Senior Security Analyst Liquidnet Holdings
THIS JOB HAS EXPIRED Description
The Senior Security Analyst is responsible for the design, implementation and maintenance of systems and processes related to the protection of Liquidnet information and property worldwide. Reporting to Liquidnet?s Chief Security and Risk Officer (CSRO), the SSA is responsible for the day to day operation of Liquidnet?s information and physical security programs and provides subject matter expertise to Liquidnet business units on security matters in order to strike a balance between business needs and security requirements.
Security architecture: The SSA works with Liquidnet technical personnel to ensure that security requirements for new and existing systems are documented and addressed. The SSA is also responsible for vetting vendors from an information security point of view.
Security testing and assessment: The SSA coordinates and performs security assessments of Liquidnet systems and networks. The SSA must be knowledgeable about and proficient with network and application security testing tools and techniques.
Vulnerability management: The SSA maintains security profile information on Liquidnet systems, periodically performs vulnerability testing of those systems, and works with the Enterprise Technology Services and Technology groups to classify, mitigate and remediate vulnerabilities. The SSA also monitors external information security resources (FS-ISAC, US-CERT, vendor security bulletins and the trade press) to keep abreast of emerging threats to the security of Liquidnet?s information.
Security monitoring and incident response: The SSA is responsible for monitoring Liquidnet?s security information systems (firewalls, web filtering, IDS, DLP, anti-malware, etc.), identifying anomalous behavior patterns, and investigating those patterns to determine whether a security breach has occurred. In the event that a breach is detected, the SSA will play a key role in the investigation of the events leading to the breach.
Security Awareness: The SSA assists in the drafting and maintenance of security policies and procedures as well as in the development and presentation of security awareness programs and materials.
Physical security: The SSA is responsible for day to day operation of Liquidnet?s physical security infrastructure (access control and video surveillance systems)
This is a hands-on position with one direct report.
5+ years of experience in the Information Security industry, preferably in financial services or other highly regulated environment.
Excellent communications skills (oral/written)
Ability to work with diverse business units to strike a balance between security and business needs.
Attention to detail
Knowledge of network and host security assessment techniques (key words: vulnerability assessment, network assessment, penetration testing)
Experience in the hands on use of information security tools such as IDS, SIEM, vulnerability management, data leakage protection, Cisco firewalls, and assessment tools such as BackTrack, nmap, etc. Experience with Splunk is a plus.
Experience in assessing the security of Windows and Unix/Linux systems
Experience in assessing the security of applications (web based as well as thick client).
Ability to create scripts and tools to gather and analyze information (Perl, Python, PowerShell, etc.)
One or more of the following industry certifications: CISSP, CISM, CISA, SANS
||498 Seventh Avenue |
New York, NY 10018
THIS JOB HAS EXPIRED