Manager, Cyber and Regulatory Audit

About The Position

Requirements

• 5+ years of experience as an Information Security Analyst or in a related cybersecurity field with a technology risk background.
• Experience in IT key security controls and risk assessment concepts in complex data, application, and networking environments.
• Prior experience with NYDFS, FFIEC, or other U.S. financial regulatory audits.
• Strong verbal and written communication skills in English.
• Excellent project management and tracking skills.
• Cybersecurity-related certification preferred (CISSP, CCSP, CRISC, CISM).
• University degree or college diploma in a cybersecurity-related field preferred.

Nice To Haves

• Experience with cybersecurity frameworks such as NIST CSF.
• Familiarity with risk management tools and methodologies.

Responsibilities

• Participate in engagements with external regulatory and internal/3rd party auditors regarding information security and cybersecurity.
• Monitor, analyze, and report on cybersecurity requirements against relevant U.S. regulations and standards.
• Provide support to IT&S auditors regarding regulatory and audit information requests.
• Continuously monitor and assess the effectiveness of security controls and processes.
• Identify and assess cybersecurity and technology risks to ensure compliance with regulations and internal policies.
• Perform cybersecurity risk assessments and provide updates to senior management.
• Report and track all cybersecurity-related issues pertaining to audits and regulatory requirements.
• Prepare regular reports and presentations on risk management and cybersecurity-related issues for senior management.
• Champion a high-performance environment and contribute to an inclusive work environment.

Benefits

• Flexible benefit programs to support family, financial, physical, mental, and social health needs.