Lead, Information Security - Governance & Controls

Requirements

• Certified Information Systems Security Professional (CISSP)
• Cloud security certifications (AWS or Azure)
• (GSEC) (GIAC Security Essentials)
• (GWEB) Certified Web Application Defender
• You'll Love Working Here Because You Can

Additional Information

Job Classification: Technology - Information Security Are you interested in building capabilities that enable the organization with innovation, speed, agility, scalability and efficiency? The Global Technology team takes great pride in our culture where digital transformation is built into our DNA! When you join our organization at Prudential, you'll unlock an exciting and impactful career - all while growing your skills and advancing your profession at one of the world's leading financial services institutions. Your Team & Role As a Lead, Information Security Operations in Network Security Governance & Standards, with a focus on firewall access management, you will execute; request triage, risk treatment and application of compensating controls. You will partner with other security professionals to strengthen the security of company data and assets by applying information and network security knowledge, mitigating controls, and lifecycle tracking. You will explain difficult concepts and influence others when describing risk, compensating controls in the service decision making process. You will work on extremely complex problems in which analysis of situations or data requires an evaluation of risk and controls. In addition to advanced technical expertise and experience, you will bring excellent problem solving, communication and teamwork experience guiding the team in risk evaluation and exception triage results. In an evolving process maturity, coach team members in agile process and ceremonies. Along with agile ways of working, strong business insight, an inclusive leadership attitude and a continuous learning focus to all that you do. Here is What You Can Expect on a Typical Day Perform highly complex project and operational work, evaluating secure architecture against security requirements for assigned solutions and processes under the guidance of senior team members. Provide guidance to junior team members. Leverage knowledge of business and security systems/processes to identify risk and build strong / antifragile Information Security capabilities and improve tooling/processes to address these risks. Lead service delivery execution and guide junior team members in risk triage and exception processing, while partnering effectively with non-technical security advisors. Maintain service catalog documentation, standard operating procedures, and stakeholder communication artifacts (e.g., security briefs, one-pagers) that articulate service expectations, intake requirements, and governance principles to Security Advisors and cross functional teams. Coordinate cross functional teams in geographically disperse locations to execute daily service delivery operations for the network security request - including intake triage, risk assessment, and service delivery - while aligning to governance standards and escalating appropriately. Ability to understand, measure and manage a services capacity vs. demand and the ability to prioritize work and when necessary, roll up your sleeves As a person, you intrinsically enjoy diving into complex technical network security and cloud/infrastructure architecture problems with an antifragile mindset The Skills & Expertise You Bring Bachelor of Computer Science or Engineering or experience in related fields Ability to manage your work and maintain priority focus with minimal guidance and effectively leverage diverse ideas, experiences and perspectives to the benefit of the organization Experience with agile development methodologies Knowledge of business concepts and information security tools and processes that are needed for making sound decisions in the context of the company's business Ability to learn new skills and knowledge on an on-going basis through self-initiative and tackling challenges Excellent problem solving, communication and collaboration skills Advanced experience and/or expertise with several of the following: NIST and ISO 27000 Standards Information Security Control Standards and Engineering Specifications Identity and Access Management specifically Microsoft Entra ID (Azure AD) group management and Zscaler ZTA onboarding workflows Working knowledge of edge infrastructure including firewalls, WAF's, proxy, advanced bot protection services to name a few. Experience with Zero Trust concepts and Zero Trust Network Access (ZTNA) International team collaboration, cross functional workflow execution

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at pru? Share your experience