Director of Cyber Resiliency

Role:

• Design, implement, and optimize the bank’s cyber resilience strategy aligned with NIST CSF 2.0, ISO 27001, and CRI Profile 2.0.
• Develop and maintain incident response playbooks, crisis management plans, and cyber recovery strategies.
• Establish and track key risk indicators (KRIs) and key performance indicators (KPIs) to measure the effectiveness of cyber resiliency programs.
• Lead the Cyber Incident Response Team (CIRT) in identifying, containing, and mitigating cyber threats.
• Serve as the primary point of escalation for high-priority security events, working closely with SOC, Threat Intelligence, and Vulnerability Management teams.
• Collaborate with law enforcement, regulators, and third-party experts on cyber investigations and reporting.
• Ensure compliance with financial regulations, including SEC, FINRA, NYDFS, PCI-DSS, GDPR, and CIS controls.
• Develop regulatory reporting frameworks and coordinate audits related to cyber resiliency.
• Work closely with Risk, Compliance, and Legal teams to provide insights on privacy and regulatory matters.
• Assess and mitigate cyber risks associated with vendors, third parties, and clients during incidents.
• Lead third-party security assessments and due diligence activities to ensure compliance with security policies.
• Develop and conduct cyber resilience exercises, including red team/blue team drills, tabletop simulations, and attack simulations.
• Provide training to executives and cross-functional teams on cyber crisis response and best practices.
• Act as a trusted advisor to executive leadership, providing strategic insights on emerging threats and cyber resiliency trends.
• Partner with technology, risk management, and compliance teams to embed cyber resilience into enterprise risk frameworks.
• Extensive experience in cybersecurity, cyber resilience, incident response, and risk management within the financial sector.
• Expert knowledge of industry frameworks (NIST CSF, ISO 27001, FFIEC, CRI Profile 2.0) and financial regulations (SEC, FINRA, NYDFS, PCI-DSS, GDPR).
• Proven experience leading large-scale cyber incidents and crisis management efforts.
• Strong background in SOC operations, cyber threat intelligence, vulnerability management, and forensic investigations.
• Experience working with third-party vendors, security assessments, and compliance programs.
• Proficiency in security tools such as Splunk, Microsoft Defender, Proofpoint, ServiceNow, Azure, and Atlassian products.
• Strong communication and leadership skills, with the ability to engage executive stakeholders and drive enterprise-wide initiatives.
• Relevant certifications preferred: GIAC Security Essentials (GSEC), GIAC Security Leadership (GSLC), CompTIA Network , Microsoft Azure Security Certifications.