• Strengthen the Information Security awareness program through :

• Development of a Role/Function-Specific training program for high-risk employee
• Management of the existing platform wide annual training and attestations
• Delivery of weekly Information Security awareness sessions for new joiners
• Design and co-ordination of platform-wide phishing campaigns and targeted spear phishing campaigns

• 
  Enhance Information Security policies and related documentation for the US platform.

• Review local policies to ensure appropriate quality, ownership, coverage and implementation is achieved
• Support CISO in developing Policy and Procedure documentation to address identified gaps in existing policy framework

• 
  Risk Management and 2LoD control performance

• Performance of quarterly and annual Information Security controls to ensure appropriate oversight of 1LoD
• Documenting control performance in GRC tool

• 
  Committees and Administration

• Development of PowerPoint slides to be presented at quarterly committees.
• Co-ordination of evidence gathering required for internal and external audits and regulatory reporting. (Specifically, DFS500, SWIFT, FedLine, DTCC)
• Performance of data analysis and manipulation required for Head Office and Local KRI/KPI reporting.\

Assist with other duties as required.

MPI does not discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity or expression, national origin, age, disability, veteran status, marital status, or based on an individual's status in any group or class protected by applicable federal, state or local law. MPI encourages applications from minorities, women, the disabled, protected veterans and all other qualified applicants.

• BA/BS degree, preferably in MIS or related field. CISM certification is helpful.
• At least 3 years of experience ideally in Technology Risk or Information Security.
• Strong experience writing accurate content for internal publication such as training, bulletins, memos etc.
• Excellent Microsoft Office skills, specifically Excel and PowerPoint.
• Prior exposure to industry frameworks (e.g., NIST, COBIT, FFIEC) and regulations (NY DFS500, EBA/GL/2019/04, NFA) would be helpful but not essential.
• Excellent teamwork communication, collaboration and relationship building skills.
• Able to operate transversely across IT (US, Head Office and other geographies)
• Strong sense of ownership and drive.

Strong organizational skills, time and priorities management skills.

Leading Financial Services located in New York, New York, looking for an Information Security Risk Associate.

Competitive compensation hourly rate based on candidate's previous experience.

Apply today using the link and your resume will be considered in the next 24 hours!