Truist Financial - Raleigh, NC
posted 3 days ago
Full-time - Mid Level
Raleigh, NC
Credit Intermediation and Related Activities
About the position
Manages Truist's Corporate cybersecurity legal, regulatory and industry compliance. Leads and develops strategies for closing cybersecurity management compliance gaps, partners in the analysis of legal, regulatory and compliance initiatives. Manages cybersecurity risk and compliance functions which include: establishing cyber polices and standards designed to safeguard the firm's systems and data, performing assessments to identify, manage and mitigate cyber risks, assess and guide remediation of compliance gaps, maintain library of cyber risks and controls, and evaluate and track the cyber program maturity, security advisor to business segments and functions.
Responsibilities
- Leads a strategic approach to information/cyber security compliance according to laws and regulations.
- Analyzes requirements and conducts compliance assurance activities to facilitate risk identification in support of regulatory expectations.
- Effectively interprets information security requirements' alignment to operational functions to measure compliance adherence.
- Develops and maintains reports of information security compliance gaps to a variety of audiences, including the Information Security, Risk Oversight, and Business Leaders.
- May facilitate a team of professional-level individual contributors. Contributes to developing the team's direction and communicating team priorities. Manages deliverables against expected results.
- Ability to work in a highly matrixed organization and interact effectively with all levels of authority.
Requirements
- Bachelor's degree preferably in regulatory affairs, business, organizational or compliance law, or financial services.
- Ten years related experience at a large financial institution performing legal, compliance, or other duties such as risk management and/or project management.
- Ability to lead projects of moderate complexity and notable risk exposure.
- Strong knowledge on cybersecurity risks, frameworks, best practices and industry/regulatory requirements. Knowledge and experience in use of cyber security governance programs.
Nice-to-haves
- Master's degree or MBA and 8 years of experience or an equivalent combination of education and work experience.
- Experience with or familiarity with Wires information security environments.
- Experience interacting with financial services regulatory bodies; preferably Office of the Comptroller of the Currency (OCC), Federal Reserve Board (FRB), FDIC, etc. (laws, rules, regulations and guidance).
- Cybersecurity certifications such as CISA, CISSP.
- Regulatory Change Management experience.
Benefits
- Medical insurance
- Dental insurance
- Vision insurance
- Life insurance
- Disability insurance
- Accidental death and dismemberment insurance
- Tax-preferred savings accounts
- 401k plan
- Vacation days (minimum of 10 days)
- Sick days (minimum of 10 days)
- Paid holidays
- Defined benefit pension plan (depending on position)
- Restricted stock units (depending on position)
- Deferred compensation plan (depending on position)
