Expoint - all jobs in one place

המקום בו המומחים והחברות הטובות ביותר נפגשים

Limitless High-tech career opportunities - Expoint

Truist Cybersecurity Compliance Lead Consultant 
United States, Georgia, Atlanta 
537394344

01.09.2024

Regular or Temporary:

English (Required)

1st shift (United States of America)Please review the following job description:Responsible for oversight, execution, and communication for cybersecurity executive reporting to Truist technology and executive leadership in alignment with Truist and regulatory requirements. Manages the monitoring of cybersecurity risk and compliance functions which include: establishing metrics that show adherence to cyber polices and standards designed to safeguard the firm’s systems and data, performing assessments to identify, manage and mitigate cyber risks, assess and guide remediation of compliance gaps, maintain library of metrics related to cyber risks and controls, and evaluate and track the cyber metric governance program maturity.


Essential Duties and Responsibilities:Following is a summary of the essential functions for this job. Other duties may be performed, both major and minor, which are not mentioned below. Specific activities may change from time to time.

  • Partner with senior business leaders to understand business strategy and work in cross-functional teams to drive successful strategic outcomes and the development of meaningful metrics.

  • May facilitate a team of professional-level individual contributors. Sets the team's direction and communicates individual and team priorities. Manages deliverables for the team against expected results. Makes judgments about priorities and the team's approach to work based on an understanding of how the team contributes to the achievement of broader objectives.

  • Analyzes requirements (i.e. data lineage, data mapping/tracing control, reporting requirement, threats, assess management, PCI, etc.) and provides a gap assessment against current metrics, in order to develop and implement detailed metrics in accordance to our corporate cyber security strategy

  • Ongoing analysis of metrics in Production to uphold metric and data integrity.

  • Ongoing analysis of in Production metrics to identify root cause of risk metrics that breach risk appetite thresholds.

  • Manages monitoring of reporting on information/cyber security compliance and related risk & controls programs to a variety of audiences, including the regulators/examiners.

  • Coordinate meetings between multiple types of stakeholders, senior leaders, capability owners and data engineers to ensure final deliverable matches client expectations visually as well as with respect to documented requirements.

  • Interface and partner with the cybersecurity leadership and department team members, in addition to oversight teams to provide metric reporting requests on a timely basis.

  • Apply subject-matter expertise, industry knowledge, and technical understanding to recommend actions to business leaders.

  • Maintain an understanding of technology related federal regulations and industry frameworks/standards related to cyber reporting regulatory requirements (i.e., FFIEC, CRI Profile, NIST CSF, NIST 800-53, COBIT, ISO, GLBA, PCI, SOX, etc.)

  • Support highly complex and visible projects with notable risk and complexity

Required Qualifications:

The requirements listed below are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

  • Bachelor’s degree preferably in regulatory affairs, business, organizational or compliance law, or financial services

  • Ten years related experience at a large financial institution performing legal, compliance, or other duties such as risk management and/or project management

  • Ability to lead projects of moderate complexity and notable risk exposure.

  • Strong knowledge on cybersecurity risks, frameworks, best practices and industry/regulatory requirements. Knowledge and experience in use of cyber security governance programs.

Preferred Qualifications:

  • CISSP, CISA, CRISC, or CISM Certification

  • Master's degree or MBA and 6 years of experience in business analysis or an equivalent combination of education and work experience

  • Experience interacting with financial services regulatory bodies; preferably Office of the Comptroller of the Currency (OCC), Federal Reserve Board (FRB), FDIC, etc. (laws, rules, regulations and guidance)

  • Significant proficiency in designing reporting within Microsoft PowerPoint

  • Experience with designing and aggregating reporting for executive leadership and Board audiences

  • Banking or financial services experience

  • Prior management or leadership experience

  • Experience in supporting large-scale complex projects from beginning to end