Vice President - Adoption Readiness Assessor

Contribute to leading-edge security and resilience efforts, advancing protective strategies and propelling continuous improvement.

As a Vice President - Adoption Readiness Assessor within Cybersecurity Technology & Controls , you will contribute significantly to enhancing the firm's cybersecurity or resiliency posture by using industry-standard assessment methodologies and techniques to proactively identify risks and vulnerabilities in people, processes, and technology.

Design and deploy risk-driven tests and simulations (or manage a highly-skilled team that does) and inform analysis to clearly outline root-causes.

In this role, you will evaluate preventative controls, incident response processes, and detection capabilities, and advise cross-functional teams on security strategy and risk management.

Job responsibilities


* Collaborate closely with cross-functional teams to develop comprehensive assessment reports - including detailed findings, risk assessments, and remediation recommendations - making data-driven decisions that encourage continuous improvement


* Apply this knowledge to enhance the firm's assessment strategy and risk management.

Engage with peers and industry groups that share threat intelligence analytics


* Assess and perform IT general control and application control testing; facilitate identification of findings, relevant compensating controls, remediation, validation, and closure of findings within defined timeframes.


* Execute multiple controls adoption readiness assessments.


* Evaluate the functionality of existing and new technology platforms to drive adherence to control standards.


* Track and communicate overall progress of various program, ensuring complete and timely reporting on program status to senior management stakeholders.


* Ensure quality standards are achieved in development and maintenance of program documentation.

Required qualifications, capabilities, and skills


* Obtain 5+ years of experience in cybersecurity concepts, with demonstrated exceptional organizational skills to plan, design, and coordinate the development of offensive security testing, assessments, or simulation exercises


* Knowledge of US financial services sector cybersecurity or resiliency organization practices, operations risk management processes, principles, regulations, threats, risks, and incident response methodologies


* Excellent communication, collaboration, and report writing skills, with the ability to influence and engage stakeholders across various functions and levels


* Working knowledge of IT controls experience as a practitioner or lead with a Big Four or top IT consulting firm.


* Working knowledge of information technology and auditing of IT general controls (SOX / SOC 1 / SOC 2).


* Demonstrated experience to simultaneously lead multiple on-going assessments across different groups of stakeholders.


* Proven ability to lead meetings, problem solving to i...