| Job Description: |
IT Risk, in close partnership with all parts of the firm, enables business solutions while protecting the bank through identification and mitigation of IT risks, creating a balanced control environment.
The IT Risk Division consists of four key regional teams:
1.Europe (excluding Switzerland)
2.Switzerland
3.Americas
4.Asia-Pacific
The main business units of Credit Suisse are Investment Banking, Private Banking and Asset Management.
IT RISK in EMEA provides a number of services for its clients. The department is acting as risk partner for each division.
Planning & Assessment
•Relationship management within the regions
•Risk Profile for Functional Areas (FA)
•Conduct risk assessments and metrics tracking to assist clients in evaluating risks
•Understanding and managing risk appetites and risk profiles
Response & Mitigation
•CERT - CS Emergency Response Team
•Managing risk reduction initiatives
•Provision and coordination of training and awareness
Oversight
•Risk Governance Reporting
•Control Assurance
•Audit & Regulatory support
•Industry liaison
•Using established methodologies, conduct technical reviews and penetration testing activities of infrastructure projects e.g. technical risk assessments of workstation and server build platforms, database, virtualisation technologies.
•Develop close relationships with various IT Infrastructure groups in EMEA
•Assist other teams in the IT Risk organisation with technical reviews of business application systems and provide guidance as a subject matter expert for infrastructure components.
•Provide Ad-hoc consultancy for risks of new technologies coming up with potential solutions.
Qualifications:
•Degree in a scientific, computing, mathematical or engineering degree or equivalent experience.
•Professional certifications in key technologies (e.g. CISSP/CCNA/CCSE/etc)
•Previous experience of undertaking risk assessments of complex solutions
•Previous Banking or Consultancy work experience
•Ability to work under pressure
•Strong client focus
•Have a deep understanding of technology risks related to cross border access.
•Previous experience in all stages of Project Life Cycle
•Strong knowledge of penetration testing tools and techniques of application and infrastructure components.
•Strong knowledge of network topologies, logical access controls and firewalls technologies.
•Strong knowledge of operating systems (Wintel, Solaris and Linux)
•Financial services knowledge.
•Having experience in identifying zero day exploits
•Having experience in designing multiforest Active Directory domains
•Programming experience (ASP, PHP, C#, etc)
•Experience in conducting risk assessments of third party vendors
As one of the world's leading banks, Credit Suisse provides its clients with investment banking, private banking and asset management services worldwide. Founded in 1856, Credit Suisse has a long tradition of meeting the complex financial needs of a wide range of clients, offering advisory services, comprehensive solutions and innovative products to companies, institutional clients and high-net-worth private clients globally, as well as retail clients in Switzerland. Credit Suisse is active in over 50 countries and employs approximately 40,000 people. Further information can be found at www.credit-suisse.com.
Cultural diversity is essential to our success. As such, we employ people from more than 100 countries. Credit Suisse empowers employees to work openly and respectfully with each other and with clients, ultimately striving to deliver superior results while offering initiatives and programs to assist employees
|
