Overview
Skills
Job Details
Perm Opportunity (Client does not sponsor now or in the future)
Industry: Must have investment banking
Salary + Bonus
Title: Director level reporting to the CISO
Location: Onsite in Midtown, NY 10019
Interview: Initial video and in-person interview required
Summary:
The Head of Operational and Cyber Resiliency will be responsible for developing, implementing, and overseeing the bank's strategy to ensure resilience against operational disruptions, cyber threats, and systemic risks. This role will lead enterprise-wide resiliency initiatives, ensuring alignment with regulatory expectations, industry best practices, and emerging threats. The ideal candidate will collaborate closely with technology, risk management, compliance, and business leadership to enhance operational integrity and incident response capabilities. This is a high-impact role requiring deep expertise in cybersecurity, operational risk management, and business continuity planning in a highly regulated financial environment.
Key Responsibilities 1. Enterprise Resilience Strategy Development
- Develop and implement a comprehensive operational and cyber resiliency strategy aligned with regulatory requirements and industry standards.
- Cyber Resiliency and Incident Management
- Oversee the development and execution of the bank's cyber resilience framework, ensuring rapid response and recovery from cyber incidents.
- Business Continuity and Disaster Recovery (BC/DR)
- Develop and maintain enterprise-wide business continuity and disaster recovery plans, ensuring readiness to sustain critical business operations during disruptions.
- Regulatory Compliance and Governance
- Ensure compliance with all relevant regulatory frameworks (e.g., FFIEC, OCC, Basel, DORA) related to operational and cyber resiliency.
- Third-Party and Supply Chain Resilience
- Assess and mitigate risks associated with third-party vendors, ensuring they meet the bank's operational and cyber resilience standards.
- Threat Intelligence and Risk Monitoring
- Develop and oversee an operational risk and threat intelligence program to proactively identify vulnerabilities and emerging threats.
- Leadership and Stakeholder Engagement
- Lead a cross-functional resiliency team, fostering collaboration between IT, risk management, compliance, and business units.
Core Competencies:
Experience & Expertise:
- 15+ years of experience in operational resilience, cybersecurity, business continuity, or risk management within the financial sector.
- Proven leadership experience in a senior resiliency role at a highly regulated financial/banking institution.
- Deep understanding of regulatory requirements such as FFIEC, OCC, Basel, and DORA, with experience managing regulatory interactions.
- Bachelor's degree in cybersecurity, information technology, business continuity, risk management, or a related field (Master's preferred).
- Industry certifications such as CISSP, CISM, CISA, CBCP, or CRISC strongly preferred.
Technical Skills:
- Expertise in cyber resilience frameworks, incident response methodologies, and business continuity planning.
- Strong knowledge of operational risk management, threat intelligence, and IT disaster recovery strategies.
- Experience conducting and overseeing cyber resiliency tests, red team exercises, and tabletop simulations.
- Ability to analyze complex risks and develop practical, actionable resilience strategies.
- Familiarity with cloud resilience, third-party risk management, and systemic risk considerations in the financial sector.
Soft Skills & Leadership:
- Strong executive presence with the ability to engage and influence C-suite leaders and board members.
- Proven ability to lead cross-functional teams and drive enterprise-wide resilience initiatives.
- Excellent verbal and written communication skills, with experience presenting to regulators, auditors, and senior stakeholders.
- Ability to thrive in a high-pressure environment, managing crises and business disruptions with a structured and strategic approach.