Vice President, Cyber Incident Response & Digital Forensics

Cyber Incident Response & Digital Forensics

At BNY, our culture allows us to run our company better and enables employees' growth and success. As a leading global financial services company at the heart of the global financial system, we influence nearly 20% of the world's investible assets. Every day, our teams harness cutting-edge AI and breakthrough technologies to collaborate with clients, driving transformative solutions that redefine industries and uplift communities worldwide.

Recognized as a top destination for innovators, BNY is where bold ideas meet advanced technology and exceptional talent. Together, we power the future of finance – and this is what #LifeAtBNY is all about. Join us and be part of something extraordinary.

We're seeking a future team member for the role of Cyber Incident Response & Digital Forensics (DFIR) to join our Cybersecurity Platform team. This role is in Washington DC, Pittsburgh, or New York.

In this role, you'll make an impact in the following ways:

• Support a 24x7 cyber operations center through cyber incident investigation, triage, and response activities.
• Use specialized security tools including Splunk, Microsoft Defender, CrowdStrike, and other relevant technologies to support incident analysis and response.
• Collect, interpret, translate, and communicate technical information from artifacts associated with an investigation & translate to executive leadership.
• Conduct memory, disk, and image forensics during active investigations and triage efforts.
• Communicate clearly and confidently with both technical and non-technical audiences during incidents and post-incident activities.
• Provide senior-level consultation and professional support for major components of the company's information security infrastructure, including deployment and optimization of forensics and detection tooling such as Axiom Forensics, Splunk, Microsoft Defender, and CrowdStrike.
• Contribute to the development and implementation of security architecture, standards, procedures, and guidelines across multiple platforms and varied system environments.
• Partner with business and operational infrastructure teams regarding new and existing technologies, recommending post-incident security improvements and supporting implementation efforts.
• Review and analyze highly complex security data and information to provide meaningful insights, conclusions, and actionable recommendations.
• Define, implement, and apply area-wide security and/or continuity of business policies and standards, leveraging strong knowledge of globally recognized information security principles.
• Address high-risk security concerns and incidents, recommend risk mitigation actions, and support the establishment and publication of appropriate standards.
• Contribute to the achievement of broader Cybersecurity Platform objectives.

To be successful in this role, we're seeking the following:

• Govern incident response for a FedRAMP-compliant Azure environment using native Microsoft security tooling.
• Bachelor's degree in information security, Computer Science, or a related field.
• 6-7 years of experience.
• Significant experience in digital forensics, incident response, cybersecurity operations, or a related information security function.
• Experience supporting or operating within a 24x7 cyber operations center environment.
• Strong hands-on experience with tools such as Splunk, Microsoft Defender, CrowdStrike, and other incident response or threat detection platforms.
• Experience conducting digital forensic investigations, including memory, disk, and image analysis.
• Strong ability to collect, interpret, and communicate technical incident information to diverse stakeholder groups.
• Excellent verbal and written communication skills, with the ability to engage effectively with both technical and non-technical audiences.
• Demonstrated ability to manage multiple priorities, adapt quickly, and work effectively under pressure.
• Experience supporting enterprise information security infrastructure and contributing to security tooling optimization.
• Strong analytical and problem-solving skills, with the ability to assess complex data and produce actionable recommendations.
• Strong understanding of information security standards, controls, policies, and industry best practices.
• Splunk certification or equivalent demonstrated expertise.
• Experience contributing to security architecture and enterprise security standards in large, complex organizations.
• Familiarity with continuity of business (COB) principles and related security requirements, NIST, ISO.
• Previous Enterprise Cyber Incident Response in a large financial institution.
• Experience addressing high-risk security concerns and supporting remediation or mitigation efforts.

At BNY, our culture speaks for itself, check out the latest BNY news at:

BNY Newsroom

BNY LinkedIn

Here's a few of our recent awards:

• America's Most Innovative Companies, Fortune, 2025
• World's Most Admired Companies, Fortune 2025
• "Most Just Companies", Just Capital and CNBC, 2025

Our Benefits and Rewards:

BNY offers highly competitive compensation, benefits, and wellbeing programs rooted in a strong culture of excellence and our pay-for-performance philosophy. We provide access to flexible global resources and tools for your life's journey. Focus on your health, foster your personal resilience, and reach your financial goals as a valued member of our team, along with generous paid leaves, including paid volunteer time, that can support you and your family through moments that matter.

BNY is an Equal Employment Opportunity/Affirmative Action Employer - Underrepresented racial and ethnic groups/Females/Individuals with Disabilities/Protected Veterans.

BNY assesses market data to ensure a competitive compensation package for our employees. The expected base salary for this position when employment commences can be found in the Job Info section at the bottom of the posting.

Base salary offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, and experience. Base salary is only part of the total rewards package, which may include eligibility for an annual discretionary incentive award. Subject to the terms and conditions of the applicable plans then in effect, eligible employees may enroll in a 401(k) plan as well as participate in Company-sponsored medical, dental, vision, and basic life insurance plans for the employee and the employee's eligible dependents. Eligible employees also may receive other benefits (including various paid time off benefits, such as vacation and sick time), dependent on the position offered. Details of participation in these benefit plans will be provided if an employee receives an offer of employment.

If hired, the employee will be in an "at will" position and the Company reserves the right to modify base salary (as well as any other discretionary payments or compensation programs) at any time, including for reasons related to individual performance, Company or individual department/team performance, and market factors.