident and response
- Public Cloud Security (AWS, Azure, Google)
As a key member of the team, you will:
- Work as part of an international team with global stakeholders in new and changing situations where there may not always be a readily apparent solution. Perform the planning, assessment, testing and issue validation phases of audits covering IT governance, systems infrastructure, information security, application controls, and operational activities.
- Perform independent and objective assessments of risks and controls to improve risk management practices.
- Assess systems and supporting controls for compliance with laws, regulations, company policies and meet business needs.
- Recommend control improvements to mitigate key risks.
- Influence change and provide insights on business initiatives, including system implementations.
- Prepare audit work papers to ensure compliance with the division’s risk-based audit methodology.
- Use your excellent writing skills to succinctly communicate complicated technical issues in business terms.
- Be an efficiency specialist—identifying inefficiencies in risk management and control design
- Be a problem-solving partner—looking ahead to help management envision future risks and opportunities
Members of the IT Audit Infrastructure team hold many professional certifications, including: Certified Information Systems Auditor (CISA), Certified Information Systems Manager (CISM), Certified in Risk and Information Systems Control (CRISC), Certified Information Systems Security Professional (CISSP), Amazon Web Services certifications, and Azure certifications.
About State Street
What we do. State Street is one of the largest custodian banks, asset managers and asset intelligence companies in the world. From technology to product innovation we’re making our mark on the financial services industry. For more than two centuries, we’ve been helping our clients safeguard and steward the investments of millions of people. We provide investment servicing, data & analytics, investment research & trading and investment management to institutional clients.
Work, Live and Grow. We make all efforts to create a great work environment. Our benefits packages are competitive and comprehensive. Details vary in locations, but you may expect generous medical care, insurance and savings plans among other perks. You’ll have access to flexible Work Program to help you match your needs. And our wealth of development programs and educational support will help you reach your full potential.
Inclusion, Diversity and Social Responsibility. We truly believe our employees’ diverse backgrounds, experiences and perspective are a powerful contributor to creating an inclusive environment where everyone can thrive and reach their maximum potential while adding value to both our organization and our clients. We warmly welcome the candidates of diverse origin, background, ability, age, sexual orientation, gender identity and personality. Another fundamental value at State Street is active engagement with our communities around the world, both as a partner and a leader. You will have tools to help balance your professional and personal life, paid volunteer days, matching gift program and access to employee networks that help you stay connected to what matters to you.
State Street is an equal opportunity and affirmative action employer.
Discover more at StateStreet.com/careers
Expected salary:
Location: Bangalore, Karnataka
Job date: Wed, 29 Jun 2022 06:52:45 GMT
Apply for the job now!