Senior Cybersecurity Risk Officer
Truist
full-time
Posted on:
Location Type: Office
Location: Charlotte • North Carolina • Virginia • United States
Visit company websiteExplore more
Job Level
Tech Stack
About the role
- Serve as the independent oversight and effective challenge function to the Chief Information Security Officer covering Cyber Security and Identity and Access Management domains.
- Provide guidance to senior leaders on critical cyber control failures and issues; escalate significant issues and emerging risks.
- Evaluate, determine and communicate cyber and access management domain maturity to Executive Leadership and the Board.
- Support effective risk oversight of Cyber–Fraud integration, emphasizing strong authentication, identity controls, and cyber operations capabilities.
- Oversee alignment between fraud prevention, IAM, and cyber defense teams for enterprise-level risk management.
- Provide independent risk oversight for Truist Technology through the identification, mitigation, monitoring, and reporting of operational, technology, and compliance related risks.
- Provide Cyber and Information Security Risk governance that supports Truist organization’s strategies while operating within established risk appetites.
- Lead execution of second line Red Team / Penetration Testing commissioned by the Board or other executives.
- Ensure cyber resources and initiatives are aligned to achieve business objectives while reducing risks.
- Provide independent assessment and oversight of the maturity of information security and adequacy of cyber controls.
- Review and attest to/challenge adequacy of risk assessments produced by Business Unit Risk Management.
- Serve as member of Technology Risk Committee and participate in Enterprise and Board Risk Committees.
- Ensure effectiveness in regulatory practices and responses.
- Encourage and monitor Cyber education and skills training to drive improved Cyber risk culture.
- Engage on Technology Risk policy governance and provide guidance in the development and implementation of Cybersecurity policies.
- Monitor, assess, and challenge significant third-party and vendor relationships.
- Develop and maintain effective channels of communication with other CROs and regulatory agencies.
- Lead, manage and develop teammates directly and indirectly, influencing cybersecurity talent management decisions.
Requirements
- Bachelor’s degree in financial-related discipline, or equivalent education and related training
- Fifteen years of experience or equivalent proficiency in managing people with demonstrated high competency in recruiting, developing, and coaching/mentoring
- Fifteen - Twenty years of experience in a financial institution with emphasis on risk management or equivalent work experience
- Ten years of large scale technology operations and infrastructure background, including extensive knowledge of technology policy, procedures and regulations
- Knowledge of key technology rules/regulations and technology risk management practices (e.g. FFIEC, COBIT, NIST, ITIL).
- Excellent leadership skills including the ability to lead direct and indirect reports
- Excellent communication (verbal and written), presentation and facilitation skills; ability to influence and communicate with impact.
Benefits
- Medical
- Dental
- Vision
- Life insurance
- Disability
- Accidental death and dismemberment
- Tax-preferred savings accounts
- 401k plan
- 10 days of vacation
- 10 sick days
- Paid holidays
- Defined benefit pension plan (may vary by position)
- Restricted stock units (may vary by position)
- Deferred compensation plan (may vary by position)
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
Cyber SecurityIdentity and Access ManagementRisk ManagementPenetration TestingCyber OperationsFraud PreventionTechnology OperationsTechnology PolicyRegulatory ComplianceRisk Assessment
Soft Skills
LeadershipCommunicationPresentationFacilitationCoachingMentoringInfluencingTeam ManagementCollaborationCritical Thinking