Job #: 5615

Title: Data Security Analyst


  • New York City, NY
  • Job Type:

  • Contract
    • Anywhere
    • Posted 3 years ago

    ​The Data Security team is part of Cloud Security Architecture, within the Technology and Operational Risk organization. The mission of Cloud Security Architecture is to ensure the confidentiality, integrity, and availability of the Firm’s data, infrastructure, and systems in off-premises environments. This includes teams that define strategy, architecture, and design guidance, consult on identity, authentication, access control, and data protection, conduct security design reviews, and provide strategic vision and the roadmap for cloud security services. The successful candidate will join the Data Security team within the larger Cloud Security Architecture organization. The Data Security team sets the vision and strategy for protection of sensitive information. The team develops policy and technical standards that govern the handling of data and consults with teams internally to develop architectures and designs that meet the requirements for protection of sensitive data. Specific role responsibilities include: -Define firmwide policy and procedure for the protection of data -Write detailed technical guidance for engineers to assist them in implementing adequate data protection controls -Conduct analysis of systems, identify data security-related risks and gaps, and recommend solutions to mitigate risks -Consult with internal stakeholders to help them find solutions to data protection challenges -Characterize risks arising from gaps in data security controls Required Skills: -Strong knowledge of data security tools, processes, and procedures, to include access controls, encryption, data loss prevention, data masking, and tokenization -Knowledge of information security and risk analysis -Demonstrated background in systems architecture, design, and engineering Proven analytical and problem-solving skills -Excellent written and verbal communication skills -Degree in a relevant computing or software development discipline -Comfort with working remotely, with a geographically distributed team Skills Desired: -Experience with cryptographic techniques, public key infrastructure (PKI), certificate lifecycle management, hardware security modules (HSMs) -Knowledge of public cloud security product offerings, particularly data protection offerings -Knowledge of authentication technologies such as OAuth2, OpenID Connect, and SAML 2.0 -Knowledge of Docker and/or other container technologies -Knowledge of Kubernetes and/or other similar workload orchestration technologies -Knowledge of secure coding practices and software development lifecycle processes​


    Your Name*

    Your Email*

    Your Phone*

    Your Message

    Please attach your Resume*