Role – Business Analyst (IT

Location- New York, NY
Type – Full time


are looking for a Business Analyst who is experienced in designing and
documenting processes and procedures in support of IT Security/ Information
Security programs.  The ideal candidate
will have experience in designing processes / procedures that rely on SIEM type
technologies in order to detect patterns of activity that require further
analysis or escalation. 


position will NOT require installation / configuration of SIEM / DLP / Threat
Feed & amalgamation technologies but will instead focus on the broader
design issues:  Developing escalation
scenarios for  certain “triggers” or
“event correlations” (ex: an employee suddenly is sending massive amounts of
data to an external host) that indicate possible Insider Threats (ex:
disclosure of data).


color:  The candidate will be supporting
the Security Incident Response function on building out escalation processes
around the Insider Threat Program, e.g. Identifying staff doing bad things such
as abuse of privileged access, as well as general support of the day to day
operational review function.


we would like a candidate who has specifically designed scenarios / processes /
triage procedures / pattern analysis triggers. The major difference is that
instead of developing scenarios for external Threats, the focus will be on
developing scenarios to detect internal activity which indicates an Insider


Duties &


Planning duties will include:

  • We are looking for a Business
    Analyst who is experienced in designing and documenting processes and
    procedures in support of IT Security/ Information Security programs

  • Responding to Security Events

  • Operational Role

  • Scanning fishing messages

  • Visio

  • MPP skills

  • Incident and Ticket
    Management experience

  • Baseline the methodology and

  • Security Architecture
    definition and review

  • Educate the project
    participants in their roles and responsibilities for security

  • Collaborate with other team
    members to facilitate the best recommendation

  • The successful candidate will
    be required to demonstrate they have the ability and experience to contemplate
    Insider Threat scenarios and develop such scenarios into escalation procedures
    and processes to address the risk.

  • Excellent communication /
    writing skills and documenting developed processes, procedures, and scenarios
    in Microsoft Visio is required.  Prior
    experience working in this domain within a highly regulated industry sector
    highly preferred (ex: Finance, Banking, Insurance, Healthcare, Defense /

Skill, Experience &
General information Required:


Requirements:         Preferred: BS in IT
or related field

Experience:                                 Required: 1 –
5 years with Insider Threats and/or traditional SIEM driven Threat Mgt Programs

Experience:                 Required:
Experience with SIEM / DLP technologies

Certifications:             Preferred:
CISSP, CISA, or other relevant Security or SIEM / DLP related certification


Desirable Skills

  • 10+ Years of technology
    design and implantation experience in an IT organization preferably in the
    financial industry.

  • Prior Solution Architecture

  • Excellent written and verbal
    communication skills.

  • Worked in onshore/offshore

  • Demonstration of current
    skills with design tools: UML, Power Designer, or the like.

  • Experience in Identity and
    Access Management (Minimum 2 years of experience)

  • Experience with Object
    Oriented Programming like Java or .Net.

  • Experience with software
    design patterns, unit testing, performance / memory analysis, and n-tier
    service-oriented architecture

  • QSA(Qualified Security
    Assessor) certification/experience

  • CISSP Certification

Capgemini  Financial Services  and its U.S. affiliates are EEO/AA
employers.  Capgemini conducts all employment-related activities without
regard to race, religion, color, national origin, age, sex, marital status,
sexual orientation, gender identity/expression, disability, citizenship status,
genetics, or status as a Vietnam-era, special disabled and other covered
veteran status.


Click the following link for more
information on your rights as an Applicant :

Apply now