Cybersecurity Strategy Governance - Greenwich, CT (Hybrid - 3 Days Onsite & 2 Days Remote) - 6 Months Contract

Job Details:

Job Title: Cybersecurity Strategy Governance

Location: Greenwich, CT (Hybrid - 3 Days Onsite & 2 Days Remote)

Duration: 6 Months Contract

Requirements:

• Cybersecurity Strategy & Governance:
• Deep understanding of cybersecurity strategy development, specifically tailored for the FinTech sector.
• Expertise in building, enhancing, and executing cybersecurity programs in alignment with industry standards.
• Ability to integrate security and tech risk protocols into the organization's culture, especially in a tech-forward environment.
• Strong knowledge of risk management frameworks (e.g., NIST, ISO 27001/27002, CIS Controls).
• Experience aligning cybersecurity strategy with broader business goals, ensuring seamless integration with the tech organization.
• Implementation & Integration Expertise:
• Proven experience in the implementation of security protocols and processes across tech environments.
• Ability to take foundational cybersecurity elements (like employee badging protocols) to the next level of maturity.
• Expertise in integrating cybersecurity measures into day-to-day tech operations and workflows.
• Hands-on experience implementing secure DevOps (DevSecOps) and automating security testing within the CI/CD pipeline.
• Strong knowledge of integration processes for security tools and technology stacks.
• Risk Management & Mitigation:
• Experience in tech risk identification, assessment, and mitigation, especially in dynamic FinTech environments.
• Capability to enhance and mature risk management processes with measurable outcomes.
• Ability to evaluate and prioritize risks based on business impact and technical feasibility.
• Experience in advising on risk mitigation strategies for regulatory compliance, financial data security, and operational integrity.
• Cybersecurity Awareness & Cultural Change:
• Ability to drive change management initiatives to build a culture of security within the organization.
• Strong communication skills to articulate cybersecurity initiatives across different levels of the organization (from technical staff to executives).
• Experience in employee training and awareness programs, including securing end-user devices, threat awareness, and safe data practices.
• Technical Skills:
• Familiarity with cybersecurity tools and technologies, including firewalls, endpoint protection, SIEM, identity and access management (IAM), encryption, and vulnerability management tools.
• Knowledge of cloud security protocols and managing security in hybrid cloud environments.
• Experience with security orchestration and automation tools.
• Familiarity with regulatory compliance and data protection frameworks specific to FinTech (e.g., GDPR, PSD2, SOC 2, PCI DSS).
• Leadership & Stakeholder Management:
• Proven ability to lead and collaborate with cross-functional teams, including IT, operations, legal, compliance, and business stakeholders.
• Strong project management skills, with experience leading security-focused projects from strategy through execution.
• Experience in advising C-level executives (CISO, CTO) on security initiatives, strategy, and operational execution.
• Ability to manage external vendors and service providers related to cybersecurity.
• Experience in the Financial Services Sector:
• Previous experience working within financial services, especially in a fintech or bank setting.
• Understanding of the regulatory and compliance landscape for financial institutions (e.g., OCC, FINRA, FFIEC).
• Familiarity with financial technology systems and the unique cybersecurity challenges they present.