BNY Mellon
,
Manchester, Greater Manchester
Audit Senior (Cybersecurity)
Overview
Job Description
BNY Mellon is seeking a highly motivated professional to join its Cyber Security Audit Team. The successful candidate will work in a technically diverse and dynamic environment with a team of Technology Audit Security professionals responsible for auditing all aspects of the organization's cyber security activities. The successful candidate will be involved in multiple aspects of leading audits within the cyber security audit program. Candidates should have experience in conducting security research, reverse engineering, and understand a variety of web, application, and Internet protocols. Candidates should be able to identify potential threats against those systems and assess the organization's risk mitigation effectiveness in minimizing those threats. The duties and responsibilities of this position include, but are not limited to: Assess incident response team actions and procedures. Support investigations and research for possible computer security related incidents. Perform internal audits to validate the effectiveness of cyber security controls. Conduct application, network, and operating system security assessments. Assess security monitoring of clients, servers, applications, and network infrastructure activities. Conduct log analysis to identify suspicious or malicious activity and anomalous behavior. Represent cyber security on cross-functional IT project teams. Support security projects that implement infrastructure, applications or systems solutions ensuring timely delivery of functional, technical and security requirements. Support the analysis, design, functional review and interpretation of requirements of security related hardware and software. Support the auditing of security policy and procedure which safeguard infrastructure, systems, files and data. Assess Vulnerability Management programs. Support Threat Intelligence activities. Understand Data Protection risks and strategies. Perform Network Penetration testing and cybersecurity related security assessments. Effective Stakeholder Management. Knowledge of key regulations and industry standards such as ISO 27001&2, NIST SP800-53, and the NIST Cybersecurity Framework. Bachelor's degree or equivalent combination of education and work experience required. Degree in accounting or technology field preferred. CISA, CISSP, CEH, or related certifications preferred. 3-6 years of relevant experience. Prior experience in Audit or Cybersecurity practices preferred. Additional core skill requirements include critical thinking, problem solving, and effective communication skills (both written and verbal).