You will have the opportunity to do more infrastructure related activities (windows administration, network configuration, application support, etc). You will also be working alongside a DBA to help support his needs.
The Information Security Business Analyst must be proficient at requirements management including eliciting requirements, simplifying requirements, and assisting in the translation of business requirements into technical security solutions.
Elicit requirements using interviews, document analysis, requirements workshops, surveys, site visits, business process descriptions, use cases, scenarios, business analysis, task and workflow analysis.
Participates in structured walk throughs and technical reviews.Ensures that application coding and design follows secure coding and design principles.Takes a small request completely through the business and technical design.This job profile is not meant to be all inclusive of the responsibilities of this position; may perform other duties as assigned or required.
Must be able to effectively analyze application security reports to identify application security risk as well as interpret scope/breadth/depth of assessments performed as compared with application demos received.
You will be given the opportunity to take on significant responsibility and develop your technical and business skills with one of the most respected companies in Chicago and in the global financial services industry.
In this role, the selected candidate must have an experience reviewing security design / architecture for security controls; in depth knowledge of software application security practices and tools and software assurance (white box testing).
Working as the sole Business Improvement Analyst and Project Lead, nationally, you will have great responsibility and autonomy working in collaboration with our entrepreneurial, empowering and passionate executive team to create structure.
In this role, you will be responsible for the development of an information architecture strategy that provides improved capabilities for a specific business portfolio or enhances major portions of the existing information processing and delivery environment.