Lead Analyst, Information Security


  • Company:
    Ocwen Financial Corporation Ltd
  • Location:
  • Salary:
    negotiable / month
  • Job type:
    Full-Time
  • Posted:
    3 weeks ago
  • Category:
    Financial Services/Stockbroking

Skill: information technology , cobit , snmp , voip , cisa , server security , vulnerability , security audit , security , cyber security , information security , iso 27001 , written communication , bia; Exp: 2-5 years; Ocwen is intensely focused on hiring, developing and retaining the best talent in the industry! Our commitment to Diversity & Inclusion ensures that we are an organization that creates, promotes and sustains an inclusive work environment in which diversity, inclusiveness and respect are integral parts of our culture and work environment. Building the reputation as an outstanding place to work, a great business partner and a valued community member is our everyday endeavor. Ocwen’s mission is to delight our customers through caring service and innovative lending solutions. We proudly serve over 1.3 million families with their mortgage needs by helping to find real solutions that benefit our customers and help to build stronger communities. Helping Homeowners is What We Do! Consider an opportunity to join our global team and put “Caring in Action” while growing your career. Functions Plan and execute vendor IT and Security audit programs and third-party reviews, in-line with Ocwen’s risk management policies Recommends information security policies and procedures for vendor remediation plans Performs security reviews, evaluations, risk assessments, and monitoring on a regular basis to ensure exceptions and violations are identified and addressed during desktop and onsite audits Recommend appropriate corrective actions and remediation plans for risks identified in network and application reviews Consolidate and communicate vendor audit results to senior management Assist in developing the implementation of risk mitigation measures Analyze complex contractual, regulatory and licensing issues related to third-party relationships and assist in monitoring contract compliance Develop governance elements of outsourcing relationships, including problem and dispute management; performance management and quality assurance Create and manage multiple dashboard reporting mechanisms to facilitate improved communication and to allow for measurement of progress between senior management and its specific vendors as well as internal business leadership Create and manage the information security opinions to ensure due diligence and recommend approaches for IT audits, signing of vendor contracts and RFP processes Work with the Information Security Department to ensure security opinions are in-line with Ocwen’s risk management and information security policies Qualifications 2-4 years of progressive experience in one or more of the following internal/external IT and business process auditing, sourcing advisory, vendor management roles with 2 years’ experience in either auditing or sourcing Extensive experience in Information Security and/or BCP/DR with an audit perspective Extensive experience with the latest regulatory, compliance, information technology and security policies, standards and procedures such as GLBA, SOX, ISO27000 Standards, CoBiT, COSO, FFIEC, etc. Bachelor’s degree from an accredited college/university, preferably in management, accounting/auditing, information security technology or operations Preferred Certifications Certified Information Systems Auditor (CISA) or ISO 27001 2013 LA Demonstrated experience in conducting vendor assessments, and risk reviews Demonstrated experience in a multi-vendor environment and Project Management role preferred Experience with security related protocols such as SNMP, HTTP, Web Services Network security experience with Firewalls, Routers, Switches, VPN, VOIP, etc., preferred Server security experience with hardening, vulnerability assessments, patch management preferred Cloud computing and/or cyber security experience preferred Experience with access control gateways, role management, multifactor authentication and directory services Knowledge and understanding of current DR planning techniques, industry standards and methodologies including BIA process, risk analysis procedures and RTO/RPO measurements preferred Excellent organizational, skills, detail oriented, logical, and systematic with the ability to multi-task and drive projects to successful conclusion; must be able to gather and interpret relevant information; must have experience presenting conclusions in a clear and concise manner; with ability to work in a high value and strict deadline environment Demonstrated track record of leadership, collaboration skills, and project management Strong proficiency in Microsoft Office applications MS Excel, Word, PowerPoint) with a general understanding of data analysis techniques Excellent verbal and written communication skills with a demonstrated ability to build and maintain relationships within the organization

System Security

Degree: ME/ M.Tech./ MS (Engg/ Sciences)

Experience: 2-5

Function: IT Software : Software Products & Services