Job Description : Job scope / summary : The Security Information Services for Large Platform environment are intended to ensure the availability, integrity and confidentiality of data information by protecting against internal and external threats and inadvertent or malicious actions.
The security team protects the mainframe environment by using tools such as RACF, ACF2 or Top Secret or native tools on AS and Nonstop to grant / remove access and mitigate risks to client systems.
Job specifics / deliverables / accountabilities : Support personnel will have knowledge of access control mechanisms within the supported platforms and related security software.
Validate requests to ensure the requests contain all required data and are authorized by appropriate data owner. Analyze requests and determine course of action, based on existing corporate and client policies and procedures.
Evaluate security impacts and resolve related issues. Validate changes to ensure accuracy and completeness from a security perspective.
Enforce process controls. Raise, follow up on approval, and implement normal / emergency changes based on valid requests and approvals.
Perform and review dataset and resource rules re-organization, based on appropriate approvals. Run reports as defined and installed.
Ensure jobs are generating reports as requested. Audit support may be requested through standard processes from multiple sources, and includes providing global documentation, reports, etc.
Requirements are usually based on the Service Organization Controls (SOC) Framework of the American Institute of Certified Public Accounts (AICPA), and Payment Card Industry (PCI) activities.
Provide technical security support, security administration, compliance and incident management in support of the following : Support password resets which could not be addressed by Level 1.
Add / Change / Delete User ID, logins, groups, profiles, access, resource and tasks. First point of contact for audit support.
Support incident and problem management as required. Maintain resource and data ownership tables for use in validating approvals.
Basic Audit responses Audit reporting review per client request for our supported platforms and tools used in various regions, including, for example, Global Compliance Management System (GCMS), the Network Access Control Online System (NACOS), and Report Distribution System (RDS).
Disaster recovery planning and exercise support, as required of the Level 2 team(s). This is dependent on the client as this can be a function between L2 or L3.
Peer Level 2 or Level 3 teams globally; Account teams, Account security officers; ESIS audit teams External : Clients to a limited degree Education (degree) and professional experience required : 1+ year of Working Knowledge of Mainframe / AS / Nonstop experience Requirements : Fluent in English written and verbal, Portuguese will be ideal to have Microsoft Office experience specially Word and Excel.
Understanding of mainframe functions 1 year of experience in Mainframe RACF, ACF2 and / or Top Secret and AS as well as AS / Nonstop Researching and providing evidence for Audit compliance Personal skills and qualities : Time management Professional business acumen Self-driven