Job Overview: The candidate will support the overall management of and compliance with State Street Global Cybersecurity (GCS) Policy and Standards. As a member of the GCS Governance, Risk, and Compliance team, the individual will maintain the enterprise information security policies, standards, and processes necessary to support compliance across State Street. This individual will assist the business with the GCS exception process and review/update internal controls, policies and standards for State Street globally. Responsibilities:
Maintains enterprise information security policies, technical standards, guidelines, and procedures necessary to support information security in compliance with established company policies, regulatory requirements, and generally accepted information security controls.
Researches compliance issues/questions for existing and new regulations, and provides interpretation or clarification within the team.
Collaborate with Corporate Compliance, Legal, Regulatory Affairs, Corporate Audit and Enterprise Technology Risk Management as appropriate in assessing State Street internal policy compliance against external requirements.
Coordinate, review and respond for the respective GCS areas covering regulatory compliance assessments and client questionnaires in support of new and current clients using and maintaining our central repository of responses.
Collaborate with other team members throughout the organization ensuring consistency in the alignment of State Street policy, standards, procedures and controls.
Assist and contribute to additional projects and deliverables related to assurance, governance and policy requests as they pertain to GCS initiatives.
Participate in the development implementation review and revisions of compliance procedures and systems within GCS.
Develop understanding of State Street's IT infrastructure and compliance levels pertaining to Cyber and Information Security.
Assist with the establishment of key operational metrics supporting the tracking, status and progress of regulatory requests and questionnaires as they pertain to cyber and information security.
Manage the GCS Policy and Standards exception process.
Excellent verbal, written communication skills and experience presenting across the various levels within the business up to senior leadership.
Ability to interact professionally with a diverse group and in a diverse set of regions: executive, managers, and subject matter experts, North America (NA), Asia-Pacific (APAC), and Europe and the Middle East (EMEA)
Minimum 5 years of experience working in Information Security or general IT areas related to risk management, controls assurance, compliance programs, cybersecurity and information security regulations, industry standards, and internal policies frameworks.
Previous experience creating and/or performing review and gap analysis of information security policies and standards against cybersecurity frameworks
Possess strong knowledge and experience with of one or more of the following cybersecurity frameworks; NIST CSF, NIST 800-53 or ISO 27001/27002.
Project management and reporting experience and the ability to operate in a deadline-oriented environment.
Applies administrative oversight and managerial skills to various projects and assessments.
Certified Information Security Auditor (CISA), Certified Risk & Information Systems Controls (CRISC) or Certified Information Security Manager (CISM) certification preferred or similar Information Security experience.
Possesses a broad and comprehensive understanding of different Information Security standards, policies and compliance regulations.
Are you the right candidate? Yes! We truly believe in the power that comes from the diverse backgrounds and experiences our employees bring with them. Although each vacancy details what we are looking for, we don't necessarily need you to fulfil all of them when applying. If you like change and innovation, seek to see the bigger picture, make data driven decisions and are a good team player, you could be a great fit. Why this role is important to us Our technology function, Global Technology Services (GTS), is vital to State Street and is the key enabler for our business to deliver data and insights to our clients. We're driving the company's digital transformation and expanding business capabilities using industry best practices and advanced technologies such as cloud, artificial intelligence and robotics process automation.
We offer a collaborative environment where technology skills and innovation are valued in a global organization. We're looking for top technical talent to join our team and deliver creative technology solutions that help us become an end-to-end, next-generation financial services company.
Join us if you want to grow your technical skills, solve real problems and make your mark on our industry.
About State Street What we do. State Street is one of the largest custodian banks, asset managers and asset intelligence companies in the world. From technology to product innovation, we're making our mark on the financial services industry. For more than two centuries, we've been helping our clients safeguard and steward the investments of millions of people. We provide investment servicing, data & analytics, investment research & trading and investment management to institutional clients. Work, Live and Grow. We make all efforts to create a great work environment. Our benefits packages are competitive and comprehensive. Details vary by location, but you may expect generous medical care, insurance and savings plans, among other perks. You'll have access to flexible Work Programs to help you match your needs. And our wealth of development programs and educational support will help you reach your full potential. Inclusion, Diversity and Social Responsibility. We truly believe our employees' diverse backgrounds, experiences and perspectives are a powerful contributor to creating an inclusive environment where everyone can thrive and reach their maximum potential while adding value to both our organization and our clients. We warmly welcome candidates of diverse origin, background, ability, age, sexual orientation, gender identity and personality. Another fundamental value at State Street is active engagement with our communities around the world, both as a partner and a leader. You will have tools to help balance your professional and personal life, paid volunteer days, matching gift programs and access to employee networks that help you stay connected to what matters to you. State Street is an equal opportunity and affirmative action employer.