Cybersecurity Regulatory Specialist - SGA Inc.
New York, NY
About the Job
Software Guidance & Assistance, Inc., (SGA), is searching for a Cybersecurity Regulatory Specialist for a Right to Hire contract assignment with one of our premier Financial Services clients in lower Manhattan, New York City, NY . Hybrid role 2 days/week in office.
US IT Risk Cyber/Risk Remediation who is currently overseeing an assessment and identifying gaps to be addressed in the program
Cyber and IT Risk Self Control Assessment: The Cyber and IT RCSA Specialist is responsible for identifying, assessing, and mitigating cyber and IT risks within the organization. This role involves evaluating the effectiveness of existing controls, recommending improvements, and ensuring compliance with industry standards and regulatory requirements.
The successful candidate will have the opportunity to make an impact considering that the initiatives and programs are large in scope, work with executives directly, gain exposure to international stakeholders and markets, for a top 5 Canadian Bank.
Responsibilities:
Required Skills :
Other Preferred Skills :
SGA is an Equal Opportunity Employer and does not discriminate on the basis of Race, Color, Sex, Sexual Orientation, Gender Identity, Religion, National Origin, Disability, Veteran Status, Age, Marital Status, Pregnancy, Genetic Information, or Other Legally Protected Status. We are committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, and our services, programs, and activities. Please visit our company EEO page to request an accommodation or assistance regarding our policy.
US IT Risk Cyber/Risk Remediation who is currently overseeing an assessment and identifying gaps to be addressed in the program
Cyber and IT Risk Self Control Assessment: The Cyber and IT RCSA Specialist is responsible for identifying, assessing, and mitigating cyber and IT risks within the organization. This role involves evaluating the effectiveness of existing controls, recommending improvements, and ensuring compliance with industry standards and regulatory requirements.
The successful candidate will have the opportunity to make an impact considering that the initiatives and programs are large in scope, work with executives directly, gain exposure to international stakeholders and markets, for a top 5 Canadian Bank.
Responsibilities:
- Risk Identification and Assessment:
Identify potential cyber and IT risks that could impact the organization.
Assess the likelihood and impact of identified risks. - Control Evaluation:
Evaluate existing controls to determine their effectiveness in mitigating identified risks.
Recommend improvements or additional controls where necessary. - Documentation and Reporting:
Document the findings of risk assessments and control evaluations.
Prepare detailed reports for senior management and stakeholders. - Collaboration and Communication:
Work closely with various departments to gather information and insights on potential risks.
Communicate risk assessment results and control recommendations effectively. - Monitoring and Review: Continuously monitor the effectiveness of implemented controls.
Review and update risk assessments and controls regularly to reflect changes in the IT environment. - Training and Awareness:
Conduct training sessions to raise awareness about cyber and IT risks and controls.
Ensure that all relevant personnel understand their roles in the RCSA process. - Compliance and Best Practices:
Ensure that the RCSA process aligns with industry standards and regulatory requirements.
Stay updated on the latest best practices in cyber and IT risk management. - Incident Response:
Assist in the development and testing of incident response plans.
Participate in incident investigations to identify control failures and recommend improvements.
Required Skills :
- Professional certifications such as CISSP, CISM, or CRISC are preferred.
- Proven experience in risk management, cybersecurity, or IT audit.
- In-depth knowledge of cyber and IT risk management frameworks.
- Proficiency in risk assessment tools and methodologies.
- Prior experience working with a large scale FI/bank
- Strong analytical and problem-solving skills.
- Strong Excel Skills
- Excellent communication and interpersonal skills.
- Bachelor's degree in Information Technology, Cybersecurity, Risk Management, or a related field.
Other Preferred Skills :
- Applications Portfolio Management - Develop and implement strategies for Application management includes Applications inventory gap management/assessment, onboarding the applications into the bank's application inventory, liaising with multiple stakeholders business, technology owners, BCP and DBR coordinators.
- Ability to define the applications assessment criteria e.g. application(s) that have users, assets, or processes used by or supporting US business service or supporting a shared service that an US business service relies upon;
- Use of automation leverage automation tools for onboarding and gap assessment to improve efficiency and accuracy.
SGA is an Equal Opportunity Employer and does not discriminate on the basis of Race, Color, Sex, Sexual Orientation, Gender Identity, Religion, National Origin, Disability, Veteran Status, Age, Marital Status, Pregnancy, Genetic Information, or Other Legally Protected Status. We are committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, and our services, programs, and activities. Please visit our company EEO page to request an accommodation or assistance regarding our policy.
Source : SGA Inc.