Job Description

Story Behind the Need

• Business group: Global Risk Management team investigates global risk concerning the bank’s cyber security.

• Project: This project will be to assist the 2nd line engagement and challenge of remediation activities.

The Cyber Security IT & Risk Control Remediation Review & Challenge lead is a subject matter expertise to assist each Issue Owner through the end-to-end Issue Management/MRA lifecycle. This role is an integral part of the Review & Challenge tollgate panels at both the workstream (horizontal & vertical) and full MRA/Issue concern level, ensuring effective remediation, leading to successful Internal Audit validation. This role engages with stakeholders to provide ongoing support as well as receive feedback on risk and control coordinator team efforts.

Candidate Value Proposition:

The successful candidate will have the opportunity to gain exposure to a wide array of areas within Cybersecurity and the IT department within bank.

Typical Day in Role:

•Execution of the cyber security and IT risk management 2nd line Review, Challenge, Methodology & Testing of Issues.

•Partner with domain experts in the1st line understand the design and implementation of the remediation actions that address the MRA/Issue concerns.

•Works closely with Issue owners to provide challenge for remediation; including feedback on control remediation opportunities (such as control automation)

•Liaises with 1st and 3rd line to get alignment on remediation actions

•Participates in the Review and Challenge tollgate panels

•Engages with key stakeholders to provide ongoing support and feedback of team efforts

•Partner with the 1st in the design and implementation of the remediation actions that address the MRA concerns

Candidate Requirements/Must Have Skills:

1) 8+ years as an IT Security Analyst

2) 5+ years experience creating management reports

3) 5+ years’ experience working in an Issues Management capacity

4) Strong proficiency with Excel and PPT

Nice-To-Have Skills:

1) CISSP Certified (Cyber Security)

2) Service Now Certified

3) CCSP Certified (Cloud Security)

4) Experience with GRC tooling or Service Now

Soft Skills Required:

-Strong written communication skills

-work well within a fast-paced environment

Education: Bachelor's degree in a related field.

Best VS. Average Candidate:

Best vs Average: the ideal candidate would have a strong background in Cyber Security, having worked either a 1B or 2A role in terms of lines of defense.

Candidate Review & Selection

2 rounds

1st round – HM – 45 mins – in – person @ 250 Vesey Street (meet on 23rd floor at reception desk)

2nd round – HM + Director – in-person @ 250 Vesey Street (meet on 23rd floor at reception desk)

Job Tags

Similar Jobs