DescriptionSummary:
As a 1LTR - Cybersecurity team member, you will apply your cybersecurity expertise, knowledge of regulatory requirements, and industry best practices to identify and guide maturity opportunities to support our Cybersecurity function. This is a key role in helping ensure our Cybersecurity team is informed of risks within their domain so that standard and control objectives are met within our risk appetite. The ideal candidate will be able to excel within an evolving technical cybersecurity and risk landscape, function independently, all while developing influential relationships to support their customers.
Duties & Responsibilities:
Support the identification and quantification/qualification of risks within cybersecurity operations, data loss prevention, and encryption for the Cybersecurity segment
Manage the governance of issues through their lifecycle, from ideation to validation and subsequent closure
Execute risk assessments against defined scopes and planned initiatives in alignment with our enterprise risk management frameworks
Support and execute various processes such as Risk and Control Self-Assessment (RCSA), Exception Management, and assigned business governance groups
Provide advisory and guidance on control design, cybersecurity standards/policies, metrics, and processes to help meet regulatory or maturity requirements
Support executive reporting on the health and status of our risk, issues, and control portfolio
Act as a trusted advisor to your customer, helping work through ambiguity and providing a risk perspective to new challenges or opportunities
Deliver timely escalation of all issues requiring attention to senior management.
Performs other duties as assigned.
Basic Qualifications:
- Bachelor's degree in cybersecurity, risk management, or similar field
- Minimum of 5 years of experience in Audit, Compliance, Risk Management or Operational Risk.
- In lieu of a Bachelor's degree 4 additional years of segment-specific or risk related experience may be considered
Preferred Qualifications:
7+ years of combined technology experience in risk management, technology, cybersecurity, or related discipline within financial services industry
3+ years' experience in cybersecurity with a focus on security operations, data loss prevention, and encryption
3+ years' experience in risk management, preferably within the 1st line function
2+ years' experience in one or more cloud platforms AWS, Azure, GCP
2+ years' experience with threat modeling
2 + years' experience with cybersecurity related policy, procedures, or standards governance
2 + years' experience with quantitative/qualitative risk assessments
4+ years of experience working at a Category 3 or higher financial institution
CISSP, GIAC, CISM, or other cybersecurity/risk management certifications
Excellent communication skills required to negotiate internally, often at a senior level.
Exempt Status: (Yes= not eligible for overtime pay) (No= eligible for overtime pay)
Yes
Workplace Type:
Office
Our Approach to Office Workplace Type
Certain positions outside our branch network may be eligible for a flexible work arrangement. We're combining the best of both worlds: in-office and work from home. Our approach enables our teams to deepen connections, maintain a strong community, and do their best work. Remote roles will also have the opportunity to come together in our offices for moments that matter. Specific work arrangements will be provided by the hiring team.
Compensation Range:
$70,000 - $140,000 Annual Salary
The compensation range represents the anticipated low and high end of the base compensation range for this position. Actual compensation will vary based on various factors including but not limited to location, experience, and education. Colleagues in this position are also eligible to participate in an applicable incentive compensation plan. In addition, Huntington provides a variety of benefits to colleagues, including health insurance coverage, wellness program, life and disability insurance, retirement savings plan, paid leave programs, paid holidays and paid time off (PTO).
Huntington is an Equal Opportunity Employer.
Tobacco-Free Hiring Practice: Visit Huntington's Career Web Site for more details.
Note to Agency Recruiters: Huntington will not pay a fee for any placement resulting from the receipt of an unsolicited resume. All unsolicited resumes sent to any Huntington colleagues, directly or indirectly, will be considered Huntington property. Recruiting agencies must have a valid, written and fully executed Master Service Agreement and Statement of Work for consideration.