Cybersecurity Governance Specialist

Overview: Responsible for providing input, support, and analysis to general cybersecurity business processes. Assists in the creation of new or updating of existing processes and policies that ensure resiliency and security of organization. Primary Responsibilities: Build out job aids and process documentation to ensure consistent framework across all teams and shifts. Participate in the review and update of policies and procedures pertaining to various governance areas. Conduct and document research on industry best practices and regulatory requirements to inform policy development. Maintain systems and processes for monitoring compliance with established policies and procedures. Analyze and report on compliance data to provide insights and recommendations to Cybersecurity leadership. Collaborate with Cybersecurity, Technology, and First Line Risk teams and, at times, business lines to proactively mitigate risk through existing policies and procedures. Gather and share data to peers and leadership for internal audit and regulatory requests, ensuring highest degree of accuracy. Assists various aspects of remediation activities by drafting key actions, timeline, and communication plan. Effectively communicate governance activities and updates to stakeholders across Cybersecurity teams. Proactively respond to ad-hoc Cybersecurity analysis requests, questions, and issues. Maintain vendor relationships for specific security products or solutions, including communication around maintenance, issue resolution, and troubleshooting. Strategize with leadership to manage vendor relationships by informing budget for future tools and needs. Understand and adhere to the Company’s risk and regulatory standards, policies, and controls in accordance with the Company’s Risk Appetite. Design, implement, maintain, and enhance internal controls to mitigate risk on an ongoing basis. Identify risk-related issues needing escalation to management. Promote an environment that supports belonging and reflects the M&T Bank brand. Maintain M&T internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators as applicable. Complete other related duties as assigned. Scope of Responsibilities: Partners with peers, manager, Cybersecurity team, First Line Risk team Leverages established directions, policies, and guidelines to accomplish work. Work is reviewed for accuracy and overall quality. Working knowledge of 1-2 cybersecurity platforms and applications within function Manager Responsibilities: No supervisory responsibilities. Education and Experience Required: Bachelor's degree and a minimum of 2 years’ relevant work experience, or in lieu of a degree, a combined minimum of 6 years’ higher education and/or work experience inclusive of a minimum 1 year work experience in Cybersecurity, Technology, or Risk/Audit Demonstrated working knowledge of cybersecurity principles and compliance requirements Education and Experience Preferred: Working knowledge of 1-2 cybersecurity platforms and applications within function Proven experience thinking critically and solving problems Strong written and verbal communication skills Ability to collaborate effectively with all levels of personnel and business partners across the organization Demonstrated working knowledge of technology risk principles and compliance requirements Proven experience translating technical requirements into clear policies and procedures M&T Bank is committed to fair, competitive, and market-informed pay for our employees. The pay range for this position is $80,900.00 - $134,800.00 Annual (USD). The successful candidate’s particular combination of knowledge, skills, and experience will inform their specific compensation. Location Buffalo, New York, United States of America Great companies have an enduring sense of purpose. At M&T, our purpose is a simple one: make a difference in people’s lives and uplift the communities we serve. M&T Bank Corporation is a financial holding company headquartered in Buffalo, New York. M&T’s affiliates offer advice, guidance, expertise and solutions across the entire financial spectrum, combining M&T Bank’s traditional banking services with the wealth management and institutional capabilities offered by Wilmington Trust. M&T Bank has a network of over 1,000 branches and 2,200 ATMs that span 12 states from Maine to Virginia and Washington, D.C. For more than 165 years, M&T has strived to take an active role in our communities and build long-lasting relationships with our customers. We are a bank for communities—combining the capabilities of a large bank with the care of a locally focused institution. As an employer of choice, we are proud to offer competitive benefits ranging from medical and retirement to forty hours of paid volunteer time, each year. Our core values – integrity, ownership, collaboration, curiosity, and candor – drive the work we do. We seek to further build upon our record of success by bringing in top talent and fresh skill sets while continuing to support the growth and development of all our team members. View M&T’s Human Capital Report to learn more. Ready to join our team? Submit your application today! If you are unable to apply through this site due to technical issues or need an accommodation to apply, please contact us at [email protected] for assistance. M&T Bank is unwavering when it comes to providing equal employment opportunities to all employees and applicants without regard to race, color, national origin, religion, ethnicity, sex, gender identity, age, disability, citizenship, pregnancy, veteran status, military status, marital status, sexual orientation, genetic information or any other characteristic protected under applicable federal, state or local laws. M&T Bank Corporation has policies and procedures in place to promote a drug free workplace. Career Site Privacy Notice Apply tot his job Apply To this Job