Position: Director, Enterprise Cybersecurity Risk
About: The Enterprise Technology Risk & Analytics (ETRA) group is seeking a passionate, driven, and experienced professional to lead the Enterprise Cybersecurity Risk team. This role involves partnering with various enterprise cybersecurity functions to execute risk activities such as risk assessments, testing controls, and implementing new controls to mitigate emerging risks. The team is highly visible and collaborates with different ECS teams including Application & Infrastructure Security, Workforce & Identity Management, External & Vendor Defense, Threat Detection and Response, Data Protection & Analytics, Information Security Office, and Fraud Intelligence Unit.
Requirements: 8-10 years’ experience in information technology risk, cyber security, controls, or audit roles; experience in fraud risk frameworks a plus; prior experience in team management and leadership preferred; Bachelor’s Degree in Computer Science, Technology, or a related field of study preferred; professional technology and associated risk certifications (CISSP, CISA, CRISC, CISM, Certified risk/fraud examiners, and/or Cloud Certification(s) preferred; experience performing Technology risk assessments, Control assessments, or IT Audits for large-scale financial service organizations; demonstrated technical abilities in multiple areas such as technology infrastructure, cyber security, access management, network and cloud, etc.; working knowledge of Cloud security and controls and cloud technology environments; strong knowledge of information technology processes and controls; ability to solve complex problems and mitigate risks with analytical and critical thinking skills; build collaborative relationships with IT and Business personnel; understanding of industry standards, frameworks, and best practices like NIST SP 800-53, COBIT, AICPA Trust Principles, ISO27001, HITRUST; knowledge of Governance, Risk, and Compliance tools such as Archer or OpenPages; excellent verbal and written communication skills; process orientation and understanding of operations and technology for controls analysis and development.
Benefits: comprehensive health care coverage, generous paid time off and parental leave, market-leading retirement, educational assistance including student loan repayment and tuition reimbursement, emotional well-being support, charitable giving employee match program
