Assessments Exercises Vice President - Cloud Resiliency Testing
Assessments Exercises Vice President - Cloud Resiliency Testing
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Job Description
Contribute to leadingedge security and resilience efforts advancing protective strategies and propelling continuous improvement.
As an Assessments & Exercises Vice President Cloud Resiliency Testing on the Cybersecurity and Tech Controls Firm wide Technology Resiliency team you will contribute significantly to enhancing the firms cybersecurity or resiliency posture by using industrystandard assessment methodologies. In addition strengthen techniques to proactively identify risks and vulnerabilities in people processes and technology. You will design and deploy riskdriven tests and simulations (or manage a highlyskilled team that does) and inform analysis to clearly outline rootcauses. In this role you will evaluate preventative controls incident response processes and detection capabilities and advise crossfunctional teams on security strategy and risk management.
Job responsibilities
- Design and execute public cloud testing
- Utilize threat intelligence and security research to stay informed about emerging threats vulnerabilities industry best practices and regulations to enhance the firms public cloud assessment strategy and risk management
- Evaluate controls for effectiveness and impact on operational risk as well as opportunities to automate control evaluation
- Partner across all lines of business and corporate functions within the firm to drive and deliver proactive threatinformed testing simulations and assessments that validate readiness and drive down residual risk
- Ensure the firms technology estate can maintain effective operations and support the ongoing critical functioning of essential business services in an evolving threat landscape
- Collaborate closely with crossfunctional teams to develop comprehensive assessment reports including detailed findings risk assessments and remediation recommendations making datadriven decisions that encourage continuous improvement
- Provide public cloud subject matter expertise across the technology organization on resiliency programs and initiatives
- Engage with peers and industry groups that share threat intelligence analytics
Required qualifications capabilities and skills
- 5 years of experience in resiliency or cybersecurity with demonstrated exceptional organizational skills to plan design and coordinate the development of offensive security testing assessments or simulation exercises
- Advanced in one or more technology areas (i.e. Cloud Enablement Design and Migration Distributed technology Data Replication Messaging technology and Application Security
- Knowledge of US financial services sector cybersecurity or resiliency organization practices operations risk management processes principles regulations threats risks and incident response methodologies
- Ability to identify systemic security or resiliency issues as they relate to threats vulnerabilities or risks with a focus on recommendations for enhancements or remediation and proficiency in multiple security assessment methodologies (e.g. Open Worldwide Application Security Project (OWASP) Top Ten National Institute of Standards and Technology (NIST) Cybersecurity Framework) offensive testing tools or resiliency testing equivalents
- Prior experience in disaster and/or cyber recovery planning and testing
- Handson experience with developing engineering or architecting within a public cloud environment (AWS)
- Excellent communication collaboration and report writing skills with the ability to influence and engage key stakeholders across various functions and levels
Preferred qualifications capabilities and skills
- AWS solutions cloud practitioner certification or higher
- Hold relevant industry certifications such as Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) or Offensive Security Certified Professional (OSCP) showcasing advanced expertise in cybersecurity and offensive testing methodologies or resiliency
- Knowledge/experience in modern programming language(s)
Required Experience:
Chief
Employment Type
Full-Time
