Senior Information Security Advisor ensuring business priorities align with information security requirements and fostering a strong security culture. Strategic partner supporting executives in informed decision - making.
About the role
- Manager role supporting Cybersecurity and Technology Risk Oversight Center of Excellence. Leading regulatory exams and audits while collaborating with cross-functional risk management teams.
Responsibilities
- Support the Cybersecurity and Technology Risk Oversight Center of Excellence (CTRO-COE) Program.
- Facilitate regulatory exams, audits, and other assessments.
- Provide integrated risk management oversight on cross-risk assessments.
- Lead the distribution, collection, and review of cybersecurity and technology-related examination, audit, and assessment requests.
- Execute quality control review during cybersecurity and technology-related examinations, including developing management responses and remediation plans for regulatory findings.
- Conduct targeted assessments across technical domains including but not limited to identity and access management, cryptography, data security, DevSecOps, and IT asset management.
- Collaborate with Enterprise Risk, Operational Risk, Enterprise Compliance, Technology & Security Risk, and Legal to ensure coordinated risk management practices.
Requirements
- Minimum of 7+ years of risk management experience, preferably in financial services or other highly regulated industries.
- Familiarity with frameworks, regulations, and standards including but not limited to: Cyber Risk Institute Profile, ISO Standards, PCI DSS, NIST 800-53a, SIG, Federal Financial Examination Council (FFIEC) handbooks, Service Organization Controls in accordance with SSAE No.18, GLBA, NYDFS, and FCRA.
- Required certification in one of CISA, CISSP, CISM, CCSP, CRISC, CGEIT, GSNA, GCIH, or equivalent or ability to sit for one of the certifications within the first 12 months of hire.
- Strong understanding of operational risk programs (e.g. RCSA, Risk Events, Issue Management, KRIs, etc.).
- Exceptional communication skills with ability to synthesize and present complex risk issues clearly and persuasively.
- Strong relationship building skills.
- Excellent organizational, analytical, and project management skills.
Benefits
- Healthcare Coverage – Competitive medical (PPO/HDHP), dental, and vision plans as well as company contributions to your Health Savings Account (HSA) or pre-tax savings through flexible spending accounts (FSA) for commuting, health & dependent care expenses.
- 401(k) Retirement Plan – Featuring a 100% Company Safe Harbor Match on your first 6% deferral immediately upon eligibility.
- Paid Time Off – Flexible Time Off for Exempt (salaried) employees, as well as generous PTO for Non-Exempt (hourly) employees, plus 11 paid company holidays and a paid volunteer day.
- 12 weeks of Paid Parental Leave
- Maven Family Planning – provides support through your Parenting journey including egg freezing, fertility, adoption, surrogacy, pregnancy, postpartum, early pediatrics, and returning to work.
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Security Dispatcher ensuring the safety, security, and welfare at Children's Healthcare of Atlanta. Engaging in emergency communications, coordinating security personnel, and monitoring alarms.
Cybersecurity Manager leading compliance and operational security for classified information systems at Boeing. Overseeing analysis, risk management, and security policy enforcement.
Senior Cybersecurity Engineer at TDCX monitoring and responding to cybersecurity incidents. Collaborating with security teams to ensure compliance and protection of organizational data and systems.
Cybersecurity Engineer advancing security posture with real - time threat monitoring using SIEM tools like Splunk. Managing incident response and vulnerability management lifecycle across networks and applications.
Senior Network Security Engineer focusing on MFA services for Verizon's Global Network & Technology team. Collaborating on technical implementation and providing ongoing operational support.
Director managing strategic stakeholder engagement for cyber security initiatives in Australia. Collaborating across governments and industry to drive national cyber preparedness and awareness.
Information Systems Security Officer ensuring operational security for information systems. Collaborating with ISSM and ISO while managing security operations and compliance.
Cybersecurity Engineer Principal at GDIT leads enterprise initiatives for improving identity and access security. Collaborates with leadership to architect modern IAM solutions per Zero Trust Principles.
Cybersecurity Specialist protecting DSV Contract Logistics IT platforms. Manage cybersecurity risks and embed security into IT solutions while ensuring operational continuity.