Specialist - Technology and Cybersecurity Risk (Testing)

About the position

The Technology & Cybersecurity Risk Specialist will play a crucial role in ensuring that M&T Bank adheres to risk standards and frameworks while conducting targeted risk assessments. This position is responsible for monitoring ongoing compliance and supporting various activities related to control identification, self-assessments, testing, and validation of remediation efforts to address control gaps. The Specialist will collaborate with cross-functional teams, including risk, technology, and cybersecurity, to ensure that all aspects of risk management are effectively implemented and maintained. In this role, the Specialist will formulate and implement comprehensive risk management plans, which include detailed reporting and documentation. This involves writing standards, reviewing instances of non-compliance, and executing targeted risk assessments. The Specialist will lead self-assessments of risk controls, design and develop key controls, and conduct testing activities to ensure compliance with established control requirements. Additionally, the Specialist will support the remediation verification process by advising on remediation activities and ensuring that issues are resolved appropriately. The Specialist will also be responsible for reporting the outcomes of control testing, identifying risk-related issues that require escalation to management, and leading compliance efforts across Technology and Cybersecurity teams. This includes ensuring adherence to industry regulations, internal policies, and frameworks. The Specialist will partner strategically with cross-functional teams and senior leadership to address events that exceed the Bank's risk appetite and assist in preparing for regulatory engagements, including coordinating responses and managing examinations. Furthermore, the Specialist will assess the implications of new methodologies and recommend innovative strategies for Technology and Cybersecurity Risk leadership. Mentoring newer analysts and enhancing training programs to improve awareness and application of best practices in technology risk management will also be key responsibilities. The Specialist must understand and adhere to the Company’s risk and regulatory standards, ensuring timely implementation of audit points and addressing issues raised by external regulators. This position promotes a diverse environment that reflects the M&T Bank brand and requires effective communication with various stakeholders throughout the organization.