Logo
M&T Bank

Cybersecurity Manager – Security Configuration Management

M&T Bank, Greendale, Wisconsin, United States, 53129


Cybersecurity Manager – Security Configuration Management

M&T Bank : With a community bank approach, M&T Bank helps people reach their personal and business goals with banking, mortgage, loan, and investment services.The Bank sponsors individuals for TN and H-1B transfers on a case-by-case basis. Please note that this position is not open to anyone on an F-1 student visa including those eligible for CPT/OPT or the Stem OPT extension.This role offers a hybrid work schedule; offering the flexibility to work remotely two days a week, while providing the opportunity for in-person collaboration at our Buffalo, NY Tech Hub.Overview:Provides leadership and direction in support of M&T’s security configuration management practice. As a leader within the Cybersecurity Department, will manage Subject Matter Experts (SMEs) with diverse responsibilities including security configuration management, database security scanning, and file integrity monitoring.Primary Responsibilities:Acquire and manage the necessary resources, including leadership support, financial resources, and key security personnel, to support cybersecurity goals and objectives and reduce overall organizational risk.Lead stakeholders and manage projects and initiatives to establish and maintain enterprise continuity of operations program, strategy, and mission assurance.Lead and manage security improvement actions to evaluate, validate, and implement solutions as required within the team.Lead, align, and manage cybersecurity priorities within the Department's overall security strategy.Lead efforts to review and improve the effectiveness of the enterprise's cybersecurity safeguards to ensure they provide the intended level of protection.Coordinate cybersecurity risk assessments and provide plans, guidance, and recommendations for risk mitigation strategies.Oversee the preparation, creation, distribution, and maintenance of plans, instructions, guidance, and Standard Operating Procedures (SOPs) concerning the security of Cybersecurity Operations for the team.Lead and oversee that cybersecurity awareness, basics, literacy, and training are provided to operations personnel commensurate with their responsibilities within the team.Review, evaluate, recommend, and coordinate protective or corrective measures when a cybersecurity incident or vulnerability is discovered.Exercise usual authority of a manager concerning staffing, performance appraisals, promotions, salary recommendations, performance management, and terminations.Understand and adhere to the Company’s risk and regulatory standards, policies, and controls in accordance with the Company’s Risk Appetite. Design, implement, maintain and enhance internal controls to mitigate risk on an ongoing basis. Identify risk-related issues needing escalation to management.Promote an environment that supports diversity and reflects the M&T Bank brand.Maintain M&T internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators as applicable.Complete other related duties as assigned.Scope of Responsibilities:Leads M&T’s security configuration management program, with the goal of protecting systems from digital threats, ensuring compliance with regulations, and maintaining the integrity of customer information. This program includes establishment of baseline configurations, monitoring of configurations, file integrity monitoring, and database security scanning. Duties include managing daily operations, recommending and implementing new strategies, revising or creating new processes and procedures, and leading personnel and staff.Oversee analytics used to analyze gaps in efficiency and established process, actions, or metrics to improve the Department's threat defense posture, to include configuration drift.Responsible for generation of security configuration management KRIs (Key Risk Indicators) and the communication and escalation issues to management.Education and Experience Required:

Associates degree in applicable discipline and a minimum of 7 years’ relevant work experience, or in lieu of a degree, a combined minimum of 9 years’ higher education and/or work experience, including a minimum of 7 years’ relevant work experience.Minimum of 2 years’ work leadership, supervisory and/or managerial experience.Relevant work experience in two or more of the following Cybersecurity domains: Security and Risk Management, Asset Security, Security Engineering, Communication and Network Security, Identity and Access Management, Security Testing and Security Operations.Knowledge of Cybersecurity operational processes.Knowledge of Cybersecurity threats, vulnerabilities, emerging trends, and regulatory and operational impacts.Experience utilizing feedback to drive process and service improvement.Experience managing stakeholder relationships, including determining needs, requirements, and resources, and managing stakeholder expectations while committing to delivering quality results.Proven ability to communicate complex information, concepts, or ideas in a confident, accurate, and well-organized manner through verbal, written, and/or visual media.Experience adjusting to and operating in a diverse, challenging, and unpredictable fast-paced work environment.Experience coordinating, collaborating, and disseminating information to subordinate, peer, and leadership teams, departments, and organizations.Experience advising and providing assistance to operations and intelligence decision makers in response to dynamic situations.Experience managing and leading a Cybersecurity team of analysts, including training and development of staff.Experience serving as an escalation point for Cybersecurity incidents, vulnerabilities, and events.Technical experience and understanding of testing and maintaining network infrastructure requirements, including hardware and software systems.Prior experience translating functional organizational and department requirements into logical and technical Cybersecurity solutions.Experience with managing operations following organizationally-specific guidelines and documents.Knowledge of state, Federal, and industry-specific guidelines.Experience reviewing, verifying, and revising Cybersecurity and operational documentation reflecting the application or system security design features.Experience developing Cybersecurity strategies and plans.Education and Experience Preferred:

Bachelor degree in an applicable discipline.Minimum of 5 years’ demonstrated job progression and relevant work experience in two or more of the following Cybersecurity domains: Security and Risk Management, Asset Security, Security Engineering, Communication and Network Security, Identity and Access Management, Security Testing and Security Operations.Experience in implementing and operating programs providing:Data Security / Data Security Posture ManagementFile Integrity MonitoringLocation:

Buffalo, New York, United States of America.M&T Bank is committed to fair, competitive, and market-informed pay for our employees. The pay range for this position is $110,635.01 - $184,391.68 Annual (USD). The successful candidate’s particular combination of knowledge, skills, and experience will inform their specific compensation.

#J-18808-Ljbffr