Truist Cyber Defense Technical Director III 

United States, Tennessee 

366955652

Regular or Temporary:

English (Required)

1st shift (United States of America)

ESSENTIAL DUTIES AND RESPONSIBILITIES

Following is a summary of the essential functions for this job. Other duties may be performed, both major and minor, which are not mentioned below. Specific activities may change from time to time.

• ​​Continuously monitor and identify new cyber security threats to the bank.

• Develop/invent/improve highly innovative solutions across the CyberSecurity organization impacting multiple information security technologies, theories and/or techniques that achieve CCS strategy.

• Develop and maintain a comprehensive Cyber Operations strategy that is data driven and utilizes industry frameworks enabling the continuous improvement of controls that protect and defend bank systems 24x7x365.

• ​Educate senior cybersecurity leadership on new threats, tactics and techniques being used by malicious attackers.

• ​Influence Senior Cyber Security leadership and their staff to adopt and own new security controls or improvements when identified.

• Lead highly complex and visible projects with notable risk and complexity.

• ​Support cybersecurity leadership in the identification and evaluation of new controls, tools, and suppliers used to protect the bank.

• ​Develop and operate a department-wide training plan for all staff to maintain a consistent and up to date level of skills.

• Provide briefings to C-Level executives on current CyberSecurity threats as needed.

• Present and/or develop materials for the banks regulators as needed. ​

• Proactively engage with stakeholders across enterprise technology and all lines of business to make them aware and influence adoption of security controls, which includes managing up, out, and down to avoid surprises and position our solutions to be successful.

: The differentiating factor between levels ofCyber DefenseTechnical Director are the years of experience performing the Required Qualifications, breadth and complexity of responsibility, deep technical knowledge required of Cyber threats and mitigationsinteractions with all levels of leadership including C-Level and external regulators and

Required Qualifications:

The requirements listed below are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

• Bachelor’s degree or equivalent

• 20 years’ technical experience working in cybersecurity

• 10 years’ experience as a leader or influencer of large technical team teams

• 10 yeas’ experience in strategic planning, operational planning, and execution

• 5 years building and operating technical training and development programs for large organizations.

• 15 years managing complex and unstructured work.

• 10 years’ experience and intermediate-level technical knowledge of cyber defense controls/tools

• 5 years' experience in penetration testing of large enterprise networks

• 15 years’ experience and basic functional knowledge of tools and processes for the broader Cyber Defense capability

• 10 years’ experience and expert-level strength in soft skills and interpersonal communications

• 10 years' experience interacting with and influencing senior leaders

• 5 years’ experience collaborating with the following functions: a) infrastructure b) application development c) application support d) business unit risk management e) technology risk f) audit and g) external auditors.

• 5 years' experience developing and/or managing remediation plans of complex CyberSecurity risks.

• 15 years’ experience in strategic planning and applying industry best practices to operations (NIST, FFIEC)

Preferred Qualifications:

• Master’s degree

• Active Government Clearance

• Experience working in the Cyber Security Intelligence Community

• Experience developing and/or operating enterprise Threat hunting program.

• Experience within a large financial services organization

• Regulators presentation

• Financial services experience

• Large complex networks

• Red teaming / pen testing

• CISSP Certification