Information Security/Cloud Vulnerability Management Associate

Job Expired

Full Job Description


Federal Reserve Bank of New York Working at the Federal Reserve Bank of New York positions you at the center of the financial world with a unique perspective on national and international markets and economies. You will work in an environment with a diverse group of experienced professionals to foster and support the safety, soundness, and vitality of our economic and financial systems.

This position will offer workplace flexibility e.g. working remotely or on site as needed/ desired during the week. Employees can expect to be in the office weekly as needed for meetings and team collaboration and should live within a commutable distance. The Bank believes in work flexibility to balance the demands of work and life while also connecting and collaborating with our colleagues in person a couple days a week.

What we do:
Information Security New York (ISNY) is responsible for developing, executing, and maintaining a superior information security program that promotes resiliency by identifying and mitigating cyber risks and threats through risk-based consultation, advice, and direction for controls, designs, and investments for the entire Bank.
What we are looking for:
  • Experience in vulnerability management with some experience in cloud vulnerability management.
  • Bachelor’s degree required in business, technology, information security or related fields or equivalent work experience.
  • Knowledge of foundational security controls (Example: CIS 20 security controls) and how they protect an enterprise environment.
  • Proven ability to clearly communicate information and cyber security to non-technical audiences.
  • Demonstrated experience with the application of security concepts and methodologies in the cloud computing space – such as vulnerability assessments, enterprise security strategies, network, and cloud security.
  • Knowledge of security frameworks such as CIS, NIST, ISO, PCI, and IT Controls.
  • Experience with vulnerability scanning tools (e.g., Tenable, Prisma, etc.)
  • Knowledge of CVE’s CVSS, attack vectors, and mitigations
  • Experience generating vulnerability management metrics (KRI/KPI) for various audiences.
  • Ability to analyze and create cybersecurity documentation, including security policies, plans, and procedures.
Preferred Skills
  • Experience in working in the financial sector or a regulated environment.
  • CCSP, AWS security certifications (or to be working towards one or more of these certifications), or equivalent work experience.
  • Strong knowledge of Excel, Word, and PowerPoint
  • Experience w/ Governance Risk & Compliance (GRC) tools
  • Experience w/ using Splunk.
  • Experience w/ Tableau or Tableau content creation
  • Scripting (Python, PowerShell) experience
Salary Range: $129600-$162000
We believe in transparency at the NY Fed. This salary range reflects a variety of skills and experiences candidates may bring to the job. We pay individuals along this range based on their unique backgrounds. Whether you’re stretching into the job or are a more seasoned candidate, we aim to pay competitively for your contributions.
Touchstone Behaviors set clear expectations for leading with impact at every stage of our careers and aspire to achieve in our continued growth and development.
Communicate Authentically: Empathetically engage one another with direct and transparent dialogue and listening. Actively discuss viewpoints with respect and compassion in a timely and candid manner, taking into account verbal and nonverbal cues. Ask questions, learn from each other, and share information widely to move the Bank’s work forward.
Collaborate Inclusively: Inspire a diverse and inclusive environment that empowers others to contribute meaningfully. Intentionally bring a diverse set of people together to achieve positive business results.
Drive Progress: Grow and adapt to changing priorities in the Bank. Experiment with new concepts and take appropriate risk to drive innovation. Remain curious and action oriented, navigating through ambiguity and uncertainty to drive outcomes.
Develop Others: Equitably champion, mentor, and develop others to grow professionally. Demonstrate vulnerability and empathy to create a trusted environment.
Take Ownership: Establish an environment of action and excellence by holding self and others accountable to execute to the highest standard.
Our organization offers benefits that are the best fit for you at every stage of your career:
  • Fully paid Pension plan and 401k with Generous Match
  • Comprehensive Insurance Plans (Medical, Dental and Vision including Flexible Spending Accounts and HSA)
  • Subsidized Public Transportation Program
  • Tuition Assistance Program
  • Onsite Fitness & Wellness Center
  • And

The Federal Reserve Bank of New York is committed to a diverse workforce and to providing equal employment opportunity to all persons without regard to race, color, religion, national origin, sex, sexual orientation, gender identity, age, genetic information, disability, or military service.
Candidates must undergo an enhanced background check and will be tested for all controlled substances prohibited by federal law, to include marijuana.
This is not necessarily an exhaustive list of all responsibilities, duties, performance standards or requirements, efforts, skills or working conditions associated with the job. While this is intended to be an accurate reflection of the current job, management reserves the right to revise the job or to require that other or different tasks be performed when circumstances change.
Full Time / Part Time

Full time

Regular / Temporary


Job Exempt (Yes / No)


Job Category

Information Technology

Work Shift

First (United States of America)

The Federal Reserve Banks believe that diversity and inclusion among our employees is critical to our success as an organization, and we seek to recruit, develop and retain the most talented people from a diverse candidate pool. The Federal Reserve Banks are committed to equal employment opportunity for employees and job applicants in compliance with applicable law and to an environment where employees are valued for their differences.
Privacy Notice

More Information

  • This job has expired!

Leave your thoughts

12th Anniversary Top InfoSec Innovator & Black Unicorn Awards for 2024 are now Open! Finalists Notified Before BlackHat USA 2024...