Senior Manager - Software Risk Management/Compliance - Financial Services

Bachelor's degree in Business Management, Computer Science, or a related field (master's degree and/or certification a plus).

Experience : risk management, legal, compliance, or auditing highly preferred

Job Summary:

- We are seeking a highly motivated and experienced Cybersecurity & Technology Risk Management Compliance Analyst to join our team.

- In this critical role, you will play a key part in ensuring compliance with various cybersecurity regulations, industry standards, and best practices specific to the financial services industry.

- You will leverage your expertise in risk management and regulatory frameworks to develop, implement, and monitor our cybersecurity program.

Key Responsibilities:

- Conduct comprehensive mapping of regulatory requirements to internal policies, procedures, industry standards, frameworks, and existing controls.

- Analyze existing policies and procedures to identify gaps and inconsistencies in compliance with regulatory requirements.

- Develop and maintain a comprehensive library of applicable cybersecurity laws, regulations, and resulting control measures.

- Stay abreast of evolving regulatory trends, guidance, and new regulations that impact cybersecurity and necessitate enhancements to our control framework.

- Prepare detailed reports on the status of the program for governance structures and senior management.

- Facilitate impact assessments to evaluate readiness for compliance with new or changing regulations.

- Analyze potential compliance risks associated with new initiatives and business ventures.

- Develop actionable plans for implementing and enhancing cybersecurity controls, providing ongoing support and monitoring throughout the process.

- Identify and address any compliance gaps or inconsistencies within the control framework and ensure alignment with relevant regulations.

- Possess a deep understanding of cyber and IT best practices, including frameworks, guidelines, and regulations like NIST Cybersecurity Framework, FFIEC, and NYSDFS.

- Oversee the overall cybersecurity and technology risk management program to ensure adherence to all industry regulations, standards, and compliance requirements.

Qualifications:

- Minimum of 5+ years of experience in a relevant field, with prior experience in risk management, legal, compliance, or auditing highly preferred.

- Bachelor's degree in Business Management, Computer Science, or a related field (master's degree and/or certification a plus).

- Possession of a recognized cybersecurity certification (CISA, CISM, CISSP, CRISC or equivalent) is strongly preferred.

Specific Qualifications:

- Proficiency in Microsoft Office Suite (PowerPoint, Excel, Word).

- Solid understanding of financial services laws and regulations, particularly those pertaining to the securities market.

- Experience working with or for financial services regulators (e. , SEC, FRB, NYSDFS, CFTC, ESMA, etc. ) is a significant advantage.

- Prior audit experience is preferred.