Contribute to leading-edge security and resilience efforts, advancing protective strategies and propelling continuous improvement.

As an Assessments & Exercises Vice President in Cybersecurity & Tech Controls, you will contribute significantly to enhancing the firm's cybersecurity or resiliency posture by using industry-standard assessment methodologies and techniques to proactively identify risks and vulnerabilities in people, processes, and technology. Design and deploy risk-driven tests and simulations (or manage a highly-skilled team that does) and inform analysis to clearly outline root-causes. In this role, you will evaluate preventative controls, incident response processes, and detection capabilities, and advise cross-functional teams on security strategy and risk management.

Job responsibilities

Provide leadership across all aspects of testing management for internal and external requirements, spanning the entire engagement lifecycle (i.e., plan, design, conduct, and assess) to include scheduling meetings, reserving venues, facilitating discussions, and providing senior leader project updates Lead engagement with cross-functional teams to develop comprehensive assessment reports – including detailed findings, risk assessments, and remediation recommendations – making data-driven decisions that encourage continuous improvement Evaluate controls for effectiveness and impact on operational risk, as well as opportunities to automate control evaluation and explore remediation opportunities Identify and address opportunities in process, procedures, tooling, and knowledge management.  Support overall team strategy and capability uplift initiatives to drive rapid maturity  Work across the FTR organization to drive the overall stakeholder engagement strategy, core process uplift activities, and risk management practices. Additionally, to drive Firmwide Technology Resiliency testing requirements with regulators where required.   Utilize threat intelligence and security research to stay informed about emerging threats, vulnerabilities, industry best practices, and regulations. Apply this knowledge to enhance the firm's assessment strategy and risk management. Engage with peers and industry groups that share threat intelligence analytics

Required qualifications, capabilities, and skills

Bachelor’s Degree in Computer Science or related disciplines 5+ years of experience in cybersecurity or resiliency, with demonstrated exceptional organizational skills to plan, design, and coordinate the development of offensive security testing, assessments, or simulation exercises Familiarity with how key international financial systems operate, to include an understanding of the current threat landscape, operational resiliency considerations, and possible systemic risk scenarios. Experience formulating and/or interpreting threat and risk analyses of cyber adversary techniques, technology disruptions, terrorist attacks, severe weather, and other major hazards Experience developing and presenting briefings to collaborative partners in addition to large group meeting facilitation and logistics planning  Excellent writing skills and ability to communicate effectively. Proficiency in the use of Microsoft Office and related technologies.  The ideal candidate must demonstrate exceptional organizational skills necessary to plan, design, and coordinate the development of simulations ensuring crisis management and incident response procedures are integrated across the Firm

Preferred qualifications, capabilities, and skills

Hold relevant industry certifications – such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Offensive Security Certified Professional (OSCP)– showcasing advanced expertise in cybersecurity and offensive testing methodologies or resiliency Background in metrics development, risk analysis & visualization, and automation is a plus