Third Party Cyber Resilience-director - New York, United States - Sumitomo Mitsui Banking Corporation

Sumitomo Mitsui Banking Corporation
Sumitomo Mitsui Banking Corporation
Verified Company
New York, United States

2 weeks ago

Mark Lane

Posted by:

Mark Lane

beBee recruiter
Description
SMBC Group is a top-tier global financial group.

Headquartered in Tokyo and with a 400-year history, SMBC Group offers a diverse range of financial services, including banking, leasing, securities, credit cards, and consumer finance.

The Group has more than 130 offices and 80,000 employees worldwide in nearly 40 countries. Sumitomo Mitsui Financial Group, Inc. (SMFG) is the holding company of SMBC Group, which is one of the three largest banking groups in Japan.

SMFG's shares trade on the Tokyo, Nagoya, and New York (NYSE:
SMFG) stock exchanges.

In the Americas, SMBC Group has a presence in the US, Canada, Mexico, Brazil, Chile, Colombia, and Peru.

Backed by the capital strength of SMBC Group and the value of its relationships in Asia, the Group offers a range of commercial and investment banking services to its corporate, institutional, and municipal clients.

It connects a diverse client base to local markets and the organization's extensive global network. The Group's operating companies in the Americas include Sumitomo Mitsui Banking Corp.

(SMBC), SMBC Nikko Securities America, Inc., SMBC Capital Markets, Inc., SMBC Rail Services LLC, Manufacturers Bank, JRI America, Inc., SMBC Leasing and Finance, Inc., Banco Sumitomo Mitsui Brasileiro S.A., and Sumitomo Mitsui Finance and Leasing Co., Ltd.


The anticipated salary range for this role is between $194,000.00 and $224, The specific salary offered to an applicant will be based on their individual qualifications, experiences, and an analysis of the current compensation paid in their geography and the market for similar roles at the time of hire.

The role may also be eligible for an annual discretionary incentive award. In addition to cash compensation, SMBC offers a competitive portfolio of benefits to its employees.


Role Description:


  • Responsible for building a Third-Party Cyber Resilience program designed to increase planning and crisis response capabilities supporting third party risk management, vendor management, information technology, data management, cybersecurity, cyber resilience, and operational resilience management across various businesses, group companies, and functions of the bank and reporting to executive leadership, as necessary.
  • Design and participate in cybersecurity exercising involving 3rd party incident and crisis response engagement.
  • Identify and implement cyber incident readiness and thirdparty cyber resilience related improvements in alignment with regulatory expectations.
  • The Cyber Resilience department is a 1st Line of Defense (LOD) in its role of monitoring and assessing business practices, security, and technology as it related to Resilience. The Information Security Group implements a framework designed to protect data and information assets from a wide range of threats to ensure resilience, business continuity, minimize disruption, and to maximize returns on investments and business opportunities.
  • Reporting to the Director of Cyber Resilience Governance, the Director supports the 1st LOD Information Security Group Department Americas Division's (GPDAD) managing activities related to Cyber Incident Readiness focusing on Third-Party Resilience for the Combined U.S. Operations (CUSO) in accordance with US Regulations, Head Office policies and industry practices for Information Security and Operational Resilience

Role Objectives:


  • Maintain approved annual budgetary amount for the approved cyber incident readiness and thirdparty cyber resilience related projects.
  • Maintain interfaces /relationships with Business, Technology, Operational Resilience including Business Continuity, other SMBC AD entities and other SMBC regions' key stakeholders
  • Develop, enhance, and implement cyber incident readiness and thirdparty resilience processes, policies, standards, and controls aligning with and complementing the existing business and technology incident response processes and plans.
  • Lead cyber incident readiness maturity related projects to achieve organizational objectives.
  • Actively participate in Cyber Incident Response Team in managing thirdparty incidents to provide resilience guidance and management through resolution including post analysis review of vendor and remediation activities.
  • Review vendor (thirdparty) contracts and recommend changes to improve thirdparty cyber resilience capabilities, incident response communication, and increased visibility with third parties.
  • Support communication with third parties during cyber incident, zeroday threat or high vulnerability environment event. Obtain thirdparty situational awareness and status on threat mitigation instructions.
  • Design and participate in cybersecurity exercising involving thirdparty incident and crisis response engagement. Coordinate continuous improvement of thirdparty incident response coordination.
  • Support group companies and Incident Response SOC in the creation of scenariobased workarounds, communications
More jobs from Sumitomo Mitsui Banking Corporation
See all jobs of Sumitomo Mitsui Banking Corporation