Cyber Incident Response Manager
About The Position
The Business Continuity and Disaster Recovery (“BC/DR”) team is a team within the Protect Pillar in Systems. The Protect Pillar is a unique BBH-construct designed for clear, centralized and coordinated accountability: to protect against physical and logical security risks; to safeguard stakeholder assets; and to detect, prepare for, and respond effectively to security events. To that end, the Protect Pillar encompasses the following areas: Business Continuity and Disaster Recovery Cybersecurity; Enterprise Data Protection and Data Governance; Global Security; and Information Security Management (“ISM”). Given that technology is an integral component of the Pillar’s control measures and a key asset to safeguard, the Protect Pillar sits within BBH’s Systems organization. Reporting to the Governance head within the Cybersecurity Team, we are seeking an experienced Cyber Incident Response Manager to lead and enhance our cyber incident response program.
Requirements
- Minimum 8+ years of experience in cyber security and incident management, preferably within financial services
- Strong understanding of cyber incident response frameworks (e.g., NIST, ISO), DFS Part 500 regulations, DORA, and industry practices
- Technical proficiency of IT systems, infrastructure and applications
- Ability to lead and foster collaboration
- Ability to prioritize effectively to meet deadlines and management multiple incidents
- Excellent analytical and communication skills
- Strong PowerPoint and Excel skills
Responsibilities
- Serving as the point of contact for cyber systems events to manage communications and coordination
- For cyber breaches by vendors, working closely with the Cyber team and serving as the BBH contact vis-à-vis vendors in gathering details on the cyber breach, including root cause; applying lessons learned to the BBH cyber environment; documenting and reporting on the events
- For client cyber breaches, working closely with the Cyber team, Anti-Fraud and other stakeholders in gathering, coordinating responses, documenting and reporting on the events
- For internal cyber events, coordinating the cyber incident response process from initial detection to resolution, ensuring timely and effective action and communicating with relevant stakeholders appropriately
- Enhancing incident response documentation (tracking of incidents, updating procedures, updating playbooks, etc.)
- Serving as the point of escalation for the cyber incident management team and fostering collaboration and cross-training
- Participating in cyber-related tabletop exercises
- Conducting social engineering exercises to raise employee awareness of social engineering risks
- Staying abreast of latest cybersecurity threats and trends and proactively training relevant groups accordingly
- Responding to client DDQs and participating in client due diligence meetings
Benefits
- Discretionary bonuses
- Profit-sharing
- Long-term savings
- Healthcare
- Income protection
- Professional development opportunities
- Time off
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
Education Level
No Education Listed
