Information Security Specialist - Vendor Risk

Company: Federal Reserve System
Location: Newark
Posted on: March 16, 2023

Job Description:

**Company** The Office of Employee Benefits of the Federal Reserve System Working at the Federal Reserve Bank of New York positions you at the center of the financial world with a unique perspective on national and international markets and economies. You will work in an environment with a diverse group of experienced professionals to foster and support the safety, soundness, and vitality of our economic and financial systems. The Bank believes in work flexibility to balance the demands of work and life while also connecting and collaborating with our colleagues in person. Employees can expect to be in the office a couple of days per week as needed for meetings and team collaboration and should live within a commutable distance. **What we do:** The Office of Employee Benefits (OEB) of the Federal Reserve System comprises a staff of over 60 professionals who oversee benefits programs throughout the Federal Reserve System. The OEB provides leadership in formulating Federal Reserve System employee benefits plans and assisting with the administration, implementation, communication and education of these plans to approximately 60,000 active and retired participants from the 12 Federal Reserve Banks and the Board of Governors. **Your role** **as an Information** Security Specialist - Vendor Risk: The Information Security Specialist will be part of a team responsible for managing information security risks with an emphasis on the assessment and monitoring of third-party risk for the Office of Employee Benefits + Conduct information security and data privacy assessment of vendors (including cloud services) + Leads Incident response investigations (Understands and interprets guiding policies, develops response plan, and recommends mitigations). + Develop risk mitigation strategies and advise management on how to mitigate any identified risks. + Work with internal and external teams in conducting security and privacy control assessments. + Ensure compliance with Information Security and Data Privacy policies and procedures. + Coordinate with vendor's managers to communicate, track and close open risk items. + Manage tasks associated with the monitoring of FRS security and data privacy programs and standards. + Collaborate with the FRS security communities to support activities. + Develop and maintain logical data diagrams identifying flow of information and identify and suggest process Improvements. + Develop data and perform analysis for risk reporting and tracking the IT risk profiles. + Influences key stakeholders across the Bank regarding information security policies, practices and procedures. + Provides decision-support expertise on information and cyber security topics, issues, and risks. + Engages with information and cyber security leaders and peers to represent different and varied information and cyber security subject matter as a part of day-to-day duties. **What we are looking for:** + Understanding of compliance, audit process and ability to adhere/manage multiple risk controls related to third-party risk assessments and data privacy. + Proven experience executing information or cyber security processes. + Demonstrated experience providing decision-support to information or cyber security leaders across one or more information or cyber security domains. + Ability in managing projects throughout the entire project life cycle from problem definition, requirements definition, design, development, testing and implementation. + Understanding of Information Security Industry standards (i.e. NIST, COBIT, and Sarbanes Oxley) + Knowledge in SSAE, SOC 2 and other vendor risk assessment methodologies + Broad knowledge of information security and privacy fundamentals + Familiarity with cloud security frameworks e.g., NIST CSF + Experience with incident response, mitigations and reporting **Salary Range:** $166300 - $207900 / year **Touchstone Behaviors** set clear expectations for leading with impact at every stage of our careers and aspire to achieve in our continued growth and development. **Communicate Authentically** : Empathetically engage one another with direct and transparent dialogue and listening. Actively discuss viewpoints with respect and compassion in a timely and candid manner, taking into account verbal and nonverbal cues. Ask questions, learn from each other, and share information widely to move the Bank's work forward. **Collaborate Inclusively** : Inspire a diverse and inclusive environment that empowers others to contribute meaningfully. Intentionally bring a diverse set of people together to achieve positive business results. **Drive Progress** : Grow and adapt to changing priorities in the Bank. Experiment with new concepts and take appropriate risk to drive innovation. Remain curious and action oriented, navigating through ambiguity and uncertainty to drive outcomes. **Develop Others** : Equitably champion, mentor, and develop others to grow professionally. Demonstrate vulnerability and empathy to create a trusted environment. **Take Ownership** : Establish an environment of action and excellence by holding self and others accountable to execute to the highest standard. **Benefits:** Our organization offers benefits that are the best fit for you at every stage of your career: + Fully paid Pension plan and 401k with Generous Match + Comprehensive Insurance Plans (Medical, Dental and Vision including Flexible Spending Accounts and HSA) + Subsidized Public Transportation Program + Tuition Assistance Program + Onsite Fitness & Wellness Center + And more (https://www.newyorkfed.org/careers/benefits_health.html) _The Federal Reserve Bank of New York is committed to a diverse workforce and to providing equal employment opportunity to all persons without regard to race, color, religion, national origin, sex, sexual orientation, gender identity, age, genetic information, disability, or military service._ **The successful candidate** **must be fully vaccinated against COVID-19,** **and receive a booster shot within 30 days of being eligible to do so,** **unless the Bank grants an exemption based on a medical condition or sincerely held religious belief.?** This is not necessarily an exhaustive list of all responsibilities, duties, performance standards or requirements, efforts, skills or working conditions associated with the job. While this is intended to be an accurate reflection of the current job, management reserves the right to revise the job or to require that other or different tasks be performed when circumstances change. **Full Time / Part Time** Full time **Regular / Temporary** Regular **Job Exempt (Yes / No)** Yes **Job Category** Information Technology **Work Shift** First (United States of America) _The Federal Reserve Banks believe that diversity and inclusion among our employees is critical to our success as an organization, and we seek to recruit, develop and retain the most talented people from a diverse candidate pool. The Federal Reserve Banks are committed to equal employment opportunity for employees and job applicants in compliance with applicable law and to an environment where employees are valued for their differences._ Privacy Notice (https://www.kansascityfed.org/documents/7797/Workday_Privacy_Notice.pdf) OUR BANK has one of the most recognizable brands around the world. The Federal Reserve is the central bank of the United States-one of the world's most influential, trusted and prestigious financial organizations. The Federal Reserve is charged with the important mission of promoting a strong economy and a stable financial system and fulfills this responsibility by formulating national monetary policy, supervising and regulating banks and bank holding companies, and providing financial services for banks and the U.S. government. OUR PEOPLE are diverse in background and ideas, which allows for ongoing creativity and innovation. Ultimately, they are the ones who push our high-performance, exchange-driven culture forward. Why Our People Choose Us: Our reputation precedes us There will always be room for personal growth Our people are first You'll find the right balance Your responsibilities will be meaningful We hope that you will be our future colleague.

Keywords: Federal Reserve System, Newark , Information Security Specialist - Vendor Risk, Other , Newark, New Jersey