M&T Bank - Clanton, AL

posted about 2 months ago

Full-time - Mid Level
Clanton, AL
1,001-5,000 employees
Credit Intermediation and Related Activities

About the position

The Specialist in Technology and Cybersecurity Risk plays a crucial role in guiding the risk analysis process and providing direction for risk mitigation within M&T Bank. This position involves collaboration with cross-functional teams, including risk, technology, cybersecurity, and business units, to enhance risk policies and contribute to the overall resilience of the organization. The specialist will lead comprehensive and complex risk assessments, ensuring that potential control gaps are identified, analyzed, and mitigated through effective remediation plans. In addition to risk assessments, the specialist will formulate and implement risk management plans that include detailed reporting and documentation. This may involve writing standards, reviewing non-compliance issues, creating targeted risk assessments, and reporting on findings. The role also requires leading compliance efforts to ensure adherence to industry regulations and internal standards. The specialist will partner strategically with senior leadership and cross-functional teams to ensure prompt and effective action in response to events that exceed the Bank's risk appetite. The position also involves assisting with regulatory engagements, preparing materials, coordinating responses, and managing exam-related tasks. The specialist will assess the implications of new methodologies and recommend innovative strategies for Technology and Cybersecurity Risk leadership, maintaining a proactive stance against potential risks. Mentoring newer analysts is also a key responsibility, fostering their professional growth and ensuring high standards within the team. The specialist will recommend enhancements to training programs to increase awareness and application of best practices in technology and cybersecurity risk management. Overall, the specialist must understand and adhere to the company's risk and regulatory standards, identify risk-related issues for escalation, and promote a diverse and inclusive environment that reflects the M&T Bank brand. The role requires maintaining internal control standards and implementing audit points and regulatory issues in a timely manner, along with completing other related duties as assigned.

Responsibilities

  • Lead comprehensive and complex risk assessments, ensuring the identification, analysis, and mitigation of potential control gaps and corresponding remediation plans.
  • Formulate and implement risk management plans, inclusive of reporting and documentation, such as writing standards or reviewing non-compliance to standards.
  • Lead compliance efforts for respective function, ensuring adherence to industry regulations and standards through internal standards.
  • Partner strategically with cross-functional teams and senior leadership to ensure swift and effective action when events occur which are beyond or potentially beyond the Bank's risk appetite.
  • Assist with preparation and response to regulatory engagements, including preparing materials, coordinating responses from various individuals, aiding in exam management.
  • Assess implications of new methodologies and recommend ways for Technology and Cybersecurity Risk leadership to innovate the risk management strategy.
  • Mentor newer analysts, fostering their professional growth and ensuring a high standard for all risk analysts within the team.
  • Recommend enhancements to Technology and Cybersecurity risk management training programs to increase technology's overall awareness and application of best practices.
  • Understand and adhere to the Company's risk and regulatory standards, policies and controls in accordance with the Company's Risk Appetite.
  • Identify risk-related issues needing escalation to management.
  • Promote an environment that supports diversity and reflects the M&T Bank brand.
  • Maintain M&T internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators.

Requirements

  • Bachelor's degree and a minimum of 5 years' relevant work experience, or in lieu of a degree, a combined minimum of 9 years' higher education and/or work experience.
  • Demonstrated advanced knowledge of Technology and Cybersecurity risk principles.
  • Minimum of 4 years' relevant work experience in or with the specific Technology and/or Cybersecurity risk area and/or business unit.

Nice-to-haves

  • Applicable certification align to function or domain such as Certified in Risk and Information Systems Control (CRISC®), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP).
  • Proficient level of critical thinking and able to lead problem solving.
  • Excellent communication and interpersonal skills.
  • Experience partnering with leadership to design solutions.
  • Excellent ability to strategically seek critical information, and apply to specific processes.
  • Prior experience prioritizing across competing priorities and quickly changing landscape, and deliver results aligned with priorities.
  • Proficient persuasive communication skills to gain buy-in of others.

Benefits

  • Competitive salary range of $97,869.52 - $163,115.87 annually based on experience and location.
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service