Cyber A&E Issue Management Lead, VP
Who we are looking for
Global Cybersecurity (GCS) protects State Street and its clients from the impact of cyber-attacks against systems by understanding the risks these attacks present and mitigating them through a robust, continuously evolving, cybersecurity program and control environment.
The Cyber A&E Issue Management Lead will play a critical role in the Cyber Architecture & Engineering (A&E) function under GCS. Cyber A&E designs, architects, deploys, and continually enhances security measures for the protection of State Street’s information related to its assets and customers. This position sits on the Risk Product Management (RPM) team which plays a crucial role in assessing, mitigating, and managing issues across Cyber A&E. The Cyber A&E Issue Management Lead will lead a small team to keep a comprehensive view of issues, coordinating response efforts with technology teams, validating completeness and effectiveness of remediation, and ensuring timely resolution.
Due to the role requirements this job needs to be performed primarily in the office with some flex work opportunities available.
What you will be responsible for
As Cyber A&E Issue Management Lead you will
- Lead end-to-end issue management process and ensure Cyber A&E is in compliance with issue management requirements.
- Diligently assess those issues assigned to Cyber A&E through engagement with the Lines of Defense (LODs) as well as issues arising from external audits and regulatory exams to ensure proper alignment.
- Determine through thorough assessment the impact, severity, and relevance of the issues to Cyber A&E practices relative to a controls framework.
- Partner with Issue Owners, First Line Risk and Controls (FLRC), and other Global Technology Services verticals to develop mitigation strategies and remediation plans.
- Ensure remediation plans are relevant to Cyber A&E controls and are achievable, sustainable, and ultimately address the identified risk through proper root cause analysis.
- As necessary, partner with Issue Owner and Resource Management to structure project teams that deliver against remediation plans.
- Validate closure documentation of issues and remediation plans.
- Ensure identified issues are addressed effectively and on time.
- Maintain an accurate centralized repository for tracking and documenting issues, including their status and resolution progress.
- Supply regular updates and reports to leadership and stakeholders on the status of Cyber A&E owned issues and risk mitigation efforts.
- Contribute to the development and enhancement of cybersecurity policies and procedures to prevent future issues.
- Ensure all issue management processes, actions, and resolutions are thoroughly documented for audit and compliance purposes.
- Support the Managing Director in building a high-performing Risk Product Management Issues Management team.
What we value
These skills will help you succeed in this role
- Excellent leadership, collaboration, and conflict resolution skills.
- Experience with independently leading a small team to deliver on goals and objectives.
- Strong root cause analysis skills.
- Knowledge and understanding of cybersecurity related remediation policy, process, and procedures.
- Excellent verbal, written, and interpersonal communication skills.
- Strong analytical skills with high attention to detail and accuracy.
- Ability to execute in a fast paced, high demand, environment while balancing multiple priorities.
- Strong time management skills and ability to meet deadlines.
- Experience identifying inefficiencies, finding opportunities to streamline business processes, and implementing change.
- Strong strategic and conceptual thinking skills
Education & Preferred Qualifications
- Experience (~12+ years) in audit, risk management, and/or issues management with an ability to manage cybersecurity risk items with confidence.
- Bachelor’s degree in Business Administration, Cybersecurity, or related field.
- Professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), Certified Risk and Information Systems Control (CRISC) or others equivalent.
- Strong understanding of cybersecurity principles, risk assessment methodologies, and regulatory compliance (e.g., PCI DSS, FISMA, SOX, GDPR, NIST, ISO 27001).
Are you the right candidate? Yes!
We truly believe in the power that comes from the diverse backgrounds and experiences our employees bring with them. Although each vacancy details what we are looking for, we don’t necessarily need you to fulfil all of them when applying. If you like change and innovation, seek to see the bigger picture, make data driven decisions and are a good team player, you could be a great fit.
Why this role is important to us
Our technology function, Global Technology Services (GTS), is vital to State Street and is the key enabler for our business to deliver data and insights to our clients. We’re driving the company’s digital transformation and expanding business capabilities using industry best practices and advanced technologies such as cloud, artificial intelligence and robotics process automation.
We offer a collaborative environment where technology skills and innovation are valued in a global organization. We’re looking for top technical talent to join our team and deliver creative technology solutions that help us become an end-to-end, next-generation financial services company.
Join us if you want to grow your technical skills, solve real problems and make your mark on our industry.
About State Street
What we do. State Street is one of the largest custodian banks, asset managers and asset intelligence companies in the world. From technology to product innovation, we’re making our mark on the financial services industry. For more than two centuries, we’ve been helping our clients safeguard and steward the investments of millions of people. We provide investment servicing, data & analytics, investment research & trading and investment management to institutional clients.
Work, Live and Grow. We make all efforts to create a great work environment. Our benefits packages are competitive and comprehensive. Details vary by location, but you may expect generous medical care, insurance and savings plans, among other perks. You’ll have access to flexible Work Programs to help you match your needs. And our wealth of development programs and educational support will help you reach your full potential.
Inclusion, Diversity and Social Responsibility. We truly believe our employees’ diverse backgrounds, experiences and perspectives are a powerful contributor to creating an inclusive environment where everyone can thrive and reach their maximum potential while adding value to both our organization and our clients. We warmly welcome candidates of diverse origin, background, ability, age, sexual orientation, gender identity and personality. Another fundamental value at State Street is active engagement with our communities around the world, both as a partner and a leader. You will have tools to help balance your professional and personal life, paid volunteer days, matching gift programs and access to employee networks that help you stay connected to what matters to you.
- State Street is an equal opportunity and affirmative action employer.
Salary Range:$140,000 - $222,500 Annual
The range quoted above applies to the role in the primary location specified. If the candidate would ultimately work outside of the primary location above, the applicable range could differ.