Apply Now

Senior Technical Risk Management Specialist

Rocky Hill, CT, USA Req #91
Wednesday, August 28, 2019
Who we are...
COCC delivers complete enterprise processing solutions to financial institutions throughout the northeastern United States. Listed among American Banker's FinTech 100 and the Inc. 5,000 fastest growing companies in the nation, COCC inspires the industry with innovation and top quality support. Designated as a Top Workplace in Connecticut, COCC recognizes employees as the core of our success! COCC offers a progressive training program to support employees in personal and professional development. 

What we need…

A Senior Technical Risk Management Specialist to perform regular and on-going reviews of COCC’s systems to ensure compliance with general expectations of internal and external audit entities. The senior role is expected to train and mentor junior staff in COCC’s processes and procedures, as well as guidance.

What’s in it for you…

 

  • A flexible schedule that helps you balance work and life
  • Generous PTO benefits start at a permanent 20 hour/week schedule
  • Full time benefits start at permanent 30 hour/week schedule and include:
    • A robust employee training and development program
    • Generous PTO offering as well as competitive pay and benefits
    • On-site fitness center
    • Tuition Reimbursement
    • One on one career coaching
    • Financial planning assistance with certified professionals
    • Fun employee events such as company outings, trivia, sports leagues, wellness events
    • Peer recognition program

 

What you’ll do…

 

  • Identify control weaknesses, regulatory compliance issues, and potential areas of risk for all segments of the data processing and information technology business
  • Conduct reviews of selected systems within COCC to ensure the proper configuration by inspecting settings, configuration files and related material
  • Develop reports for management regarding system compliance with standards
  • Assist in gathering data requested or regulatory exams, internal audits, and external security reviews
  • Worth with internal audit to facilitate the SOC and other audit engagements
  • Assist in the execution of the corporate vendor management program by periodically conducting site visits to key vendors
  • Maintain current knowledge of applicable federal and state banking regulations as they relate to information security, risk assessment and privacy
  • Perform system log reviews as necessary for selected platforms
    • Firewall configuration reviews
    • Web application reviews
    • Windows/AIX/Linus system log reviews
    • Database activity reviews
    • Host-based and network-based intrusion detection system reviews
    • Router configuration reviews
    • Policy compliance reviews to ensure systems meeting defined standards
    • Physical Access security reviews
    • Assessment of system patch status

 

What you’ll bring…

 

  • Bachelor’s degree required, IT preferred or commensurate experience
  • 4 to 6 years’ experience in computing or computer security, including experience with basic Internet technology and security issues
  • Security certification (security+, GSEC, etc.) required
  • Proven track record as a member of a technical team
  • Ability to communicate effectively with all levels of staff and management both verbally and in writing
  • Ability to communicate technical and security- related concepts to a broad range of technical and non-technical staff
  • Ability to perform and prioritize effectively in a highly dynamic work environment
  • Solid working knowledge of Windows, Linux, AIX, IDS/IPS, firewalls, routers, switched, Oracle and SQL databases
  • General knowledge of FFIEC guidelines and regulations required
  • General knowledge of Governance, Risk and Compliance requirements for the business
  • Strong working knowledge of Microsoft Excel
  • Ability to understand and create SQL queries
  • Strong understanding of networking concepts, vulnerability management, and present day security technologies and practices
  • Ability to learn the operation of new software applications
  • Experience with Crystal Reports a plus
COCC is committed to maintaining a drug-free workplace. All applicants are required to pass a credit, background, and substance test prior to employment. COCC procures background and consumer reports in compliance with all Federal and State regulations, including The Fair Credit Reporting Act and CT Department of Labor laws regarding pre-employment screens. COCC is an equal opportunity employer; committed to a community of inclusion, and an environment free from discrimination, harassment, and retaliation.  
  • Rocky Hill, CT, USA