As an experienced professional in our cybersecurity organization, you won’t just be watching over our data – you’ll be finding innovative new ways to protect it in the future. To do that, you’ll help lead a highly motivated team focused on analyzing, designing, developing, and delivering solutions built to stop adversaries and strengthen our operations. You’ll use your leadership skills to give guidance, advise on best practices and support our business and technology groups. By taking the lead on incident response, risk reviews, vulnerability assessments and identifying threats, you’ll help us deliver cost-effective solutions that put our clients first. You’ll deploy best practices, new policies and emerging trends to strengthen our strategic roadmap. By presenting your findings to senior leaders, you’ll sharpen your communication and presentation skills. As part of our global team of technologists and innovators, your work will have a critical impact on our company, as well as our clients and our business partners around the world.
Job Responsibilities
- Create a process to add new technology testing into the current Major Testing events
- Rationalize all Availability/Recovery telemetry, tools and reports
- Work across TRT to help re-invent testing to measure readiness to invocation vs a check the box scenario
- Ensure control compliance with Corporate Groups
- Represent TRT (Tech Resiliency Testing) on the Regional Resiliency Committee(s), as well as interacting with regional counterparts, as needed
- Lead and schedule Major Testing calendar with Internal Groups to develop and agree on scope for testing (application and/or business), business groups participating, recovery locations and applications recovering. Produce a Test Overview detailing Scope and Plan, milestones and deliverables
Required skills
- Bachelor’s degree or equivalent experience
- Excellent command of cybersecurity organization practices, operations risk management processes, principles, architectural requirements, engineering threats and vulnerabilities, including incident response methodologies
- Understanding of national and international laws, regulations, policies and ethics related to financial industry cybersecurity
- Experience with Agile and the ability to work with at least one of the common frameworks
- Ability to identify network attacks and systemic security issues as they relate to threats and vulnerabilities, with a focus on recommendations for enhancements or remediation
- Foundational knowledge of: computer forensics; legal, government and jurisprudence as they relate to cybersecurity; operating systems; and methods for intelligence gathering and sharing
- Intermediate knowledge of: cloud computing, computer network defense, external organizations and academic institutions dealing with cybersecurity issues, financial authorities and regulations, identity management, incident management, information assurance, information management, information systems and network security and infrastructure design
- Intermediate knowledge of: cybersecurity activities associated with requirements analysis, risk analytics and modeling; risk management; emerging issues, risks, vulnerabilities and technologies; and vulnerability assessment