Cyber Security Advisor at Bunnings focusing on security for new initiatives and guiding secure solutions. Collaborate with technology teams to manage risks and improve cyber security measures.
About the role
- Senior Cybersecurity Risk Officer overseeing Cyber Security and Identity Management for Truist. Guiding senior leaders and providing independent risk oversight across technology operations.
Responsibilities
- Serve as the independent oversight and effective challenge function to the Chief Information Security Officer covering Cyber Security and Identity and Access Management domains.
- Provide guidance to senior leaders on critical cyber control failures and issues; escalate significant issues and emerging risks.
- Evaluate, determine and communicate cyber and access management domain maturity to Executive Leadership and the Board.
- Support effective risk oversight of Cyber–Fraud integration, emphasizing strong authentication, identity controls, and cyber operations capabilities.
- Oversee alignment between fraud prevention, IAM, and cyber defense teams for enterprise-level risk management.
- Provide independent risk oversight for Truist Technology through the identification, mitigation, monitoring, and reporting of operational, technology, and compliance related risks.
- Provide Cyber and Information Security Risk governance that supports Truist organization’s strategies while operating within established risk appetites.
- Lead execution of second line Red Team / Penetration Testing commissioned by the Board or other executives.
- Ensure cyber resources and initiatives are aligned to achieve business objectives while reducing risks.
- Provide independent assessment and oversight of the maturity of information security and adequacy of cyber controls.
- Review and attest to/challenge adequacy of risk assessments produced by Business Unit Risk Management.
- Serve as member of Technology Risk Committee and participate in Enterprise and Board Risk Committees.
- Ensure effectiveness in regulatory practices and responses.
- Encourage and monitor Cyber education and skills training to drive improved Cyber risk culture.
- Engage on Technology Risk policy governance and provide guidance in the development and implementation of Cybersecurity policies.
- Monitor, assess, and challenge significant third-party and vendor relationships.
- Develop and maintain effective channels of communication with other CROs and regulatory agencies.
- Lead, manage and develop teammates directly and indirectly, influencing cybersecurity talent management decisions.
Requirements
- Bachelor’s degree in financial-related discipline, or equivalent education and related training
- Fifteen years of experience or equivalent proficiency in managing people with demonstrated high competency in recruiting, developing, and coaching/mentoring
- Fifteen - Twenty years of experience in a financial institution with emphasis on risk management or equivalent work experience
- Ten years of large scale technology operations and infrastructure background, including extensive knowledge of technology policy, procedures and regulations
- Knowledge of key technology rules/regulations and technology risk management practices (e.g. FFIEC, COBIT, NIST, ITIL).
- Excellent leadership skills including the ability to lead direct and indirect reports
- Excellent communication (verbal and written), presentation and facilitation skills; ability to influence and communicate with impact.
Benefits
- Medical
- Dental
- Vision
- Life insurance
- Disability
- Accidental death and dismemberment
- Tax-preferred savings accounts
- 401k plan
- 10 days of vacation
- 10 sick days
- Paid holidays
- Defined benefit pension plan (may vary by position)
- Restricted stock units (may vary by position)
- Deferred compensation plan (may vary by position)
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Security Officer responsible for patrolling and monitoring Mercyhealth facilities in Wisconsin and Illinois. Providing visible deterrence to crime and ensuring the safety of patients and staff.
Cybersecurity internship at Desjardins involved in operational security, governance, and legal research. Gaining experience while working with technical teams in a collaborative environment.
Senior Information Security Engineer specializing in Micro - segmentation at Wells Fargo. Designing complex security solutions and collaborating across teams to enhance security posture.
Recent graduate role in HPE's Security Lab exploring new technologies. Collaborating globally on foundational security capabilities across innovative projects.
Lead Information Security Consultant at Mastercard influencing security of products. Collaborating with stakeholders to ensure secure services within the organization.
Infrastructure Security Project Manager managing Cyber Security projects and collaborating with IT teams at Insight Investment. Focused on delivering security initiatives in a hybrid work environment.
Cyber Security Lead Engineer for American Family Insurance designing and maintaining network security solutions across the organization and mentoring junior team members.
VP, Staff Endpoint Security Engineer at Synchrony managing endpoint security including EDR and FIM. Leading operational excellence and collaborating with cross - functional teams in a technology - driven culture.
Cyber Security Engineer responsible for enhancing network security at American Family Insurance. Focusing on implementation, maintenance, and troubleshooting of security technologies in a dynamic environment.