US Cyber Regulatory CRI Profile Program Manager |
Scout Exchange
Role Name: US Cyber Regulatory CRI Profile Program Manager
Location: New York Role Summary
The Americas Cybersecurity Governance Risk and Compliance GRC Senior Support Specialist is responsible for leading and delivering key US cyber regulatory governance and reporting obligations ensuring the organization maintains compliance with applicable cybersecurity regulations and effectively manages cyber risk The role supports the Americas Cybersecurity GRC Lead and US CISO by owning endtoend execution of timebound regulatory programs and submissions producing regulatorready artifacts and maintaining repeatable auditable processes
The role provides oversight and effective challenge of the regional cybersecurity risk profile risk appetite metrics and control effectiveness and drives remediation followup when metrics indicate noncompliance or risk appetite breaches Working in partnership with Group Cybersecurity teams the broader GRCRegulatory Compliance teams technology and control owners including nonUS IT Service Owners and the regional Chief Controls Office the role coordinates regulatory deliverables such as the CRI Profile assessment GLBA reporting NYDFS attestation support bimonthly regulatory meeting materials and ad hoc regulatory requests ensuring highquality outcomes and operational resilience across US Cyber governance forums
Role Description
Broad understanding of cybersecurity across Security Operations engineering technology controls and tooling with the ability to translate technical topics into clear regulatory and executivelevel messaging
Strong knowledge of IT preferably cybersecurity governance risk management and compliance including experience assessing cyber regulatory compliance and supporting regulatory exams and inquiries
Demonstrated program management capability with endtoend ownership of timebound nondiscretionary regulatory deliverables eg CRI Profile assessment GLBA reporting NYDFS attestation support including planning execution quality control and submission readiness
Proven ability to develop and maintain repeatable auditable operating models by documenting processes and building program artifacts procedures templates guidance training materials trackers and evidence repositories
Ability to analyze and interpret cybersecurity risk and control metrics KPIKRIKCI identify data discrepancies drive rootcause analysis with stakeholders and track remediation actions through to closure
Strong stakeholder management skills including the ability to coordinate across 1LOD 2LOD CCO Tech Group Cybersecurity technology teams control owners and nonUS ITSOs to deliver outcomes on schedule
Excellent written and verbal communication skills with the ability to produce clear concise wellevidenced materials fit for senior management the Board of Directors and regulatory bodies
Ability to lead through influence prioritize effectively across competing deadlines and coordinate the tasking of others including contractors or virtual team resources when required
Ability to provide responsive support for ad hoc regulatory requests including rapid evidence gathering and issue resolution with appropriate sensitivity to the US regulatory environment
Proficiency with Microsoft tools Word Excel PowerPoint SharePoint Power BI Teams and collaboration platforms eg Confluence to manage workspaces reporting and regulatory artifacts
Strong attention to detail and a continuous improvement mindset proactively identifying opportunities to reduce cycle time stakeholder friction and execution risk year over year Qualifications
Bachelors Degree in relevant discipline eg ITRisk or equivalent work experience
One or more industry certifications eg CISSP CISA CISM preferred
Strong demonstrated program management experience including endtoend ownership of timebound regulatory deliverables eg FFIEC CATCRI Profiletype assessments and GLBA reporting including planning execution quality control and submission readiness
Prior experience with US Financial Services regulatory OCC FRB engagement experience in dealing with compliance matters and regulatory liaison is preferred knowledge of US Financial Services regulatory requirements is required
Ability to build strong relationships and communicate on complex issues with a wide spectrum of stakeholders
Ability to efficiently operate and analyze large data sets in Excel proficiency with Microsoft tools Word Excel PowerPoint SharePoint Power BI Teams
Comprehensive understanding of banking and cybersecurity in the context of wider industry trends and direction
Strong written and verbal communication skills including the ability to translate technical subject matter for nontechnical audiences with excellent attention to detail Key Responsibilities
Leads delivery of mandatory United States cybersecurity regulatory programs and submissions including planning execution quality control and readiness for submission
Coordinates and delivers the annual report required under the GrammLeachBliley Act for the Board of Directors including managing inputs from many stakeholders and ensuring consistent quality year over year
Supports regulatory engagement and examinations by coordinating responses gathering evidence and ensuring materials are complete accurate and suitable for regulators and senior leadership
Builds and maintains repeatable auditable ways of working by documenting processes and maintaining templates guidance training materials trackers and centralized evidence repositories
Produces clear wellevidenced reporting and briefing materials for senior management the Board of Directors and regulators on cybersecurity risk compliance status and program outcomes
Reviews cybersecurity risk and control performance metrics identifies data issues drives rootcause analysis with stakeholders and tracks remediation actions through closure
Prepares materials and action tracking for recurring regulatory governance routines including meeting packs followups and escalation of delivery risks and dependencies
Maintains the annual New York State cybersecurity attestation support process including evidence coordination and leadership briefing materials to enable confident signoff
Drives remediation governance for United States cybersecurity control gaps by obtaining remediation plans from control owners tracking progress and coordinating closure
Provides governance oversight for the United States cyber service sustainability forum by reviewing remediation plans ensuring noncompliance is escalated for business decision and flagging funding risks that could impact service sustainability
Represents United States cybersecurity in application security governance forums and acts as the point person for issue resolution and followthrough
Leads through influence across cybersecurity technology risk and controls teams including coordinating the work of others when needed to meet fixed regulatory deadlines"
Location: New York Role Summary
The Americas Cybersecurity Governance Risk and Compliance GRC Senior Support Specialist is responsible for leading and delivering key US cyber regulatory governance and reporting obligations ensuring the organization maintains compliance with applicable cybersecurity regulations and effectively manages cyber risk The role supports the Americas Cybersecurity GRC Lead and US CISO by owning endtoend execution of timebound regulatory programs and submissions producing regulatorready artifacts and maintaining repeatable auditable processes
The role provides oversight and effective challenge of the regional cybersecurity risk profile risk appetite metrics and control effectiveness and drives remediation followup when metrics indicate noncompliance or risk appetite breaches Working in partnership with Group Cybersecurity teams the broader GRCRegulatory Compliance teams technology and control owners including nonUS IT Service Owners and the regional Chief Controls Office the role coordinates regulatory deliverables such as the CRI Profile assessment GLBA reporting NYDFS attestation support bimonthly regulatory meeting materials and ad hoc regulatory requests ensuring highquality outcomes and operational resilience across US Cyber governance forums
Role Description
Broad understanding of cybersecurity across Security Operations engineering technology controls and tooling with the ability to translate technical topics into clear regulatory and executivelevel messaging
Strong knowledge of IT preferably cybersecurity governance risk management and compliance including experience assessing cyber regulatory compliance and supporting regulatory exams and inquiries
Demonstrated program management capability with endtoend ownership of timebound nondiscretionary regulatory deliverables eg CRI Profile assessment GLBA reporting NYDFS attestation support including planning execution quality control and submission readiness
Proven ability to develop and maintain repeatable auditable operating models by documenting processes and building program artifacts procedures templates guidance training materials trackers and evidence repositories
Ability to analyze and interpret cybersecurity risk and control metrics KPIKRIKCI identify data discrepancies drive rootcause analysis with stakeholders and track remediation actions through to closure
Strong stakeholder management skills including the ability to coordinate across 1LOD 2LOD CCO Tech Group Cybersecurity technology teams control owners and nonUS ITSOs to deliver outcomes on schedule
Excellent written and verbal communication skills with the ability to produce clear concise wellevidenced materials fit for senior management the Board of Directors and regulatory bodies
Ability to lead through influence prioritize effectively across competing deadlines and coordinate the tasking of others including contractors or virtual team resources when required
Ability to provide responsive support for ad hoc regulatory requests including rapid evidence gathering and issue resolution with appropriate sensitivity to the US regulatory environment
Proficiency with Microsoft tools Word Excel PowerPoint SharePoint Power BI Teams and collaboration platforms eg Confluence to manage workspaces reporting and regulatory artifacts
Strong attention to detail and a continuous improvement mindset proactively identifying opportunities to reduce cycle time stakeholder friction and execution risk year over year Qualifications
Bachelors Degree in relevant discipline eg ITRisk or equivalent work experience
One or more industry certifications eg CISSP CISA CISM preferred
Strong demonstrated program management experience including endtoend ownership of timebound regulatory deliverables eg FFIEC CATCRI Profiletype assessments and GLBA reporting including planning execution quality control and submission readiness
Prior experience with US Financial Services regulatory OCC FRB engagement experience in dealing with compliance matters and regulatory liaison is preferred knowledge of US Financial Services regulatory requirements is required
Ability to build strong relationships and communicate on complex issues with a wide spectrum of stakeholders
Ability to efficiently operate and analyze large data sets in Excel proficiency with Microsoft tools Word Excel PowerPoint SharePoint Power BI Teams
Comprehensive understanding of banking and cybersecurity in the context of wider industry trends and direction
Strong written and verbal communication skills including the ability to translate technical subject matter for nontechnical audiences with excellent attention to detail Key Responsibilities
Leads delivery of mandatory United States cybersecurity regulatory programs and submissions including planning execution quality control and readiness for submission
Coordinates and delivers the annual report required under the GrammLeachBliley Act for the Board of Directors including managing inputs from many stakeholders and ensuring consistent quality year over year
Supports regulatory engagement and examinations by coordinating responses gathering evidence and ensuring materials are complete accurate and suitable for regulators and senior leadership
Builds and maintains repeatable auditable ways of working by documenting processes and maintaining templates guidance training materials trackers and centralized evidence repositories
Produces clear wellevidenced reporting and briefing materials for senior management the Board of Directors and regulators on cybersecurity risk compliance status and program outcomes
Reviews cybersecurity risk and control performance metrics identifies data issues drives rootcause analysis with stakeholders and tracks remediation actions through closure
Prepares materials and action tracking for recurring regulatory governance routines including meeting packs followups and escalation of delivery risks and dependencies
Maintains the annual New York State cybersecurity attestation support process including evidence coordination and leadership briefing materials to enable confident signoff
Drives remediation governance for United States cybersecurity control gaps by obtaining remediation plans from control owners tracking progress and coordinating closure
Provides governance oversight for the United States cyber service sustainability forum by reviewing remediation plans ensuring noncompliance is escalated for business decision and flagging funding risks that could impact service sustainability
Represents United States cybersecurity in application security governance forums and acts as the point person for issue resolution and followthrough
Leads through influence across cybersecurity technology risk and controls teams including coordinating the work of others when needed to meet fixed regulatory deadlines"
Vacancy posted 3 days ago
Similar jobs that could be interesting for youBased on the US Cyber Regulatory CRI Profile Program Manager | in New York, NY vacancy
$115k - $130k
...Analyst (Remote - US) Senior Security Compliance... ...Sales, and HR to manage audit cycles,... ..., training programs, and implementation... ...CCPA, CPRA, and EU Cyber Resilience Act is... ...When you apply, your profile goes through our AI... ...000.00 2 days ago Regulatory Compliance Analyst...CyberRegulatoryFull timeRemote workWorldwideFlexible hoursJobgether
New York, NY2 days ago$160k - $210k
...(Req #1132) Remote, US Overview As a Principal... ..., reporting to the Managing Security Consultant,... ...capture security program services within the... ...objectives; identified cyber risks, data risks, and regulatory requirements. Map... ...governance maturity, risk profile, regulatory exposure...CyberRegulatoryContract workLocal areaRemote workePlus
New York, NY2 days ago$150k - $165k
...Job Description Cyber Security Program Manager Location: New York, NY or Miami, FL (3x week in... ...alignment with business objectives and regulatory requirements. ~ Demonstrated... ...certifications are a plus. In the US, the target base salary for this role...CyberRegulatoryFull timeWork at officeFlexible hourseClercx
New York, NY4 days ago$125.1k - $225.2k
...Transit Operations Planning Program Manager to join our growing Rail and... ...Cultivate relationships with regulatory bodies, government agencies,... ...teams across Canada and the US + Experience communicating... ...uniquely qualified to deliver cyber/converged security, technology...CyberRegulatoryContract workFor contractorsLocal areaWorldwideFlexible hoursParsons Company
New York, NY4 days ago$180k - $277k
...outcomes, including cost management, rapid innovation, and... ...001, ISO 22237, SOC 2, Cyber Essentials Plus, ISO 22... ..., audit readiness, and regulatory requirements. Manage... ...situation, please let us know. The responsibilities... ...equity and/or commission programs. Nscale may offer a...CyberRegulatoryContract workFor contractorsRemote workFlexible hoursNscale
New York, NY2 days ago- ...Vice President – Program Manager / BA Location: United States – Columbus or New York Role... ...spanning recurring marketing, client, and regulatory-driven reporting across all client... ...initiatives is an advantage. About Us JPMorgan Chase, one of the oldest financial...Regulatory
Chase
New York, NY5 hours ago $145k - $196k
...Security Location: New York, NY, US Employment Type: Full Time... ...is part of the overall cyber data initiative focusing on... ...Information Security, Data Management, or related field 10+ years... ...controls (i.e., NIST, CIS, CRI Profile) and regulatory compliance (i.e., NYSDFS,...CyberRegulatoryFull timeWork at officeLocal areaWork from homeWorldwideSmbc Global Foundation Inc
New York, NY5 days ago- ...Title: Technical Program Manager Location: NYC NY Duration: 12 Months... .... Ideal Candidate Profile 7+ years of TPM... ...Experience working under regulatory frameworks (NIST, TSA, NYS mandates... ...Black Belt bout Us: InterSources Inc , is...RegulatoryRemote work
InterSources
New York, NY2 days ago $90k - $105k
...defending against emerging cyber threats. Our clients... ...offer critical risk management advice. The... ...and partners lean on us because they know we... ...evolving AI risks, regulatory expectations, and best... ...most robust security programs, improve their risk profile, and raise...CyberRegulatoryFlexible hoursDrawbridge
New York, NY3 days ago- ...credible insight to senior management and the Audit Committee.... ..., cybersecurity, product, regulatory, and operational risk profile. Direct enterprise-wide... ...distributed team across the US and India. Travel is... ...initiatives. Background in cyber risk, cloud security, or...CyberRegulatoryLocal area
Broadridge Financial Solutions , Inc.
New York, NY5 days ago - ...Transactional Cyber/Data/Privacy... ...planning and data breach management • Guide... ...compliance frameworks and regulatory obligations •... ...professional development programs, and direct client... ..., and high-profile client advisory work... ...research empowers us to place attorneys...CyberRegulatoryPermanent employmentContract workPlacement yearWork at officeFlexible hours
BCG Attorney Search
New York, NY5 days ago $175k - $200k
...Program Manager, NA P&C Insurance You will be our Program Manager, NA P&C Insurance. In this role, you will lead and manage all aspects... ...dependencies. Partner with Legal/Compliance on legislative and regulatory topics affecting P&C programs, including data collection for...RegulatoryTemporary workRemote workWork visaSirius Group
New York, NY2 days ago$150k - $190k
...York City in the US. We focus on developing... ...-focused Senior Manager, IT Information... ...company’s cybersecurity program. This role is... ...compliance with regulatory requirements (including... ...and manage cyber security KPI’s and... ...risks Candidate Profile: Bachelor’s degree...CyberRegulatoryVisa sponsorshipWork visaCompass Pathways
New York, NY1 day ago$127k - $200k
...effectiveness of risk management and governance... ...business and risk profiles of these areas.... ...external auditors and regulatory examiners, as... ..., information and cyber security management... ...a hybrid working program, with varying opportunities... ...to clients in the US, Canada, and Latin...CyberRegulatoryWork experience placementWork at officeLocal areaRemote workWorldwideOverseasMizuho Bank Ltd
New York, NY2 days ago$145k - $150k
...changes their risk profile. To make million-... ...Liability, Inland Marine, Cyber Liability)... ...market practices, regulatory requirements, and... ...Experience in underwriting management, supervision, or... ...(carrier training programs, industry... ...please reach out to us directly at (646)...CyberRegulatoryFull timeWork experience placementSixfold
New York, NY4 hours ago$164.45k - $219.08k
...on enterprise risk management practices and... ...unified, maturing risk program that supports... ...strategy, risk appetite, regulatory expectations and... ...regional risk profile that informs enterprise... ...AI, Geopolitical, Cyber and Third-party).... ...opportunity with us, please send an e-...CyberRegulatoryPermanent employmentFull timeContract workWork at officeLocal areaRemote workFlexible hours2 days per week3 days per weekDan Global
New York, NY3 days ago$166k - $214k
...Identity and Access Management Analyst New... ...benefits, wellness program offerings, company... .... Your Success Profile What You Will Work... ...account usage Help Cyber Defense Operations... ...policies and regulatory requirements. Perform... ...reach out to us at accommodations@...CyberRegulatoryCasual workWork at officeLocal areaJustworks
New York, NY1 day ago$178.2k - $297k
...Information Technology Job Profile Sr Manager, Cybersecurity... ...include an incentive program. Job Description... ...organization against emerging cyber threats. This pivotal... ...and tools adhere to regulatory requirements and... ...leave. About Us Through groundbreaking...CyberRegulatoryWork experience placementRemote workVisa sponsorshipFlexible hoursShift workCox Communications
New York, NY3 days ago- ...Technical Product Manager to lead and evolve... ...solutions defend against cyber threats at... ...Federal E-Verify program. We celebrate diversity... ...Security Inc. (US), Keeper Security... ...information who submit your profile References (with... ...) Legal and regulatory compliance...CyberRegulatoryTemporary workRemote work
Keeper Security
New York, NY2 days ago $117k - $156.36k
...who want to grow with us. If you want to be... ...teams such as IT risk management and internal and external... ...information security program developments,... ...Information Technology, Cyber Security, Computer Science... ...in security and regulatory frameworks (CRI, ISO 27001, NIST 800...CyberRegulatoryTemporary workFlexible hoursNTT DATA
Jersey City, NJ1 day ago- ...Work with Account Managers and Sales Directors... ...security solution profiles for top accounts and... ...guidance in strategic, program and project initiatives in cyber security. ~... ...and understanding of regulatory framework and... ...presidio.com and let us know the nature of...CyberRegulatoryFor contractors
Presidio Networked Solutions, LLC
New York, NY7 hours ago $30 per hour
...of Operations, Cybersecurity Programs will be responsible for driving... ...(land, sea, air, space, and cyber) with a strong emphasis on... ...will bring proven experience managing operational delivery in an integrated... ...controls, risk management, regulatory compliance and reporting....CyberRegulatoryTemporary workImmediate startFrontier Technology
New York, NY2 days ago- ...privileged access management built with end-to-... ...solutions defend against cyber threats at... ...Federal E-Verify program. We celebrate diversity... ...Security Inc. (US), Keeper Security... ...information who submit your profile References (with... ...) Legal and regulatory compliance...CyberRegulatoryContract workTemporary workFor contractorsFor subcontractorLive inWork at officeRemote workWorldwide
Keeper Security
New York, NY5 days ago $115.44k - $186.16k
...Business: Business Management, Strategy & Support... ...Description: Why Work with Us? At TD Bank US... ...future-focused compliance program. This is not just... ...complexity, and risk profile. In this role, you’ll... ...operational, governance, and regulatory priorities across US...RegulatoryTemporary workWork at officeLocal areaWork from homeFlexible hoursTD Bank
New York, NY4 days ago- ...Effectiveness & Change Management, Operating Model Design & Agility, Program Leadership &... ...Cybersecurity / Cyber Transformation Remediation... ...to join our US Cybersecurity capability... ...Based on your profile and background,... ...Threat Assessment ~ Regulatory Compliance ~...CyberRegulatoryFull timeWork at officeWorldwideRelocationWork visa
Wavestone
New York, NY2 days ago $172.79k - $214k
...supervisory, transactional, regulatory, legislative, policy, enforcement... ...Assists in the oversight and management of the activities and... ...'s Office, Climate Division, Cyber Division, Legislative Affairs... ...Loan Forgiveness (PSLF). This program forgives the remaining balance...CyberRegulatoryFull timeTemporary workWork experience placementWork at officeLocal areaStateJobsNY
New York, NY4 days ago- ...Operational Resilience Manager Location: New... ...Work Authorization: US Citizen or Green Card Holder... ...resilience, cyber resilience, business continuity... ...operational risk management, regulatory compliance, incident... ...risk and IT security programs. Business Continuity...CyberRegulatoryContract work
3B Staffing LLC
New York, NY5 days ago $111k - $166k
...Want to help us help others? We’re hiring! GoFundMe is the world’s most powerful community... ...team is searching for our next Privacy Program Manager to ensure compliance with privacy... ...to guide functional areas in adhering to regulatory requirements. Collaborate with senior analysts...RegulatoryFull timeWork at officeRemote workFlexible hoursGoFundMe
New York, NY2 days ago- ...Experience: 3 to 5 years’ experience managing multi-site technical training programs (preferred DoD or cybersecurity); 5... ...Level & Investigation: Secret (US Citizenship) IA Cert Level (DoD 857... ...and upcoming changes within the Army Cyber Security (CS) and IA/ND community....CyberContract workFor contractorsRemote work
BRAVURA CORPORATION
New York, NY2 days ago - ...businesses stay secure and making cyber resilience simple. Our platform... ...flexible tech so customers can manage and recover with confidence. But what really makes us unique is our people, a global team... ...here. Do you like to build new programs? Are you passionate about...CyberFlexible hours
N-able Technologies Ltd.
New York, NY2 days ago
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to US Cyber Regulatory CRI Profile Program Manager |. Be the first to apply!
Related searches
- director global regulatory affairs New York, NY
- regulatory project manager New York, NY
- regulatory product manager New York, NY
- compliance audit manager New York, NY
- hr compliance manager New York, NY
- safety compliance manager New York, NY
- regulatory & compliance manager New York, NY
- regulatory operations manager New York, NY
- sr. manager regulatory compliance New York, NY
- human resources compliance manager New York, NY