Cybersecurity Compliance Lead Consultant

Truist Financial - Atlanta, GA

posted 4 months ago

Part-time,Full-time - Mid Level
Atlanta, GA
Credit Intermediation and Related Activities

About the position

The Cybersecurity Compliance Lead Consultant position at Truist is a pivotal role responsible for managing the corporate cybersecurity legal, regulatory, and industry compliance. This position involves leading and developing strategies to close cybersecurity management compliance gaps while partnering in the analysis of legal, regulatory, and compliance initiatives. The consultant will manage cybersecurity risk and compliance functions, which include establishing and maintaining cybersecurity policies and standards to safeguard the firm's systems and data. This role requires performing assessments to identify, manage, and mitigate cyber risks, assessing and guiding remediation of compliance gaps, maintaining a library of cyber risks and controls, evaluating and tracking cyber program maturity, and serving as a security advisor to various business segments and functions. The consultant will align with and execute on the cybersecurity leadership strategy while ensuring compliance with information and cyber security laws and regulations. This includes analyzing requirements such as data lineage, data mapping, reporting requirements, threats, and access management. The consultant will provide regulatory assessments to develop and implement detailed strategies, plans, and risk identification processes to support the creation of enterprise-wide policies and standards. This involves effectively translating laws and regulations into operational requirements and actionable steps for execution and compliance adherence. Additionally, the consultant will manage the monitoring and reporting of information and cyber security compliance and related risk and controls programs to various audiences, including regulators and examiners. Maintaining an internal inventory of applicable U.S. laws and regulations pertaining to information and cyber security is also a key responsibility. The consultant will ensure that regulatory rules are incorporated into appropriate compliance policies, standards, and processes, and may facilitate a team of professional-level individual contributors. Setting the team's direction, communicating individual and team priorities, and managing deliverables against expected results are essential functions of this role.

Responsibilities

  • Manage Truist's corporate cybersecurity legal, regulatory, and industry compliance.
  • Lead and develop strategies for closing cybersecurity management compliance gaps.
  • Partner in the analysis of legal, regulatory, and compliance initiatives.
  • Establish and maintain cybersecurity policies and standards to safeguard the firm's systems and data.
  • Perform assessments to identify, manage, and mitigate cyber risks.
  • Assess and guide remediation of compliance gaps.
  • Maintain a library of cyber risks and controls.
  • Evaluate and track cyber program maturity.
  • Serve as a security advisor to business segments and functions.
  • Align with and execute on cybersecurity leadership strategy in compliance with information/cyber security laws and regulations.
  • Analyze requirements and provide regulatory assessments to develop and implement strategies and risk identification processes.
  • Manage monitoring and reporting on information/cyber security compliance and related risk & controls programs to various audiences, including regulators/examiners.
  • Maintain an internal inventory of applicable U.S. laws and regulations pertaining to Information and Cyber Security.
  • Ensure regulatory rules are incorporated into appropriate compliance policies, standards, and processes.

Requirements

  • Bachelor's degree preferably in regulatory affairs, business, organizational or compliance law, or financial services.
  • Ten years related experience at a large financial institution performing legal, compliance, or other duties such as risk management and/or project management.
  • Ability to lead projects of moderate complexity and notable risk exposure.
  • Strong knowledge on cybersecurity risks, frameworks, best practices and industry/regulatory requirements.
  • Knowledge and experience in the use of cybersecurity governance programs.

Nice-to-haves

  • MBA, Juris Doctorate, or Master's degree, and 8 years of experience or an equivalent combination of education and work experience.
  • An understanding of cybersecurity laws, rules, regulations, and industry frameworks.
  • Experience interacting with financial services regulatory bodies; preferably Office of the Comptroller of the Currency (OCC), Federal Reserve Board (FRB), FDIC, etc.
  • Cybersecurity certifications such as CISA, CISSP.
  • Regulatory Change Management experience.

Benefits

  • Medical insurance
  • Dental insurance
  • Vision insurance
  • Life insurance
  • Disability insurance
  • Accidental death and dismemberment insurance
  • Tax-preferred savings accounts
  • 401k plan
  • Vacation days (minimum of 10 days)
  • Sick days (minimum of 10 days)
  • Paid holidays
  • Defined benefit pension plan (depending on position and division)
  • Restricted stock units (depending on position and division)
  • Deferred compensation plan (depending on position and division)

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service