Miami Lakes, FL, US, 33016
ISO Security Specialist
At Popular, we offer a wide variety of services and financial solutions to serve our communities in Puerto Rico, United States & Virgin Islands. As employees, we are dedicated to making our customers dreams come true by offering financial solutions in each stage of their life. Our extensive trajectory demonstrates the resiliency and determination of our employees to innovate, reach for the right solutions and strongly support the communities we serve; this is why we value their diverse skills, experiences and backgrounds.
Are you ready for a rewarding career?
We have more than 9,000 people working for Popular in Puerto Rico, United States, Virgin Islands and Latin America.
Come and join our community!
Job Type
Full time
General Description
Provide technical leadership in the creation, establishment, and maintenance of the information technology/security risk framework, processes, and controls, taking into consideration the overall business strategy, legal/regulatory requirements, and other best practices. Perform security assessment to applications, systems, and vendors. Manage the various risks, which may threaten the very success of the organization and propose methodologies to eliminate or minimize them.
Essential Duties and Responsibilities
- Leads the security investigations related to applications, user account, and vendors.
- Manage incident response process, from detection, response and post-incident report and actions.
- Discuss and follow up action plans to address recommendations from internal processes.
- Provided feedback during the Development, review, and update of Policies, Standards, and Procedures related to Information Security.
- Triage new incoming issues to determine the risk levels.
- Prepare documentation, metrics and reports related to security assessment.
- Support other duties and responsibilities.
- Escalate issues to senior leadership if you feel your issues are not being treated at the correct pace due to their impact to ensure that we are putting customers first.
- Explore building and improving our tooling to make your own life easier, and at the same time, sharing that benefit with all our engineers.
Essential Duties and Responsibilities (cont.)
- Proven experience with a focus in areas such as systems, incident response, network, and/or application security. AWS Cloud experience required.
- Expected to manage and enforce internal procedures and controls, problem resolution; and motivates employee to achieve peak productivity and performance.
- Provide advice and recommendations to the Information Security Officers on security matters of interest and concern, and expert recommendations to leadership, IT managers and peers concerning technical and programmatic information security to help ensure that systems and data are secure across the organization.
- Oversee cloud vulnerability management program, working with the Information Security Officers and the technical staff performing vulnerability-related tasks to identify and remediate vulnerabilities on a timely basis and measure program effectiveness through clear and actionable metrics.
Essential Duties and Responsibilities (cont.)
- Coordinate incident response, including planning, documentation, training, and execution of appropriate incident response to a wide range of information security scenarios.
- Assess information security risk for specific systems and environments and provides guidance and recommendations to improve the overall risk assessment processes.
- Evaluate the effectiveness of security controls and give recommendations for remediation and enhancements, particularly in the cloud environment.
- Develops briefs, reports, training/awareness notices, and other documents concerning information security topics. Leads and/or supports various ad hoc and standing committees concerning information security topics.
Education
Experience
Three (3) years of cyber security and cloud related experience in a complex technology environment.
Certifications / Licenses
Certifications and Licenses are preferred but no required.
Knowledge, Skills, and Abilities (KSA'S)
- Strong business acumen: ability to understand the needs and concerns of business stakeholders and colleagues and respond promptly and effectively to stakeholder requests. Ability to conduct analysis on work procedures, business results and recommends changes to improve the effectiveness of the business's management.
- Strong technical acumen: knowledge of Cyber Security, Information Security, and Information Technology concepts. Ability to write technical instructions using programs and technology. Robust knowledge of applicable local and federal laws, regulations, and guidelines.
- Communication skills: effectively interact with internal and external stakeholders. Ability to foster trusting relationships with colleagues and clients. Highly develop written and verbal communications skills, strong ability to communicate ideas (storytelling). Presents numerical data effectively. Superior communication and interpersonal skills. Excellent report-writing and presentation skills. Polished in preparing presentations, summaries, and reports for all audiences.
- Analytical skills: Stays focused on main issues, prevents irrelevant issues or distractions from interfering with timely completion of assignments. Collects, research and complements data; Synthesizes complex or diverse information. Demonstrates attention to detail; Applies design principles; Generate creative solutions. Strong quantitative, research and analytical skills. Experience with data analysis, persuasive and informative writing, workload management, and process management.
Knowledge, Skills, and Abilities (KSA'S)
- Problem Solving: Identifies and resolves problems in a timely manner; Develops alternative solutions.
- Project Management: Ability to prioritize and work with multiple projects and tasks with minimum supervision; self-direct and task switch between strategic and tactical initiatives regularly. Capacity to achieve results according to plan ensuring the expected quality. Excellent organization capacity to define priorities, meet deadlines, and flexible to change. Knowledge on project coordination, identification of business needs, work plan, budget control, time management, resource allocation, team management and status reports. Must demonstrate leadership, logic, and reasoning skills.
- Operational/Regulations Processes: Knowledge on budget administration, resources allocation, organization’s policies, and regulations. Ability to establish, conduct and track operational processes properly.
- Computer and Technological Skills: Proficient in MS Office 365. Experience with data management tools such as Power Pivot, Power BI, among others is desired. Ability to achieve results by providing innovative ways of working with operational and technological considerations. Knowledge of computer flow charts and programming logic and codes
Region Locations
Puerto Rico, Florida or North Carolina.
Work Schedule
Hybrid or Remote
Values
Additional Requirements
The information provided here is only a general guide as to the nature of the position and does not constitute an exact description of the goals, tasks, duties, and responsibilities of the position. The specific details of each position are described in the employee’s objectives within the performance evaluation.
Important: The candidate must provide evidence of academic preparation or courses related to the job posting, if necessary.
If you have a disability and need assistance with the application process, please contact us at asesorialaboral@popular.com. This email inbox is monitored for such types of requests only. All information you provide will be kept confidential and will be used only to the extent required to provide reasonable accommodations. Any other correspondence will not receive a response.
As a leading financial institution in the communities we serve, we reaffirm our commitment to always offer essential financial services and solutions for our customers, including during emergency situations and/or natural disasters. Popular’s employees are considered essential workers, whose role is critical in the continuity of these important services even under such circumstances. By applying to this position, you acknowledge that Popular may require your services during and immediately after any such events.
If you are a California resident, please click here to learn more about your privacy rights.
.
Popular is an Equal Opportunity Employer
Learn more about us at www.popular.com and keep updated with our latest job postings at https://jobs.popular.com/usa/.
Connect with us!
Nearest Major Market: Miami
Job Segment:
Compliance, Law, Data Analyst, Data Management, Legal, Data