Who we are looking for
While professional experience and qualifications are key for this role, make sure to check you have the preferable soft skills before applying if required.
We are looking for a highly skilled and experienced Cybersecurity Risk Manager to perform Second line Risk Oversight over State Street's Offensive Security Program.
You will be collaborating with peers in Global Cyber Security to ensure risks are being reduced through Red Team and Purple Team exercises, Threat Hunting, and Application Penetration testing.
What you will be responsible for
- Perform cyber security risk management for State Street's offensive security capabilities.
- Collaborate with GCS and Business units on the mission objectives, attack plans, and execution of the enterprise level penetration tests.
- Review and analyze reports provided by penetration testers to identify potential remediation activities to be performed.
- Coordinate with the Business on the results of the penetration test and provide oversight on issues / remediation identified as part of the Archer Finding Governance process.
- Produce reports, dashboards, and metrics to measure the effectiveness of State Street's offensive security capabilities.
- Build and nurture positive working relationships with the intention to exceed stakeholder expectations.
Basic Qualifications :
- 5+ years of security testing experience (red teaming, cloud security, application security, or network security)
- Foundational understanding of risk management tools (Material Risk Identification, Risk and Control Self Assessments, and Key Risk Indicator Methodology)
- Bachelor's Degree in computer science, information technology, information systems, or equivalent
- Relevant certifications, such as CISSP, CRISC, GPEN, or OSCP highly preferred.
Preferred Qualifications :
- 8+ years of security testing experience (red teaming, cloud security, application security, or network security)
- 5+ years of experience with threat modeling concepts and Cyber Security frameworks (CVSS, MITRE ATT&CK, DREAD, or STRIDE)
- Knowledge and working experience of NIST Cybersecurity Framework (CSF) and NIST 800-53
- Good understanding of state-of-the-art IT & Cyber Security products, services, and technologies, as well as their respective impact on the organization's risk profile at scale.
- Ability to translate technical issues into risk terms that business can understand is absolutely necessary.
- Experience managing a global team of risk professionals.
- Good understanding and knowledge of IT infrastructure, systems, processes, and emerging technologies such as cloud, converged infrastructure, etc.
- At least two of the following relevant certifications, such as CISSP, CRISC, GPEN, or OSCP highly preferred.
Salary Range :
$140,000 - $222,500 Annual
The range quoted above applies to the role in the primary location specified. If the candidate would ultimately work outside of the primary location above, the applicable range could differ.
J-18808-Ljbffr
55ip - Enterprise Advisor Success Manager - Vice President
The 55ip - Enterprise Advisor Success Manager, Vice President on the 55ip Enterprise Advisor Success team will be responsible for managing 55ip’s key strategic relationships with primarily Enterprise RIA's and Platforms. At least 5+ years financial services experience. A strong familiarity with inve...
Compliance Manager, Vice President, Hybrid
Have an in-depth understanding of evaluating risk and compliance initiatives and determining regulatory compliance risks at a global financial institution. Across the globe, institutional investors rely on us to help them manage risk, respond to challenges, and drive performance and profitability. J...
Vice President, Liquidity Risk Oversight - Treasury Risk
Vice President, Liquidity Risk Oversight - Treasury Risk. We’re seeking a future team member for the role of Vice President, Liquidity Risk to join our Treasury Risk team. The Liquidity Risk oversight team works very actively with the other Treasury Risk functions, and within Risk & Compliance f...
Regional Vice President Of Operations
The Regional Vice President of Operations oversees the daily operations in our Northeast Region, specifically in Massachusetts. Conduct proactive evaluations of risk management and risk mitigation. If you have a disability that requires an accommodation to complete the application process, please em...
Vice President , Chief Information Security Officer
Strong understanding of information security principles, practices, and technologies, including network security, application security, cloud security and endpoint security. The leader will have a deep understanding of the evolving landscape of security and technology and will collaborate directly w...
Business Relationship Manager Senior Acquisition - Vice President
If you are customer focused, enjoy building relationships and providing financial advice to your clients, then a role as a Business Relationship Manager is for you. As a Senior Acquisition banker, you will provide a high-touch experience by building relationships and providing financial advice with ...
Vice President, Relationship Manager - Healthcare and Life Science - Innovation Banking
The Opportunity – Vice President/Director, Relationship Banking. Whether it’s providing strategic advice, comprehensive banking, industry connections or creative and bespoke capital solutions, we power ideas at every stage of their journey. The team is focused on companies in the Life Sciences & Hea...
Business Development Manager- Vice President
Use knowledge of business, finance, banking, credit and risk management, while leveraging relationships, to identify, recommend, and promote solutions that best serve the client and ensure the profitability of the portfolio * Protect the firm by following sound risk management protocols an...
Marketing Manager - Consultant Relations, Assistant Vice President
You will be joining the Institutional Services function that allows us to deliver a comprehensive, holistic approach to each client relationship — for asset managers and asset owners, insurance companies, and official institutions globally. We are looking for an experienced and versatile marketing m...
2nd Line Risk Oversight of Emerging Technologies, Vice President
Anticipate critical issues and risks; take responsibility for identifying or escalating key risks and impacts based on non-compliance with internal and external standards, assist first line with planning and executing additional compensating controls, and participate in various decision making forum...