M&T Bank - Buffalo, NY

posted about 2 months ago

Full-time - Mid Level
Remote - Buffalo, NY
5,001-10,000 employees
Credit Intermediation and Related Activities

About the position

The Senior Cybersecurity Tech Risk Analyst at M&T Bank plays a crucial role in supporting the Cybersecurity risk management and governance practice. This position focuses on conducting Cybersecurity risk assessments, developing and maintaining Cybersecurity policies and standards, and ensuring compliance with legal and regulatory requirements. The analyst will also be responsible for executing the Cybersecurity awareness program and managing the Cybersecurity Risk Management Program, all while promoting a diverse and inclusive work environment.

Responsibilities

  • Support Cybersecurity risk assessments and governance practices.
  • Develop and maintain Cybersecurity policies and standards.
  • Evaluate Cybersecurity legal and regulatory requirements.
  • Execute the Cybersecurity awareness program.
  • Identify and evaluate Cybersecurity risks and develop mitigation strategies.
  • Provide data for key risk indicators (KRIs) and key performance indicators (KPIs).
  • Present results to risk committees and recommend enhancements.
  • Adhere to the Company's risk and regulatory standards and policies.
  • Maintain internal control standards and implement audit points.
  • Complete other related duties as assigned.

Requirements

  • Associate's degree and a minimum of 7 years' relevant work experience, or a combined minimum of 9 years' higher education and/or work experience including 7 years of relevant work experience.
  • Excellent knowledge of Cybersecurity principles relevant to confidentiality, integrity, availability, authentication, and non-repudiation.
  • Proven ability to facilitate discussions with peers and management.
  • Experience conducting research and evaluating information for reliability and relevance.
  • Excellent communication skills for conveying complex information clearly.
  • Experience recognizing vulnerabilities in security systems.
  • Proven ability to design and develop effective risk management processes.

Nice-to-haves

  • Bachelor's degree.
  • Certified Information Systems Security Professional (CISSP) or Certified Risk and Information Systems Control (CRISC) certification.
  • Knowledge of organization's risk tolerance and risk management approach.
  • Knowledge of organizational security policies.

Benefits

  • Competitive compensation
  • Health, welfare, and retirement benefits
  • 401(k) match at 5%
  • Work-life balance and flexible work arrangements
  • Up to 25 days PTO plus 12 paid holidays
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service