Base: $200,000 - $205,000 py; bonus/equity: not sp...
On-site
Cyber, technology, and information security risk
Operational risk and regulatory expectation
Control gaps, risk trends, risk issues, and incidents
Identify, assess, capture, and report on Cyber, Technology and Information Security risk and risk mitigation activities
Job Summary
Identify, assess, capture, and report on Cyber, Technology and Information Security risk and risk mitigation activities.
Partner with relevant Technology, Business Units, and other Corporate and Infrastructure functions to develop a perspective on operational risk and ensure consideration of evolving regulatory expectation.
Contribute to the development of presentations for executive management and senior risk managers, including reporting to boards and committees.
Matching Summary
Identify, assess, capture, and report on Cyber, Technology and Information Security risk and risk mitigation activities.
Salary
Base: $200,000 - $205,000 per year; Bonus/Equity: Not specified; Benefits: Not specified
Skills & Requirements
Must-have
Cyber, Technology, and Information Security risk
operational risk and regulatory expectation
control gaps, risk trends, risk issues, and incidents
governance, steering, and working group committees
risk remediation recommendations
presentations for executive management
deep dives into material operational risk events
New Product Assessment (NPA)
Nice-to-have
credible challenge of assertions
assessing impact of disruption risks
contribute to Scenario Analyses activities
Key Requirements
Bachelor’s degree in Electronic Engineering, Financial Engineering, or related
five (5) years of experience in the position offered or related occupation
five (5) years of experience with Cyber, Technology, and Information Security risk assessment
five (5) years of experience with Third-Party Cyber Risk Management
five (5) years of experience with IT Audit
five (5) years of experience performing risk assessments and overseeing remediation
five (5) years of experience developing and monitoring risk metrics in Technology
five (5) years of experience with Incident Management, Technology Risk Management, and Capacity Management
five (5) years of experience with regulatory and industry frameworks including Gamm Leach Bliley Act, and National Institute of Standards and Technology
five (5) years of experience with Governance, Risk, and Compliance platforms including Archer, OneTrust, Architect, Web Application Assessment, and Penetration Testing
five (5) years of experience creating and managing comprehensive risk reports
five (5) years of experience with compliance with regulatory legal requirements
five (5) years of experience providing subject matter recommendations
five (5) years of experience with Microsoft Excel including vlookup, index, match, sum, countifs, time functions, and Pivot Table
five (5) years of experience creating presentation materials using Microsoft PowerPoint