Federal Reserve Bank of Cleveland
Examiner I, II, Senior - Risk Specialist (Information Technology)','255037','Federal Reserve Bank of Cleveland','OH-Cleveland','','Full-time','Regular','Exempt','Exempt','Experienced','','','Yes, 75 % of the Time','Day Job','','','Tier II - No Credit Check','Tier II - No Credit Check','','','','!*!The Federal Reserve Bank of Cleveland is part of the nation's central bank. We have provided many opportunities for professional growth during our history. For seventeen years in a row, we have been named One of Northeast Ohio's Best Places to Work by North Coast 99. This prestigious award honors organizations with outstanding employment practices, including compensation, benefits, training, recruitment, retention, community services, and employee communications.At our state-of-the-art Cleveland Office we are seeking innovative thinkers with vision to build the framework that will carry the Bank into the future. Join our team!
Examiner I, II, Senior - Risk Specialist (Information Technology)
Operations Risk & Resiliency
Serve as an integral member of the Operations Risk team, conducting Information Systems and Cyber Security Threat examinations of small/non-complex to large/complex/problematic financial institutions and technology service providers. Assess the information security and cyber security risks associated with the information technology operations, electronic banking activities and management information systems of these companies to ensure the systems are operating in a safe and sound manner and in compliance with applicable banking laws, regulations, and policy statements.
Ensure systems are operating in a safe and sound manner and in compliance with applicable banking laws, regulations, and policy statements.
Act as the IT lead and/or assist on information technology examinations of banks and bank holding companies to identify weaknesses and facilitate corrective actions.
Contribute to and/or lead various Federal ReserveSystem, Reserve Bank, and Departmental initiatives by participating in committees, training initiatives and development of policy statements to enhance the supervision of financial institutions.
Determine implications of new information security and cyber security risks and standards to financial institutions and implement relevant examination procedures during reviews to evaluate company effectiveness in mitigating associated risks.
Maintainan awareness of regulations, laws, emerging issues, trends, and ongoing developments in the financial services industry to provide a horizontal perspective.
Coordinate with appropriate Board of Governor and Federal Reserve System staff members on information security and cyber security issues.
Plan, prepare, conduct, and communicate (written and verbal) findings of inspections, examinations, and reviews of activities to financial institution and Reserve Bank management.
Develop solid contacts with other regulators, the Board of Governors and pertinent examination groups at other Reserve Banks.
Provide training and/or interpretations to staff as needed.
Prepare periodic written risk assessments and other analytical and informational supervisory products as needed or requested.
Determine the effectiveness of management, policies, procedures and compliance with regulations.
Make recommendations or participate on groups/special projects to enhance processes, respond to emerging issues, and address internal quality initiatives.','!*!
Bachelor’s degree in computer science (advanced degree preferred)
Certified Information Systems Auditor and Certified Information Systems Security Professional designation. The candidate is also expected to earn ISACA’s Cybersecurity Fundamentals Certificate within two years from date of hire.
5 year examination related work experience (audit,compliance, or regulatory experience in a variety of business lines.)
FFIEC and NIST guidelines, security analytics, network architecture / perimeter security, network monitoring and analysis, threat intelligence and advanced threats, authentication, secure coding / application development, penetration testing, Cyber incident response,malware attacks and mitigations, Web based attacks and mitigations, Cyber risk assessment and strategic analysis, vulnerability detection and assessment, mobiledevice management, threat Intelligence, incident response and digital forensics and advanced security tools (e.g. DDoS, malware, DLP, MFA, SIEM, vulnerability scanning and patching)
Ability to scope and coordinate the review ofapplicable examination areas of small, medium to large, and/or complex,problematic institutions, accurately identifying and quantifying the risk,conducting meetings with bank personnel and communicating those risks (and consequences) to departmental and bank management and other relevant parties
General knowledge in areas of technology governance, technology risk management/GRC, internal audit, vendor/third party management, business resiliency and fraud.
Banking or financial services industry experience is a plus
Sound analysis, problem solving, and judgment skills
Must have good time management skills with a demonstrated ability to complete assignments in a timely, high quality manner
Abilityto identify and communicate risks to all levels of management, including strong presentation and negotiating skills in dealing with executive management and boards of directors
Excellent oral and written communication skills
Strong interpersonal skills with an ability to work independently and as part of a team
Abilityto handle multiple priorities and projects simultaneously
Travelis an expectation for the position, and can range as high as 75% of thetime.
The candidate should ideally be located in or willing to relocate to the Cleveland office.
PLEASE NOTE: This position requires access to confidential supervisory information, access to which is limited to Protected Individuals as defined by regulation of the Board of Governors of the Federal Reserve System. Protected Individuals include, but are not limited to, U.S. Citizens, U.S. Nationals, and lawful permanent resident aliens (also known as green card holders) but do not include (i) a permanent resident alien who fails to apply for naturalization within six months of the date the alien first becomes eligible to apply for naturalization and (ii) an alien who has applied on a timely basis, but has not been naturalized as a citizen within 2 years after the date of the application, unless the alien can establish that the alien is actively pursuing naturalization. If you are selected for an interview, you will be required to present documentation of your eligibility prior to the interview. ','Examiner I, II, Senior - Risk Specialist (Information Technology)
Federal Reserve Bank of Cleveland
Website : http://www.clevelandfed.org