Job Title: Cybersecurity Risk Management Leader
About the Role:
We are seeking a highly skilled and experienced cybersecurity professional to lead our technology risk management efforts. The successful candidate will play a pivotal role in ensuring the security and resilience of our technology infrastructure.
Key Responsibilities:
• Collect and review findings and telemetry data to ensure comprehensive risk assessment.
• Utilize advanced data analytics to identify patterns and anomalies that may indicate potential risks.
• Conduct thorough root cause analysis to identify the underlying causes and themes of issues and incidents, developing actionable insights and recommendations to address these root causes and prevent recurrence.
• Leverage subject matter expertise in cybersecurity controls and technology operations to identify emerging issues and articulate associated risks clearly.
• Communicate risk findings to stakeholders in a manner that is both informative and actionable.
• Collaborate with cross-functional teams to analyze high-priority risks, evaluate gaps in related standards and controls, and create outputs that propel remediation plans, controls, and standards development.
• Prepare detailed reports and documentation of risk assessments, findings, and recommendations.
• Ensure all documentation is accurate, comprehensive, and accessible to relevant stakeholders.
• Develop and maintain strong business and technology relationships, becoming a trusted partner.
• Stay abreast of the latest developments in technology and cybersecurity to continuously improve risk management processes.
Requirements:
• Formal training or experience in technology risk management, cybersecurity, or a related field, focusing on risk assessment and mitigation.
• Strong analytical skills and experience in data analysis and root cause analysis.
• Subject matter expertise in at least one of the following domains: Technology Operations, Vulnerability Management, Data Protection & Cryptography, Security Operations, Security Config, Technology Development/SDLC, Technology Resiliency or Identity and Access Management.
• Deep understanding of cyber risk scenarios for on-prem, SaaS and cloud-based solutions.
• Excellent command of cyber and operations risk management processes, principles, and architectural requirements.
• Demonstrated ability to work collaboratively with cross-functional teams.
• In-depth knowledge of current cybersecurity threats, trends, and best practices.
• Ability to prioritize and work under stringent timelines and lead within a cross-line of business technology organization.
• Keen understanding of national and international laws, regulations, policies, and ethics related to financial industry cybersecurity.