Vice President, Information Security I

Vice President, Information Security I
At BNY, our culture empowers you to grow and succeed. As a leading global financial services company at the center of the world's financial system we touch nearly 20% of the world's investible assets. Every day around the globe, our 50,000+ employees bring the power of their perspective to the table to create solutions with our clients that benefit businesses, communities and people everywhere.    
We continue to be a leader in the industry, awarded as a top home for innovators and for creating an inclusive workplace. Through our unique ideas and talents, together we help make money work for the world. This is what #LifeAtBNY is all about.
We're seeking a future team member for the role ofVice President, Information Security Ito join our Information Security Division. This role is located inChennai, Tamil Nadu– HYBRID. 
The Vulnerability Management Analyst will be responsible for maintaining and executing the comprehensive vulnerability management program in order to mitigate threats posed in the environment. The position will interact with multiple technology stakeholders in order to facilitate the vulnerability management program, as well as assist in the overall execution of the security and compliance portfolio. This analyst will work as an Individual Contributor. 
In this role, you'll make an impact in the following ways: 
Serve as vulnerability management analyst for information systems as primary responsibility
Perform information system security vulnerability scanning to discover and analyze vulnerabilities and characterize risks to networks, operating systems, applications, databases, and other information system components.
Conduct risk-based assessment on security vulnerabilities and determine impact to various IT infrastructures. 
Prioritize risks and drive remediation by outlining and providing advice and solutions to technology owners on effective security controls and counter measures.
Prioritize remediation activities based upon the results of the Enterprise-wide scanning program, Intel Threat advisories, or internal/external audits. 
Engage with stakeholders, to include IT professionals, management, and auditors, to facilitate vulnerability discovery and remediation. 
Communicate security and compliance issues in an effective and appropriate manner 
Recommend appropriate remedial actions to mitigate risks and ensure information systems employ appropriate level of information security controls 
Validate remedial actions and ensure compliance with information security policy and regulatory requirements. 
Stay abreast on new security vulnerabilities and latest advancements in configuration compliance assessments from internal or external threat intelligence sources.  
Contribute to the review of internal processes and activities and assist in identifying potential opportunities for improvement and automation.
Conducts adhoc vulnerability scans if needed and coordinates remediation with appropriate support teams. 
Collaborate with our IT Stakeholders and LOB application owners.

To be successful in this role, we're seeking the following: 
Bachelor's degree in information technology (or related field) with minimum of 8 years' experience 
Possess strong knowledge of various technologies and security topics including operating systems, network security, protocols, application security, infrastructure hardening and security baselines. 
Knowledge of industry standards relating to Vulnerability Management including Common Vulnerabilities and Exposures (CVE), Common Vulnerability Scoring System (CVSS) and Open Web Application Security Project (OWASP) strongly desired.
Practical experience with identifying, analyzing, and communicating cyber threat and    vulnerability information. 
Hold key Cybersecurity Certifications, Security+, CISSP, CEH, SANS etc 
Experience working with cloud technology (Azure, GCP, AWS.)
Strong working knowledge of vulnerability management toolsets (Qualys, Wiz.io, Xray  Jfrog etc.)  
Strong working knowledge of operational baselines hardening
Knowledge of sound, industry-accepted server software support practices and methodologies 
Familiar with International Standards, NIST Special Publications and Cyber Security Frameworks
Experience with assessing vulnerability management programs 
Familiarity with General IT infrastructure and enterprise architecture (e.g., Server, Network, Workstation, Cloud, etc.) 
Familiarization with patching processes and related technologies (e.g. BladeLogic, SCCM) 
Familiarity with enterprise risk management and how cyber threats and vulnerabilities integrate into ERM efforts 
Background and knowledge of general cyber security concepts (e.g. defense-in-depth security architectures, security controls) 
Exemplary verbal and written communication skills (English business fluent spoken and written)  
Demonstrated ability to think strategically and perform detailed, complex analysis and data interpretation  Proven project management experience  
Effective interpersonal skills, out-of-the-box thinking and ability to interface with all levels of staff  
Ability to work under pressure and deal with ambiguous situations
Ability to read and write scripts in various languages. (php, python, ksh, powershell, SQL, and similar)  Experience and proficiency in a various toolsets and best practices.  
Self-motivated and able to work in an independent manner.

At BNY, our culture speaks for itself. Here's a few of our awards: 
America's Most Innovative Companies, Fortune, 2024
World's Most Admired Companies, Fortune 2024
Human Rights Campaign Foundation, Corporate Equality Index, 100% score, 2023-2024
Best Places to Work for Disability Inclusion, Disability: IN – 100% score, 2023-2024
"Most Just Companies", Just Capital and CNBC, 2024
Dow Jones Sustainability Indices, Top performing company for Sustainability, 2024
Bloomberg's Gender Equality Index (GEI), 2023

Our Benefits and Rewards:
BNY offers highly competitive compensation, benefits, and wellbeing programs rooted in a strong culture of excellence and our pay-for-performance philosophy. We provide access to flexible global resources and tools for your life's journey. Focus on your health, foster your personal resilience, and reach your financial goals as a valued member of our team, along with generous paid leaves, including paid volunteer time, that can support you and your family through moments that matter. 

BNY is an Equal Employment Opportunity/Affirmative Action Employer - Underrepresented racial and ethnic groups/Females/Individuals with Disabilities/Protected Veterans.