• Assist the Policy Management and Adherence Group Manager in overseeing one or more Team(s) within the OCISO supporting Policy and Standard assurance work, including Cyber Assessment teams conducting 1st LOD assurance functions related to Subsidiaries & Affiliates, Wires Program, NYDFS and/or GLBA 501(b).
• Work to streamline and improve Information Security assessment activities and functions to remove redundancies and duplication.
• Partner with the GCO team to ensure process and control development, control testing, and GCO assessments are aligned to and addressing Policy and Standard requirements.
• Assist in leading complex and visible projects with moderate to high risk and complexity
• Lead teams or multiple teams of internal and/or external resources on a project basis.
• Implement and maintain a robust assurance program, with a focus on adherence with all laws, regulations, and other guidance related to assigned business and operational activities.
• Prepare dashboard reporting to identify and communicate the health of the project portfolio for use by key executives.

Required Qualifications:

1. Bachelor’s degree and eight years of experience in systems engineering or administration or an equivalent combination of education and work experience
2. Deep specialized and/or broad functional knowledge in applied enterprise information security technologies including but not limited to firewalls, intrusion detection/prevention systems, network operating systems, identity management, database activity monitoring, encryption, content filtering, and Mainframe security
3. Previous experience in leading complex IT projects

Preferred Qualifications:

1. Master’s degree or MBA and ten years of experience or an equivalent combination of education and work experience
2. 12 years of financial industry experience, including compliance/risk management and leadership/managerial experience
3. Substantial broad-based knowledge and experience in applying laws and regulations, designing, managing and overseeing compliance programs and processes and handling regulatory matters
4. Excellent communication and interpersonal skills, as job will require extensive interaction with various business units among multiple disciplines including Senior and Executive Management
5. Ability to communicate and work with various regulatory agencies
6. Attention to detail, accuracy and the ability to manage multiple tasks and deadlines
7. Demonstrated proficiency in basic computer applications, such as Microsoft Office software products
8. Strong analytical, organizational and time management skills
9. Solid understanding of risk management processes and risk analysis
10. Advanced knowledge of information security compliance laws, rules, and regulations
11. CISSP Certification Banking or financial services experience
12. Other security certifications (e.g. CCNA Security, GSEC, GCED, GPPA, etc.)
13. Other technical Certifications (e.g. CCNA, RHCE, MCSE, etc.)

NA