Cybersecurity Risk Manager

About The Position

Requirements

• Bachelor’s degree
• Minimum of 5 years of experience in Audit, Compliance, Risk Management or Operational Risk.
• In lieu of a Bachelor’s degree 4 additional years of segment-specific or risk related experience may be considered

Nice To Haves

• 2 years’ experience in cybersecurity or related domain
• 2 years’ experience in one or more cloud platforms AWS, Azure, GCP
• 2 years’ experience with deployment pipelines, DevOps, Containers, and API’s.
• 2 years’ experience with threat modeling
• 2 years’ experience with cybersecurity related policy, procedures, or standards governance
• 2 years’ experience with quantitative/qualitative risk assessments
• Excellent communication skills required to negotiate internally, often at a senior level.
• At least 7 years of experience within the financial services industry
• At least 4 years of experience working at a Category 3 or higher financial institution
• CISSP, CISM, CISA, GIAC, CIPP/US or other security/privacy certifications preferred but not required
• Organized, responsive, and highly thorough problem solver
• Demonstrable cyber risk knowledge based on working in real-world environments & situations.

Responsibilities

• Evaluate effective of controls and escalate as appropriate.
• Support the identification and quantification/qualification of risks with Threat and Vulnerability Management, Vulnerability SDLC, Zero Trust, or the Network Cybersecurity segment(s)
• Manage the governance of issues through their lifecycle, from ideation to validation and subsequent closure
• Execute risk assessments against defined scopes and planned initiatives in alignment with our enterprise risk management frameworks
• Support and execute various processes such as Risk and Control Self-Assessment (RCSA), Exception Management, and assigned business governance groups
• Provide advisory and guidance on control design, cybersecurity standards/policies, metrics, and processes to help meet regulatory or maturity requirements
• Support executive reporting on the health and status of our risk, issues, and control portfolio
• Act as a trusted advisor to your customer, helping work through ambiguity and providing a risk perspective to new challenges or opportunities
• Deliver timely escalation of all issues requiring attention to senior management.
• Work with business segment management to ensure that the overall risk function is effectively supporting strategic goals.
• Collaborate with audit/business segment/corporate risk to address issues with plausible action plans and target dates.
• Must be aware of and keep abreast of credit risk associated with assigned business segment.
• Performs other duties as assigned.

Benefits

• health insurance coverage
• wellness program
• life and disability insurance
• retirement savings plan
• paid leave programs
• paid holidays
• paid time off (PTO)