Posted 4 days ago
No clicks
**Director, Cybersecurity Risk** leads ECS Cyber Risk team, driving cyber risk analyses and strategic decision-making. **Requires 5-7 years of risk experience** with proven ability to quantify and present risks. **Critical thinking skills** are essential for deep dives into metrics and data-driven risk communication. **Advanced NIST 800-53, FAIR** and industry-specific knowledge required. **CISSP, CCSP, OpenFAIR certifications preferred**. Lead risk modeling, priority setting, and policy improvement projects, while **operating in fast-paced environments** and working cross-functionally.
- Compensation
- $126,000 – $255,000 USD
- City
- Not specified
- Country
- Not specified
Currency: $ (USD)
Full Job Description
Job Description:
Note: Fidelity will not provide immigration sponsorship for this position
The Role
The Enterprise Cybersecurity Risk (ECS Cyber Risk) team is seeking an experienced Director-level risk professional to lead in the creation of cyber risk analyses pertaining to ECS. The candidate will understand current and emerging cybersecurity risks and determine key risk scenarios for the ECS Product Areas. The candidate will hold Product Area risk / threat modeling sessions to prioritize top risks (Quarterly). The candidate will advise on backlog prioritization based on risk (Quarterly). The candidate will advise on both exceptions and audit finding risk levels to drive down the number of exceptions and accurately risk rate audit findings. The candidate will quantify cyber risk and present analyses that will allow senior management to make informed decisions based on resulting risk data.
The Expertise and Skills You Bring
Minimum 5-7 years of risk experience quantifying cyber risk scenarios and presenting data in a meaningful and insightful way to senior leaders.
Demonstrated experience in cybersecurity risk management.
Experience managing projects end-to-end, from initial stages of acquiring data from multiple sources and SMEs, to the tracking, maintenance, and closure of a project, with proven ability to integrate data into risk analysis tools and communicate progress effectively across multiple lines and levels.
Advanced understanding of NIST 800-53 Cybersecurity Framework and FAIR
CISSP, CCSP, OpenFAIR certifications preferred.
You have effective communication and excellent presentation skills to senior leaders.
You can deep dive into metrics that will both (1) quantify the work being done and (2) quantify how cyber risk position has improved.
Critical thinking skills to ask detailed questions and fully vet answers to uncover discrepancies and gaps others may not have found is a must.
You can work across business lines to influence, motivate change and help mitigate cyber risk.
You have an advanced understanding of risks pertaining to the following: cloud security, access controls, encryption, vendor security, data exfiltration, application security, perimeter security, customer protection, privileged access, denial of service, unpatched vulnerabilities, and end of life software.
You operate in a fast-paced environment and can complete analyses quickly and accurately integrating new cybersecurity data into risk models as it emerges.
Mathematical/statistic mindset
You bring an investigator approach to deep dive into metrics to understand and communicate actionable risk to senior leadership.
Providing data input into the ECS Heat Map Team
Working with Product Area/Squad leaders to drive lasting security decisions which will substantially mitigate Fidelitys cyber risk.
Evaluating multiple sources, reports, industry trends to compare risk related findings to existing ECS policies and uncover gaps and opportunities for process improvement.
Determining what, who, and where changes are warranted to close gaps, working with appropriate contacts to draft policy enhancement ensuring continued progress.
Placement in the range will vary based on job responsibilities and scope, geographic location, candidates relevant experience, and other factors.
Base salary is only part of the total compensation package. Depending on the position and eligibility requirements, the offer package may also include bonus or other variable compensation.
We offer a wide range of benefits to meet your evolving needs and help you live your best life at work and at home. These benefits include comprehensive health care coverage and emotional well-being support, market-leading retirement, generous paid time off and parental leave, charitable giving employee match program, and educational assistance including student loan repayment, tuition reimbursement, and learning resources to develop your career. Note, the application window closes when the position is filled or unposted.
Please be advised that Fidelitys business is governed by the provisions of the Securities Exchange Act of 1934, the Investment Advisers Act of 1940, the Investment Company Act of 1940, ERISA, numerous state laws governing securities, investment and retirement-related financial activities and the rules and regulations of numerous self-regulatory organizations, including FINRA, among others. Those laws and regulations may restrict Fidelity from hiring and/or associating with individuals with certain Criminal Histories.
Certifications:
Category:
Information TechnologyApply
All fields are required.
Benefits that balance life and work
From our fully paid parent leave to our on-site health and wellness centers, our benefits support the belief that more balance you have, the better you can achieve your goals.
Company overview
Company overview
At Fidelity, we are passionate about making our financial expertise broadly accessible and effective in helping people live the lives they want. We are a privately held company that places a high degree of value in creating and nurturing a work environment that attracts the best talent and reflects our commitment to our associates. We are proud of our diverse and inclusive workplace where we respect and value our associates for their unique perspectives and experience.
Reasonable accommodations
Fidelity will reasonably accommodate applicants with disabilities who need adjustments to participate in the application or interview process. To initiate a request for an accommodation contact the HR Accommodation Team by sending an email to accommodations@fmr.com, or by calling 800-835-5099, prompt 2, option 3.
Equal opportunity employer
Fidelity Investments is an equal opportunity employer. We believe that the most effective way to attract, develop, and retain a diverse workforce is to build an enduring culture of inclusion and belonging.
Applicant screening
At Fidelity, we value honesty, integrity, and the safety of our associates and customers within a heavily regulated industry. Certain roles may require candidates to go through a preliminary credit check during the screening process. Candidates who are presented with a Fidelity offer will need to go through a background investigation and may be asked to provide additional documentation as requested. This investigation includes but is not limited to a criminal, civil litigations and regulatory review, employment, education, and credit review (role dependent). These investigations will account for 7 years or more of history, depending on the role. Where permitted by federal or state law, Fidelity will also conduct a pre-employment drug screen, which will review for the following substances: Amphetamines, THC (marijuana), cocaine, opiates, phencyclidine.
AI Guidelines
Learn about our guidelines for use of AI when applying for a Fidelity job
