Profiles search
Jay Moniz
Vice President, Information Security Officer at BayCoast Bank
Somerset, MA, United States
Details
Experience:
2019 : Present
BayCoast Bank
Vice President, Information Security Officer
AVP IT Risk Manager at Citizens Bank
2012 : 2019
Citizens Bank
AVP IT Risk Manager
• Performed Assurance reviews on Business Application Controls for the multiple systems. These controls included SOX and GLBA control framework along with PCI compliance for payment related applications.
• Performed and participated in SOX and GLBA assurance testing of network/server infrastructure controls including : UNIX, Virtual Machine, Wintel, Enterprise Storage Services, Citrix and Change Management.
• Performed gap analysis on Technology Service Providers to determine scope and testing plan for 2012 and 2013 team schedule. Gap analysis included all infrastructure, IT security and application controls within the annual testing plan.
• Integrated Risk Control Process Framework of five Technology Service Providers into Primary Risk Program : TSA, IBM, M&IB, TSA and GTS.
• Employed FFIEC, Sarbanes-Oxley, CMR-17 and GLBA regulatory guidelines for financial institutions to Citizens Technology Services Risk Program Framework.
2012 : 2013
Citizens Financial Group/Royal Bank of Scotland
Information Technology Risk and Controls
• Performed Information Technology Audits and Technology Reviews comprising of these topics : Network/computer infrastructure, Core Processing System User Access and Security reviews, Business Continuity/Disaster Recovery plans, Vendor Management Analysis and Business Application Assurance Reviews (these controls included SOX and GLBA control framework along with PCI compliance for payment related applications).
• Performed Client Risk Assessments to determine Information Security Risks
• Employed FFIEC, CISSP, Sarbanes-Oxley, CMR-17 and GLBA guidelines for financial institutions. Including Information Technology Related Policy Reviews (Info Security, Incident Response, Disaster Recovery, etc.).
• Performed internal and external vulnerability scans using Qualys and Nessus tools
2010 : 2011
Sheshunoff Consulting and Solutions
Senior IT Consultant
• Performed Information Technology Audits comprising of these topics : Network/computer infrastructure, Core Processing User Access Security Reviews, SAS reviews, Risk Assessments, Vendor Management Analysis and Business Applications Assurance Reviews (included PCI compliance for payment related applications).
• Serviced and managed engagements within New England client portfolio
• Employed FFIEC, CISSP, Sarbanes-Oxley, CMR-17 and GLBA guidelines for financial institutions. Including Information Technology Related Policy Reviews (Info Security, Incident Response, Disaster Recovery, etc.).
2008 : 2010
Shatswell and MacLeod, PC
Senior Security Specialist
BayCoast Bank
Vice President, Information Security Officer
AVP IT Risk Manager at Citizens Bank
2012 : 2019
Citizens Bank
AVP IT Risk Manager
• Performed Assurance reviews on Business Application Controls for the multiple systems. These controls included SOX and GLBA control framework along with PCI compliance for payment related applications.
• Performed and participated in SOX and GLBA assurance testing of network/server infrastructure controls including : UNIX, Virtual Machine, Wintel, Enterprise Storage Services, Citrix and Change Management.
• Performed gap analysis on Technology Service Providers to determine scope and testing plan for 2012 and 2013 team schedule. Gap analysis included all infrastructure, IT security and application controls within the annual testing plan.
• Integrated Risk Control Process Framework of five Technology Service Providers into Primary Risk Program : TSA, IBM, M&IB, TSA and GTS.
• Employed FFIEC, Sarbanes-Oxley, CMR-17 and GLBA regulatory guidelines for financial institutions to Citizens Technology Services Risk Program Framework.
2012 : 2013
Citizens Financial Group/Royal Bank of Scotland
Information Technology Risk and Controls
• Performed Information Technology Audits and Technology Reviews comprising of these topics : Network/computer infrastructure, Core Processing System User Access and Security reviews, Business Continuity/Disaster Recovery plans, Vendor Management Analysis and Business Application Assurance Reviews (these controls included SOX and GLBA control framework along with PCI compliance for payment related applications).
• Performed Client Risk Assessments to determine Information Security Risks
• Employed FFIEC, CISSP, Sarbanes-Oxley, CMR-17 and GLBA guidelines for financial institutions. Including Information Technology Related Policy Reviews (Info Security, Incident Response, Disaster Recovery, etc.).
• Performed internal and external vulnerability scans using Qualys and Nessus tools
2010 : 2011
Sheshunoff Consulting and Solutions
Senior IT Consultant
• Performed Information Technology Audits comprising of these topics : Network/computer infrastructure, Core Processing User Access Security Reviews, SAS reviews, Risk Assessments, Vendor Management Analysis and Business Applications Assurance Reviews (included PCI compliance for payment related applications).
• Serviced and managed engagements within New England client portfolio
• Employed FFIEC, CISSP, Sarbanes-Oxley, CMR-17 and GLBA guidelines for financial institutions. Including Information Technology Related Policy Reviews (Info Security, Incident Response, Disaster Recovery, etc.).
2008 : 2010
Shatswell and MacLeod, PC
Senior Security Specialist
Company:
BayCoast Bank
About
Seeking opportunity to utilize my diverse Information Technology Audit and Security background and demonstrate my dedication, determination and resourcefulness.
Profile Photo
