Security Engineer

• Perform SOX IT and cybersecurity compliance testing
• Identify and assess Truist’s Corporate cybersecurity legal, regulatory and industry compliance
• Assist in managing cybersecurity risk and compliance functions, including establishing cyber policies and standards designed to safeguard the firm’s systems and data
• Perform assessments to identify, manage and mitigate cyber risks
• Assess and guide remediation of compliance gaps
• Maintain library of cyber risks and controls and evaluate and track the cyber program maturity
• Serve as security advisor to business segments and functions
• Perform compliance assessments and tests of SOX IT and assist management response for identified Audit and compliance gaps
• Ensure internal compliance to SOX requirements
• Analyze requirements (data lineage, data mapping/tracing control, reporting requirement, threats, assess management, PCI, etc.) to support creation of enterprise-wide policies and standards
• Translate laws and regulations into operational functions and action steps for execution and compliance adherence
• Represent CCS when working with Truist Business Partners to understand business problems and provide security-enabled solutions
• Monitor reporting on information/cyber security compliance and related risk & controls programs to various audiences, including regulators/examiners
• Fulfill external and internal requests and communications with internal and external clients
• Identify solutions for potential regulatory risks and maintain an internal inventory of applicable U.S. laws and regulations pertaining to Information and cybersecurity
• Ensure regulatory rules are incorporated into appropriate compliance policies, standards, processes, training, and monitoring/testing activities at an enterprise level
• Work with stakeholders to perform cyber governance routines and conduct cyber risk and compliance assessments
• Perform data analysis and interpretation for risk factors, present KRI metrics and analysis, and recommend mitigation controls and remediation plans

Cybersecurity Compliance Consultant, SOX and Compliance Testing

Local Operations Manager

Information Systems Security Officer – ISSO

Senior Manager, Security & Compliance

Data Privacy & Security Manager

Integrated Campaign Manager, AI Security