hero



Security Advisor

Federal Reserve Bank of Minneapolis

Federal Reserve Bank of Minneapolis

Boston, MA, USA
Posted on Friday, May 10, 2024

Company

Federal Reserve Bank of BostonAs an employee of the Boston Fed, you will work to promote sound growth and financial stability in New England and the nation. You will contribute to communities, the region, and the nation by conducting economic research, participating in monetary policy-making, supervising certain financial institutions, providing financial services and payments, playing a leadership role in the payments industry, and supporting economic well-being in communities through a variety of efforts. The Boston Fed is one of 12 Reserve Banks and we serve all or parts of Connecticut, Maine, Massachusetts, New Hampshire, Rhode Island, and Vermont. Our mission is accomplished through our Bank's values: diversity, equity and inclusion, innovation, integrity, and leadership.

This job is eligible for a hybrid schedule with some on-site work expected. The individual is excepted to reside in the 1st District unless you were given an exception.

Security Advisors provide support for and analysis of security protections to ensure risks as appropriated managed. Success in this role is shown by ongoing accumulation of knowledge and experience with regards to the processes of risk management, and the techniques used to manage and analyze the state of security within the Federal Reserve System. They are expected to solve challenges but may require managerial support and technical review from more senior members of the team. They are expected to be self-motivated and capable of independent work with occasional constant supervision. Risk engineers are focused on the risks and remediations required to address the evolving state of threat and changing business needs of the Federal Reserve System and the entities that depend upon it. They are expected to combine hands on technical skills with sound judgment and a drive to research. The job requires both technical know-how and the ability to develop research techniques and follow up on detected anomalies.

Must be able to provide technical contributions in the work of improving and reviewing the security protections provided to the Federal Reserve system.

Work includes:

  • Requirements clarification and research for the development of new security controls based on extant risk and business needs;

  • Development and improvement of solutions, services, technologies, and processes to enhance risk management;

  • Participation in implementation and deployment activities as they pertain to security controls and improvements to current protections;

  • Analysis of gaps within the FRS, particularly with respect to how the existing infrastructure reduces or exacerbates these gaps;

  • Clarifies and researches new developments and security threats in information systems technology in coordination with senior members of the technical staff.

  • Able to perform risk analysis and remediation, including: Enacting industry best practices in risk and remediation principles and practices; Support to and completion of research projects in the area of risk analysis and/or risk remediation under the direction of senior members of the technical staff; Implementation of risk remediation; Data analysis and visualization as it pertains to the security stance of the system in its current state; Supports efforts that lead to improvements in processes relating to risk management;

  • Works with other engineers to address the common challenges and impediments of operational support

  • Works as a member of the technical team providing technical contributions, the Risk Engineer must be able to: Communicate in written and/or verbal communication; Able to follow through in communication with customers and lines of business on an as needed basis.

  • As a risk engineer, must be willing to: Participate in an on-call rotation. After hours and weekend work may be required in order to perform tasks and maintenance that cannot be done during business hours; Contribute to obligations to meet Service Level Agreements (SLA)s

  • Perform other duties as assigned.

This position is not required to directly supervise others.

Knowledge and experience normally acquired through, or equivalent to, the completion of a Bachelor’s degree and a minimum of 1 year of job related experience.

Position requires prior knowledge of and experience with risk management. CISSP certification is preferred but not required.

The Federal Reserve Bank of Boston is committed to a diverse and inclusive workplace and to provide equal employment opportunities to all persons without regard to race, color, religion, national origin, sex, sexual orientation, gender identity, age, genetic information, disability, or military service.

May be required to obtain a US Security Clearance. All employees assigned to this position will be subject to FBI fingerprint/ criminal background and Patriot Act/ Office of Foreign Assets Control (OFAC) watch list checks at least once every five years.

The above statements are intended to describe the general nature and level of work required of this position. They are not intended to be an exhaustive list of all duties, responsibilities or skills associated with this position or the personnel so classified. While this job description is intended to be an accurate reflection of this position, management reserves the right to revise this or any job description at its discretion at any time.

Full Time / Part Time

Full time

Regular / Temporary

Regular

Job Exempt (Yes / No)

Yes

Job Category

Work Shift

First (United States of America)

The Federal Reserve Banks believe that diversity and inclusion among our employees is critical to our success as an organization, and we seek to recruit, develop and retain the most talented people from a diverse candidate pool. The Federal Reserve Banks are committed to equal employment opportunity for employees and job applicants in compliance with applicable law and to an environment where employees are valued for their differences.

Privacy Notice