Career Search

Sr Cyber Sltns Architect - 3DJPP in Buffalo, NY at M&T Bank

Date Posted: 7/13/2018

Job Snapshot

  • Employee Type:
    Full-Time
  • Location:
    Buffalo, NY
  • Job Type:
    Design
  • Experience:
    Not Specified
  • Date Posted:
    7/13/2018
  • Job ID:
    3DJPP

Job Description

M&T Bank

Sr Cyber Solutions Architect

Buffalo, NY

Alternate Location: M&T Footprint

 

Function:
Uses professional knowledge, skills and experience to lead a security practice focused on specialized assessment of security controls for systems and applications. Leverages a risk-based approach to ensure appropriate security principles and controls are applied during the system development life cycle to meet stakeholder objectives and protect customer and corporate assets in line with the enterprise risk appetite
Responsibilities:
Understand enterprise architecture, identifying security gaps, developing controls and designing solutions that meet business objectives while complying with security standards.
Recommend appropriate security controls to protect the confidentiality, integrity and availability of customer and corporate data in line with the enterprise risk appetite.
Document and verify recommended security controls are aligned with Bank policies and standards as well as industry best practices, ensure proper documentation of exceptions to standards and/or recommend mitigating controls.
Work with Business teams and Cybersecurity leadership to identify and recommend exceptions to standards for projects.
Participate in the development and refinement of standards with Cybersecurity Policy team.
Prepare required systems and applications security documentation, ensuring their alignment with all applicable laws, regulations, Bank policies and standards, as well as industry best practices.
Present technical information to technical and non-technical audiences to ensure business understanding of security controls and recommendations. Present recommendations to various levels within the organization, up to and including senior management.
Communicate required systems and applications security controls to owners or technical leads, ensuring their alignment with all applicable laws, regulations, Bank policies and standards, as well as industry best practices.
Engage with Technology teams and management to identify security risks of proposed projects and recommend system/application modifications.
Remain current with industry trends and security threats to advise management on how to mitigate and contain risks to the business. Prepare and deliver management level presentations to communicate trends and threats.
Mentor less experienced Solutions Architects on Cybersecurity principles and application, in relation to Bank standards.
Understand and adhere to the Company’s risk and regulatory standards, policies and controls in accordance with the Company’s Risk Appetite. Identify and present to Management risk-related issues needing escalation to management.
Promote an environment that supports diversity and reflects the M&T Bank brand.
Maintain M&T internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators as applicable.
Complete other related duties as assigned.
Required Qualifications:
Associate’s degree and a minimum of 7 years’ relevant work experience, or in lieu of a degree, a combined minimum of 9 years’ higher education and/or work experience, including a minimum of 7 years’ relevant work experience
Strong knowledge of Cybersecurity principles and industry best practices, relevant to confidentiality, integrity and availability
Proven knowledge of information technology security principles and implementation methods (e.g., firewalls, demilitarized zones, encryption, Active Directory / LDAP, SAML)
Skill in selecting security controls based on confidentiality, integrity and availability requirements of systems
Experience with handling multiple projects, meeting strict deadlines, and overseeing project tasks for less experienced team members
Preferred Qualifications:
Bachelor's degree
CISSP (Certified Information Systems Security Professional), or working towards certification within one year of entry into position
CRISC (Certified Risk and Information Systems Control) certification or Cybersecurity domain-related industry-recognized certification
Knowledge of Risk Management framework
Working knowledge of project management methodology
CISSP (Certified Information Systems Security Professional), or working towards certification within one year of entry into position
Knowledge of organizational security policies, standards and procedures
Knowledge of organization's risk tolerance and/or risk management approach
Strong knowledge of security technologies and architecture, including encryption, cloud network security design, role based access control, perimeter security and application security
Knowledge of Cybersecurity threats
Knowledge of emerging security issues
Knowledge of the security assessment and authorization process
Ability to develop or recommend analytic approaches or solutions to problems and situations for which information is incomplete or for which no precedent exists
Experience in conducting security review of systems
Working knowledge of the current version of the NIST (National Institute of Standards & Technology) SP800-53 Controls, or other recognized control frameworks, such as COBIT or ISO

 

We encourage candidates with relevant military experience to apply.

 

About M&T

At M&T, we strive to be the best place our employees ever work, the best bank our customers ever do business with and the best investment our shareholders ever make. So when looking to advance your career, look to M&T.  As a top 20 US bank holding company and one of the best performing regional banks in the country, we offer a wide range of performance based career development opportunities for talented professionals. And through our longstanding tradition of careful, conservative and consistent management and a strong commitment to the communities we serve, we continue to grow with a focus on the future.M&T Bank Corporation is an Equal Opportunity/Affirmative Action Employer.
M&T Bank Corporation does not sponsor individuals for the purpose of obtaining H-1 Visas.
M&T Bank Corporation has policies and procedures in place to promote a drug free workplace.