Job Description :
1. Lead SecArch deep dives with the requestor of the assessment
2. Prioritize risks identified in relation to business risks
3. Conduct assessment and provide technology risk/requirements to the requestor. Areas covered:
a. Authentication, Authorization, Auditing
b. Application Security – Session Security, Vulnerability/Pen Testing items, Input Validation
c. Secure data transport and storage
4. Periodically review security reference architecture (security blueprints) and conduct updates/enhancements
5. Participate in various Operational and Technology Risk governance processes
6. Assist in identifying new areas and opportunities of technology investment for the firm
Skills and Experience