Cybersecurity eGRC Risk Analyst 9/19/2017
M & T Bank
JOB DESCRIPTIONAPPLY M&T Bank
EGRC Cybersecurity Risk Analyst
Uses professional knowledge, skills, and experience to lead a security practice, applying and testing regulatory and compliance requirements, guiding, supervising, and/or mentoring team members and implementing information security programs and systems as it relates to the Cybersecurity eGRC risk module.
Act as an expert in information Security governance, compliance, and risk management and develops and maintains the information security governance, risk analysis, and compliance methodology that is used to assess all areas of bank operations as it related to eGRC. Provide centralized information security governance, compliance, and risk management expertise to functional areas throughout the organization. Assists functional areas to make sound business decisions based upon these considerations.
Essential Position Responsibilities
Subject matter expert Cybersecurity-owned eGRC modules (e.g., Application Lifecycle, FFIEC Assessment, Access Recertification, Vulnerability Risk Management, and Cybersecurity Third Party Risk Management Due Diligence Workspaces)
Administrative support of the above referenced modules in eGRC.
Maintain and launche periodic assessments and recertifications to application owners, cost center managers and their designees.
End user support.
Tracking and reporting on status related to the outstanding questions, findings, remediation, etc.
Define requirements for enhancements to existing modules and supports user acceptance testing
Ownership of the 2 year roadmap for the eGRC modules referenced above.
Provide statistical reporting for the modules owned in eGRC
Bachelors Degree or equivalent work experience. Education and experience in information security or information technology preferred.
7 years professional / management experience required or in lieu of a Bachelor's degree, 11 years of professional experience required.
2 years in information security, governance, compliance, risk management, and/or similar discipline.
Experience working with cross-functional teams is useful.
Excellent written and verbal communication skills.
M&T Bank Corporation is an Equal Opportunity/Affirmative Action Employer. M&T Bank Corporation does not sponsor individuals for the purpose of obtaining H-1 Visas. M&T Bank Corporation has policies and procedures in place to promote a drug free workplace.