Lead Security Analyst - IAM
BM Technologies, Inc.
Malvern, pennsylvania
Job Details
Full-time
Full Job Description
BMTX Overview
BM Technologies, Inc. (NYSE American: BMTX) - formerly known as BankMobile - is among the largest Banking-as-a-Service (BaaS) providers in the country, providing access to checking and savings accounts, personal loans, credit cards, and financial wellness. It is focused on technology, innovation, easy-to-use products, and education with the mission to financially empower millions of Americans by providing a more affordable, transparent, and consumer-friendly banking experience. BM Technologies, Inc. is a technology company and is not a bank, which means it provides banking services through its partner bank. More information can be found at www.bmtx.com.
Our Mission
We are on a mission to financially empower millions of Americans by providing a more affordable, transparent, and consumer-friendly banking experience. And we are passionate about having fun while making an impact!
Overview:
We are looking for a highly organized and detail-oriented Lead Information Security Analyst to help oversee identity & access management initiatives for the Information Security Program. This individual will be responsible for managing user access reviews and remedial actions needed for access and identity management across multiple systems.
The ideal candidate will have a solid understanding of identity and access management processes, policies, and procedures. They will have experience with identity and access management tools and services such as Access Auditor and Azure Cloud Security. The right candidate must work independently and proactively to ensure the security of data and systems. The candidate will be able to work in a fast-paced environment, possess excellent communication and customer service skills, and be able to adapt quickly to changing requirements. Must have a passion for technology and security and want to be part of a team that values innovation and excellence.
Responsibilities:
- Oversee, manage, and help mature identity and access management for the information security program.
- Lead or participate in user access reviews and remedial actions.
- Utilize subject matter knowledge in industry leading security solutions and best practices to implement, manage, and mature identity and access management for the organization.
- Identify security threats and issues, perform risk assessments, and help drive/oversee remediation efforts.
- Collaborate and consult with peers, colleagues, and managers to resolve issues and achieve goals.
- Provide updates to leadership on current risk posture.
- Manage the identity and access management policy enforcement and identity and access management operations.
- Stay current on information security trends. Analyze threats and current security controls to identify gaps. Propose mitigation strategies to reduce risk to acceptable levels.
- Represent Information Security on projects.
Skills:
- 5+ years of identity and access management experience overseeing processes, policies, and procedures in the financial services and or financial technology sector including
- 3+ years of demonstrated experience performing user access reviews and remedial steps needed in compliance with the enterprise Information Security programs and controls.
- 3+ years of Azure Cloud Security administration experience.
- 2+ years of successful project management experience.
Qualifications:
- Must have experience with identity and access management tools or services such as Access Auditor, and Azure Cloud Security.
- Experience with overseeing and managing user access reviews for complex financial systems and applications.
- Demonstrated understanding of Microsoft security technologies and strategy.
- Knowledge of security standards and guidelines including NIST, CIS, and FFIEC.
- Ability to conduct risk assessments, audits, and reviews.
- Demonstrated ability to work well on collaborative, cross-functional teams. Solid interpersonal skills with ability to work effectively with people of all levels of information technology expertise with a wide range of constituencies and organizational relationships.
- Excellent analytical and data gathering skills.
- Must be able to work independently and proactively to ensure the security of data and systems.
- The successful candidate will be able to work in a fast-paced environment, possess excellent communication and customer service skills, and be able to adapt quickly to changing requirements.
- Excellent communication skills; interpersonal; organizational and analytical skills, written and verbal communications, experience with management presentations.
- Bachelor's degree in Computer Science, Engineering, Cybersecurity, or related discipline.
- CISSP, CISA, Azure Security Engineer, or similar industry certifications highly preferred.