Lead IT Risk & Control

Sorry, this job was removed at 04:05 p.m. (PST) on Monday, Jul 08, 2024
Be an Early Applicant
Remote
111K-190K Annually
Fintech • Payments • Professional Services • Software • Financial Services • Cybersecurity • Big Data Analytics
City National Bank proudly offers services, tools and technology that put our people and communities first.
The Role

LEAD IT RISK & CONTROL
WHAT IS THE OPPORTUNITY?
"The Lead IT Risk & Controls Analyst is a subject-area specialist with specialized training, methods and analytic techniques to create recommendations and directions for cyber risk mitigation in a complex technical environment. Focus areas of security assessment by the Lead ITRC Security Analyst includes third party security and overall security program effectiveness in mitigating risk. The ITRC Analyst's goal to create actionable information for IT and business leadership, and to provide objective assessment of cyber security risks for auditors, regulators and external parties. This requires routinely authoring detailed reports and gathering metrics ensure stakeholders receive accurate and complete information. The Lead ITRC tkeeps abreast of external cyber security trends, technologies and cyber risk management approaches, and often works with other teams on cyber risk-related initiatives to provide subject-matter recommendations and guidance to achieve a posture within the bank's overall risk appetite. The Lead ITRC serves as an expert area of specialization. This role is a working lead that provides functional guidance and may coordinates or supervise the daily activities of individual contributors or working teams in areas of specialization.Provides input on resources planning, procedures."
What you will do

  • "Define analysis objectives, collect data from internal and external sources, and evaluate/analyze data to provide objective information on cyber risks for IT and business management with both summary and detailed reporting
  • Assess risk within subject specialty area to evaluate the design and effectiveness of security controls
  • Provide insight and guidance to IT software and hardware upgrades and other projects to ensure production environments meet and exceed minimum security standards and will effectively counter cyber threats
  • Partner with external partners, vendors, law enforcement, and intelligence community as applicable to fulfill reporting and information sharing requirements, and collecting information required for comprehensive risk analysis and assessment
  • Work collaboratively with all Lines of Defense, coordinate and proactively identify, manage and monitor IT Risk.
  • Act as Subject Matter Expert for the activities performed to manage IT Risk
  • Execute IT Risk Assessment (e.g. Risk Control Self Assessments) to identify and quantify the risks and their associated controls.
  • Execute GLBA, NYDFS, SWIFT and Fedline Compliance Assessment
  • Identify and Define Key Performance Indicators (KPIs) metrics and Key Risk Indicators (KRIs) to monitor all risks and ratings to Controls to measure the performance on the control operation.
  • Create new and maintain process and procedural documentation for various risk analysis and risk assessment activities; Highlight industry-based methodologies, techniques or standards (FAIR, NIST, FFIEC, etc.) used as the basis for analysis efforts
  • Publish routine, accurate risk analysis and assessment reports as defined by organizational risk policies and procedures to applicable audiences for each subject area discipline
  • Participate in other security support projects and duties as needed or requested"
  • The role supports T&I in the creation of analytics & reporting to enhance senior management's ability to anticipate and manage risks effectively.
  • Manage the development and execution of first line risk management reporting including setting direction, goals and management awareness of risk and controls.
  • Develop and execute on end-to-end change management of processes to gather and analyze relevant information.
  • Leads the development and execution of processes to support the delivery of Risk Management reporting including the support of audience stakeholder groups.
  • Lead analysis and documentation of information to support risk drivers & metrics.


Must-Have*

  • Bachelor's Degree or equivalent
  • Minimum of 12 years experience in Information/Cyber Security field
  • Minimum of 7 years experience in cyber security operations, incident response, IT risk management or investigation
  • Minimum 3 years' experience managing or coordinating resources such as people or projects


Skills and Knowledge

  • Demonstrated experience analyzing complex cyber security data sets within subject area specialty
  • Demonstrated knowledge of cyber security landscape -- threats, trends, technologies
  • Demonstrated knowledge of financial regulation and control frameworks applicable to cyber security or IT risk
  • Excellent communication and interpersonal skills. Including a strong ability to create positive and professional business relationships with internal clients.
  • Strong commitment to working as a team and providing excellent customer service.
  • Exposure to banking or equivalent highly controlled technology environment is preferred
  • Masters' degree in business, computer science or related field preferred
  • Security certifications (CISSP, GSEC, etc.) are highly desired.
  • Demonstrated experience with Industry or subject specific analysis or assessment frameworks is highly desired (FAIR, NIST CSF, etc.)
  • Experience in banking/financial industry is strongly preferred
  • Formalized training in cyber security analysis or assessment techniques


Compensation
Starting base salary: $111,408 - $189,738 per year. Exact compensation may vary based on skills, experience, and location. This job is eligible for bonus and/or commissions.
*To be considered for this position you must meet at least these basic qualifications
The preceding job description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job.
Benefits and Perks
At City National, we strive to be the best at whatever we do, including the benefits and perks we offer our colleagues. Get an inside look at our Benefits and Perks .
INCLUSION AND EQUAL OPPORTUNITY EMPLOYMENT
City National Bank is an equal opportunity employer committed to diversity and inclusion. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status or any other basis protected by law.'
ABOUT CITY NATIONAL
We start with a basic premise: Business is personal. Since day one we've always gone further than the competition to help our clients, colleagues and community flourish. City National Bank was founded in 1954 by entrepreneurs for entrepreneurs and that legacy of integrity, community and unparalleled client relationships continues to drive phenomenal growth today. City National is a subsidiary of Royal Bank of Canada, one of North America's leading diversified financial services companies.

The Company
Los Angeles, CA
6,300 Employees
Hybrid Workplace
Year Founded: 1954

What We Do

City National Bank, a subsidiary of Royal Bank of Canada, is the largest bank headquartered in Los Angeles with $92.03 billion in assets as of April 30, 2024. Founded in 1954, City National provides personalized banking, investment and trust services in select markets including Los Angeles, Orange County, San Diego, the San Francisco Bay Area, New York City, Nashville, Atlanta, Delaware, Las Vegas, Washington D.C. and Miami.* In addition, the company and its investment affiliates manage or administer $96.83 billion in client investment assets. City National is dedicated to strengthening communities, and in 2023 alone, the company made more than $11 million in charitable contributions to nonprofits that support the communities it serves.
For more information about City National, visit the company’s website at cnb.com.

*City National Bank does business in Miami and the state of Florida as CN Bank.

Gallery

Gallery

Similar Jobs

Remote
United States
115 Employees
180K-230K Annually
Remote
United States
115 Employees
Remote
United States
115 Employees
170K-230K Annually

CrowdStrike Logo CrowdStrike

Next-Gen SIEM & LogScale Professional Services Manager (Remote)

Cloud • Computer Vision • Information Technology • Sales • Security • Cybersecurity
Remote
USA
10000 Employees
110K-190K Annually

Similar Companies Hiring

True Anomaly Thumbnail
Software • Machine Learning • Hardware • Defense • Artificial Intelligence • Aerospace
Los Angeles, CA
131 Employees
Thumbtack Thumbnail
Software • Professional Services • On-Demand • Information Technology • eCommerce
US
1400 Employees
Clari Thumbnail
Software
Los Angeles, CA
665 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account