InvestEdge

  • Director of Informational Security

    Posted Date 2 weeks ago(6/4/2018 5:05 PM)
    ID
    2018-1033
    # of Openings
    1
    Job Locations
    US-PA-Bala Cynwyd
    Category
    Information Technology
  • Overview

    Company Profile:

    InvestEdge is a leading provider of innovative advisor solutions to financial institutions. Our integrated solutions provide a breadth of tools that simplify complicated wealth management processes and reduce overall operational risk. Using the integrated solutions automates key front office functions like easy-to-use portfolio management, trading/rebalancing, performance measurement, reporting, compliance/fiduciary monitoring, and data aggregation tools. Through MMxCHANGE, we provide a marketplace of investment products for wealth management firms.

     

    Position Summary

    Direct/Manage/Supervise information security management program to meet the strategic goals of the organization while complying with all applicable laws and standards.

    Responsibilities

    • Develop and implement business plans, policies and procedures to maintain systems, network, database and/or Web security.
    • Oversee the development, implementation, and maintenance of information security, including access management, vulnerability assessments, penetration testing, infrastructure, Vendor management, and regulatory compliance.
    • Manage reporting, investigation, and resolution of data security incidents.
    • Analyze business needs and oversee security architecture, administration, and policy planning to lessen possibility of security breach.
    • Develop and administer Information security policy for supplier relationships to include: Monitoring and review of supplier services and contracts,  new vendor reviews, risk profiles and assessments, and Managing changes to supplier services
    • Provide guidance and direction on best practices for the protection of information.
    • Ensure compliance with regulations and privacy laws.
    • May oversee internal or external systems security (e.g., cloud services). 
    • Monitor, evaluate, and maintain systems and procedures to safeguard internal information systems, network, databases, and Web-based security.
    • Conduct vulnerability assessments and monitor systems, network, databases, and Web for potential system breaches.
    • Respond to alerts from information security tools. Report, investigate and resolve security incidents.
    • Educate and communicate security requirements and procedures to all users and new employees.
    • Recommend and implement changes to enhance systems security and prevent unauthorized access.
    • Research security trends, new methods, and techniques used in unauthorized access of data in order to preemptively eliminate the possibility of system breach.

     

    Qualifications

    • Knowledge of and ability to employ internal controls and to enhance business strategies for the purpose of detecting, correcting and preventing fraudulent activities.
    • Knowledge of and ability to manage the major responsibilities, accountabilities, and organization of the Audit and Compliance (A&C) function or department.
    • Knowledge of approaches, tools, techniques for recognizing, anticipating, and resolving organizational, operational or process problems; ability to apply this knowledge appropriately to diverse situations.
    • Knowledge in network architecture and security controls as well as current and emerging information security threats
    • Familiarity with compliance regulations and security frameworks (SOC, PCI, GDPR, GLBA, COBIT, FINRA, ISO, NIST,)
    • Experience with risk and threat assessment, control auditing, vulnerability analysis, information gathering, correlating and reporting
    • Strong organizational and problem-solving skills with attention to detail
    • Ensure compliance with regulations and privacy laws.

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed