Expert Security & Infrastructure Analyst

At Finastra, we are a dynamic global provider of open finance software solutions, dedicated to expanding access to financial services. Our innovative applications span Lending, Payments, Treasury and Capital Markets, and Universal Banking. Proudly serving over 8,000 customers, including 45 of the world's top 50 banks, we aim to boost financial inclusion for all. Join us and be part of a vibrant company that embraces diverse perspectives, and is committed to doing well by doing good.

Expert Security & Infrastructure Analyst

What will you contribute?

The Expert Security & Infrastructure Analyst will run and support the tactical advancement of Finastra’s Cybersecurity program.  This role will participate in a multidisciplinary information security team, applying fundamental systems security understanding, skills, expertise, and experience to maintain and operate complex information systems and security tools that satisfy organizational mission and/or business requirements, including stakeholder protection needs and security requirements.  The role will be responsible for routine activities related to operational activities while also providing internal customer support.  The ideal candidate will be self-directed and work effectively in a diverse team environment.

Responsibilities & Deliverables:

• Assist in the configuration and maintenance of security tools, applications, and cloud environments used within our infrastructure
• Deploy strong identity and access management controls across application and computing environments
• Supports the evaluation and implementation of security products/services
• Provides security services related to Cybersecurity roadmap initiatives to improve our broader security posture, demonstrated by metrics
• General management of credentials, including those that are interactive, non-interactive, API-based, etc.
• Engages in continuous tool improvement, process improvement and quality control through feedback loop with engineering team
• Updates the relevant documentation and training required for privileged access management solutions and processes
• Configures relevant policies, platforms, safes, users to meet business requirements
• Reports progress and system health through metrics and KPIs that are risk-driven and/or operational in nature
• Promotes and delivers with an agile and CI/CD delivery mindset to achieve program objectives
• Addresses ticket queue in timely fashion and follows appropriate change management procedures
• Understands risk and communicates clearly and concisely
• Effectively communicates issues/risks, options, pros/cons, and recommendations to drive change and overcome obstacles
• Stays current on security trends and industry best practices, providing input and recommendations based on research

Knowledge / Skills:

• Extensive knowledge of key Cybersecurity controls and technologies, such as Security Information and Event Management (SIEM) systems, intrusion detection/prevention systems (IDS/IPS), public key infrastructure (PKI), identity and access management (IDAM) systems, antivirus and firewalls, in addition to newer offerings such as endpoint detection and response (EDR), threat intelligence platforms, privileged access management (PAM), security automation and orchestration, deception technologies and application controls
• Experienced in cloud operations, with cloud access security broker (CASB) experience preferred, with at least 2-3+ years exposure with Amazon Web Services (AWS), Microsoft Azure or VMware
• Knowledge of LDAP/Active Directory, and relevant IT architecture experience.
• Knowledge of web technologies (XML, HTML, SPML/SOAP, etc.), PowerShell, SaaS applications, network operations (networks, protocols, and email).
• Knowledge of both Windows and Unix platforms, with programming (PowerShell, etc.) a plus.
• Knowledge of relational databases (Oracle, MS SQL Server, etc.).
• Familiarity with identity and access management (IAM) concepts, such as lifecycle (joiner, mover, leaver), password policies, RBAC/ABAC, least privilege, etc.
• Excellent understanding of Vulnerability Management Lifecycle, Cyber Kill Chain, Cloud Kill Chain, FFIEC CAT, NIST CSF, ISO2700 and PCI.
• Excellent written and verbal communication skills along with the ability to absorb and present large amounts of detail through various forms of communications to any level of Business Users, IT Management or technical roles.

 Experience:

• 5+ years of hands-on experience in Cybersecurity, information technology and related services and management.   Experience in the FinTech or Financial Services industry is a plus
• 3+ years of experience running enterprise-wide privileged access management technology solution support across medium-to-large scale companies
• Experience on small-to-medium, complex projects that have state and/or enterprise-wide impact and require subject matter expertise of process improvement areas and process improvement tools.
• Experience using programming languages (JAVA, .NET, C++, etc.).
• Experience with endpoint security technologies a plus.

Education / Certifications:

• Bachelor's degree from an accredited college or university, or equivalent experience.  A degree in Computer Science, Computer/Data Systems Management or a related field or discipline is preferred but not required. 
• Certification in one or more of the following areas is desired but not required: Certified Information Security Professional (CISSP), Certified Cloud Security Professional (CCSP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM)

We are proud to offer a range of incentives to our employees worldwide. These benefits are available to everyone, regardless of grade, and reflect the values we uphold:

·       Flexibility: Enjoy unlimited vacation, based on your location and business priorities. Hybrid working arrangements, and inclusive policies such as paid time off for voting, bereavement, and sick leave.

·       Well-being: Access confidential one-on-one therapy through our Employee Assistance Program, unlimited personalized coaching via our coaching app, and access to our Gather Groups for emotional and mental support.

·       Medical, life & disability insurance, retirement plan, lifestyle and other benefits*

·       ESG: Benefit from paid time off for volunteering and donation matching.

·       DEI: Participate in multiple DE&I groups for open involvement (e.g., Count Me In, Culture@Finastra, Proud@Finastra, Disabilities@Finastra, Women@Finastra).

·       Career Development: Access online learning and accredited courses through our Skills & Career Navigator tool.

·       Recognition: Be part of our global recognition program, Finastra Celebrates, and contribute to regular employee surveys to help shape Finastra and foster a culture where everyone is engaged and empowered to perform at their best.

*Specific benefits may vary by location.

At Finastra, each individual is unique, bringing their own ideas, thoughts, cultural beliefs, backgrounds, and experiences together. We learn from one another, embrace and celebrate our differences, and create an environment where everyone feels safe to be themselves.

Be unique, be exceptional, and help us make a difference at Finastra!