Disaster Recovery Second Line of Defense Engagement Manager (Cyber), Vice President
Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG) the world’s 5th largest financial group in the world with total assets of over $2.4 trillion (as ranked by SNL Financial, April 2016) and 140,000 colleagues in nearly 50 countries. In the U.S., we’re 13,000 strong, working together to positively impact every customer, organization, and community we serve. We achieve this by delivering on our values, putting people first, fostering long-term relationships built on honesty and mutual understanding, and inspiring the best in each other. This is all part of our inclusive, high-performing culture supported by Total Rewards that include our cash balance pension plan. Join a team that’s working to fulfill its vision to be the world’s most trusted financial group.
Reporting to the Disaster Recovery Risk Management Director, the Disaster Recovery Second Line of Defense Engagement Manager (Cyber) is responsible for overseeing the First Line of Defense’s implementation of cybersecurity disaster recovery principles.
Performs highly complex professional work in the technology-related continuity of operations and disaster recovery planning for cybersecurity incident response, IT infrastructure and application recovery disciplines
Collaborates with information security specialists to conduct threat, risk, and vulnerability assessments and recommend DR strategies of both the IT and critical infrastructures supporting the business processes
Reviews compliance to Cybersecurity policies, standards and procedures, and challenges affected controls as necessary
Performs independent review of First Line of Defense Cybersecurity control processes (including data backup architecture and technology that minimize the potential for data destruction and corruption, data integrity controls such as check sums, independent alternative communication providers, layered anti-malware and ransomware strategies, pre-arranged third party forensic and incident management services, Cybersecurity tests, tabletops, etc.)
Tracks and oversees First Line of Defense handling of Cybersecurity-related issues/concerns/gaps ensuring these are handled appropriately and closed to resolution
Oversees First Line of Defense processes in a Cybersecurity attack scenario (insider or outsider threats), identify control weaknesses, and partner with First Line of Defense in remediating gaps/issues
Serve as a senior-level consultant on Cyber Security and Disaster Recovery matters
Demonstrates excellent knowledge of cybersecurity and disaster recovery concepts
Stakeholder management and working across various parts of the organization
Communicates Cyber DR risk matters to senior management
Education: Bachelor’s degree or equivalent work experience required
Experience: 5+ years related experience
One or more security certifications is preferred, such as Certified Information Security Management (CISM), Certified Risk Information Security Control (CRISC), or Certified Information Systems Security Professional (CISSP)
One or more of ABCP, CBCP, MBCP, MBCI, CRP and/or other Business Continuity or industry related certifications preferred but not required
Demonstrated knowledge in Disaster Recovery and Business Continuity principles
Demonstrated knowledge on DR best practices and regulatory requirements including but not limited to: FFIEC, OCC, FINRA, Federal Reserve, NIST, COBIT, ITIL
Knowledge of risk management policies, methods, standards, processes, governance models, and industry standard risk analysis approaches
Knowledge of current industry trends in disaster recovery
Project Management and Incident Management skills
Strong MS Office skills along with strong technical, presentation, verbal/written communication, analytical and reporting skills
Strong personality with an ability to influence and collaborate well with internal and external stakeholders
Able to communicate to all levels of management
Able to be a leader across the organization, a valued partner, and subject matter expert on Disaster Recovery framework, policies, processes, tools, and mitigation practices
Ability to multi-task
The above statements are intended to describe the general nature and level of work being performed. They are not intended to be construed as an exhaustive list of all responsibilities, duties, and skills required of personnel so classified.
We are proud to be an Equal Opportunity / Affirmative Action Employer and committed to leveraging the diverse backgrounds, perspectives, and experience of our workforce to create opportunities for our colleagues and our business. We do not discriminate in employment decisions on the basis of any protected category.
Job: Systems / Technology
Primary Location: NEW YORK-New York
Job Posting: Aug 4, 2017, 4:13:11 AM
Schedule: Full Time