Segment Risk Manager, Senior - Cybersecurity
About The Position
We're hiring! Huntington's 1st Line Technology risk (1LTR) team executes the risk management function in support of Huntington's Technology, Data, and Cybersecurity business segments. As a member of the 1LTR team, you will leverage your knowledge of risk management and technical acumen to proactively engage and advise our partners. Acting as the 1st Line of Defense at Huntington, you will have an opportunity to uplift our risk management posture in support of Huntington's broader goals. As a 1LTR - Cybersecurity team member, you will apply your knowledge of cybersecurity regulations, best practices, and maturity opportunities to support our Cybersecurity business function. This is a key role in helping ensure our Cybersecurity team is informed of risks within their domain so that standard and control objectives are met within our risk appetite. The ideal candidate will be able to excel within ambiguity, function independently, all while developing influential relationships to support their customers.
Requirements
- Bachelor's degree in cybersecurity, audit, risk management
- 7 years of combined technology experience in risk management, technology, cybersecurity, or related discipline based on the qualifications below:
- 4 years' experience in risk management, preferably within the 1st line function
- 2 years' experience in cybersecurity or related domain
- 2 years' experience in one or more cloud platforms AWS, Azure, GCP.
- 2 years' experience with deployment pipelines, DevOps, Containers, and API's.
- 2 years' experience with threat modeling
- 2 years' experience with cybersecurity related policy, procedures, or standards governance
- 2 years' experience with quantitative/qualitative risk assessments
Nice To Haves
- At least 7 years of experience within the financial services industry
- At least 4 years of experience working at a Category 3 or higher financial institution
- CISSP, CISM, CISA, GIAC, CIPP/US or other security/privacy certifications preferred but not required.
Responsibilities
- Support the identification and quantification/qualification of risks within the assigned subject area for the Cybersecurity segment
- Manage the governance of issues through their lifecycle, from ideation to validation and subsequent closure
- Execute risk assessments against defined scopes and planned initiatives in alignment with our enterprise risk management frameworks
- Support and execute various processes such as Risk and Control Self-Assessment (RCSA), Exception Management, and assigned business governance groups
- Provide advisory and guidance on control design, cybersecurity standards/policies, metrics, and processes to help meet regulatory or maturity requirements.
- Support executive reporting on the health and status of our risk, issues, and control portfolio
- Act as a trusted advisor to your customer, helping work through ambiguity and providing a risk perspective to new challenges or opportunities
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Industry
Credit Intermediation and Related Activities
Number of Employees
5,001-10,000 employees
