Working at the Federal Reserve Bank positions you at the center of the financial world with a unique perspective on national and international markets and economies. You will work in an environment with a diverse group of talented professionals to foster and support the safety, soundness, and vitality of our economic and financial systems. It is a challenge that demands the skills of a financial service professional and the intellectual curiosity of an academicall combined with a passion for public service.
Cybersecurity Risk Specialist Large Bank Supervision
Description of Role:
The Cybersecurity Risk Specialist will conduct Cybersecurity and Information Technology (IT) risk management assessments and examinations primarily for large/complex systemic financial institutions under Federal Reserve supervisory authority. This Risk Specialist will assess financial institutions cybersecurity and IT risk management programs and associated management information systems to ensure they are operating in a safe and sound manner and complying with applicable banking laws, regulations, and policy statements. The Cybersecurity Risk Specialist will lead and / or participate on national examinations of information security and cybersecurity, including assessing business resiliency and vendor risk management from a cybersecurity perspective.
The Cybersecurity Risk Specialist will use sound analysis and reason to develop conclusions and recommendations regarding cybersecurity and risk management practices under review. You will collaborate alongside multiple team members and interact with all levels of management in translating complex technical issues into business implications. You will report to a local IT Exam Manager.
Leads or participates in examinations to determine the effectiveness of a financial institutions cybersecurity and IT risk management program and validate remediation of identified issues.
Perform monitoring across the portfolio of large financial institutions to understand micro (institution specific), horizontal (industry wide/peer), and macro (financial system) cybersecurity risks.
Prepare informative, well supported supervisory products and work papers, effectively communicating complex and problematic supervisory findings and required actions to senior management and boards of directors.
Analyze information and determine an estimated risk and potential impact to the financial institutions and financial services industry.
Contribute to the preparation and delivery of written analyses and presentations on institution-specific and industry trends or latest risk.
Maintain a global awareness of relevant regulations, laws, latest issues, trends, and ongoing developments in the financial services industry.
Education and Experience:
A Bachelors degree is required, with a concentration in a computer science field or relevant work experience in lieu thereof.
A minimum of five years of experience managing or auditing information security technical controls frameworks is preferred. Other relevant experience in technology risk management will also be considered.
Currently holds or is near completion of an industry-recognized information security or IT audit certification (e.g., CISSP, CISM, CISA, CEH and / or vendor certifications).
Experience working in regulatory/government agencies or financial services is preferred.
Up to 65% overnight travel during the course of the year. Travel may be to various locations throughout the U.S.
Desirable Knowledge and Skills:
Advanced knowledge in information security/cyber security, risk management, end point and server technologies, network management/architecture, intrusion detection and prevention systems, vulnerability/pen testing management, and patch management systems.
Capabilities to evaluate an institutions information security program and its ability to identify, protect, respond, and recover from business interruptions.
Our total rewards program offers benefits that are the best fit for you at every stage of your career:
Comprehensive healthcare options (Medical, Dental, and Vision)
401K match, and a fully funded pension plan
Paid vacation and holidays; flexible work environment, healthy workflow
Generously subsidized public transportation
Annual tuition reimbursement
Professional development programs, training and conferences
PLEASE NOTE: The Federal Reserve Bank of Boston is committed to a diverse, equitable and inclusive workplace and to provide equal employment opportunities to all persons without regard to race, color, religion, national origin, sex, sexual orientation, gender identity, age, genetic information, disability, or military service.
This position requires access to confidential supervisory information and/or FOMC information, which is limited to "Protected Individuals" as defined in the U.S. federal immigration law. Protected Individuals include, but are not limited to, U.S. citizens, U.S. nationals, and U.S. permanent residents who either are not yet eligible to apply for naturalization or who have applied for naturalization within the requisite timeframe. Candidates who are not U.S. citizens or U.S. permanent residents may be eligible for the information access required for this position and sponsorship for a work visa, and subsequently for permanent residence, if they sign a declaration of intent to become a U.S. citizen and meet other eligibility requirements.
All employees assigned to this position will be subject to FBI fingerprint/ criminal background and Patriot Act/ Office of Foreign Assets Control (OFAC) watch list checks at least once every five years. All candidates must undergo an enhanced background check and comply with all applicable information handling rules.
The above statements are intended to describe the general nature and level of work required of this position. They are not intended to be an exhaustive list of all duties, responsibilities or skills associated with this position or the personnel so classified. While this job description is intended to be an accurate reflection of this position, management reserves the right to revise this or any job description at its discretion at any time.
Applicants selected will be subject to a security investigation and need the ability to obtain and maintain US Security Clearance.