Head of Security Delivery - Charlotte, United States - Truist

Description

ESSENTIAL DUTIES AND RESPONSIBILITIES

Following is a summary of the essential functions for this job. Other duties may be performed, both major and minor, which are not mentioned below. Specific activities may change from time to time.

Primary Roles & Responsibilities

1. Define and implement the Information Security project delivery framework, target operating model and processes that align to and are integrated with Truist's IT Transformation Office. This includes documenting policies, processes and procedures (playbooks).
2. Build and manage a portfolio of projects, working with the CISO(s), Information Security Managers, Infrastructure and CIO teams to ensure alignment with Program strategy and commitment to scope, budgets a timelines.
3. Actively manage the delivery of all projects to ensure they are implemented effectively and in a timely manner and on budget.
4. Identify, track and manage project risks and resolve blocking issues to produce successful outcomes.
5. Build the Information Security Delivery organization, including implementing resource and hiring plans, performing regular skill assessments and training/certifications, and recruiting/hiring/developing talent in key positions.
6. Motivate and manage a team of cross-functional performers from different job families and organizations and foster a fast-paced and flexible team culture, encouraging and rewarding associates for engaging beyond their job description to get work done.
7. Provide program and project delivery leadership and support to the Information Security team operational functions e.g. GRC, Cyber Operations, Cyber Protection, Identity & Access management.
8. Develop strategic partnerships with consulting and staff augmentation companies that can provide cybersecurity resources to rapidly mature the Program and meet deliverables.
9. Establish a project review process with the CISO Management Team and stakeholders to ensure projects have visibility, accountability is enforced, progress is tracked, and issues are addressed.
10. Provide detailed status reporting on all projects to the CISO Management team, stakeholders on a weekly basis, and to Executive Management and Regulators as needed.
11. Drive continuous improvement by utilizing industry-proven frameworks/methodologies, collecting feedback and metrics (quality, delivery rate, etc.) and developing resource capabilities.
12. Establish strong collaboration, working partnerships and alignment across teams in Truist. Develop a strong "we deliver together" culture.
13. Support the CISO liaising with Regulators and Internal Audit in exams and other matters related to Information Security Delivery.

QUALIFICATIONS

Required Qualifications:

The requirements listed below are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

1. BS IT/ Engineer, Computer Science, or BS Technical.
years professional experience executing large scale multiple million-dollar programs in top 5 USA Banks.
years project management experience leading complex projects and budgets greater than $100M.
4. 7+ years' experience in US Regulatory programs in top 10 USA Banks, delivering regulatory remediations programs and presenting to US regulators (FRBB or OCC).
5. 5+ years' experience in banking with Information Security, preferably within a merger/acquisition environment with significant transformational change with people, process and technology.
6. 3+ years' experience with digital banking deployed on public cloud platforms and leveraging Artificial Intelligence technologies.
7. Manage 100+ experts from Global vendors to support Regulatory remediations across Cloud Infrastructure, Info Security, Financial Applications, Platform Operations, and Governance, Risk & Compliance.
8. Hand on expertise with project methodologies and best practices, both waterfall and agile.
9. Broad knowledge of Information Security frameworks (e.g. NIST, FFIEC), regulations (SOX, GLBA, NYDFS), functions (Anticipate, Protect, Detect, Respond) and cyber controls.
10. Expertise with information security project management, portfolio management, working across IT and Business functions and with Second and Third lines of Defense, and Regulators.
11. Demonstrates strong relationship management skills. Proven ability to quickly build trust and rapport with others in order to structure problems, build consensus, and negotiate agreements.
12. Proven ability to manage large, deadline-driven projects in a way that reduces risk, ensures predictable results, meets or exceeds its timeline.
13. Thrives in a fast-paced environment, can think and act both tactically and strategically.
14. Exhibits high degree of creativity, self-motivation, and commitment to tasks.
15. Ability to create a strong network of relationships among peers, internal partners, external constituencies and decision makers to deliver end products.
16. Experience preparing materials for and comfortable presenting to executive management.
17. Excellent written and oral communication skills.
18. Strong coordination, influencing and negotiation skills.
19. Excellent risk-based judgement and decision making
20. Passionate about building world-class Information Security programs.

General Description of Available Benefits for Eligible Employees of Truist Financial Corporation: All regular teammates (not temporary or contingent workers) working 20 hours or more per week are eligible for benefits, though eligibility for specific benefits may be determined by the division of Truist offering the position. Truist offers medical, dental, vision, life insurance, disability, accidental death and dismemberment, tax-preferred savings accounts, and a 401k plan to teammates. Teammates also receive no less than 10 days of vacation (prorated based on date of hire and by full-time or part-time status) during their first year of employment, along with 10 sick days (also prorated), and paid holidays.