Your role
Are you ready to work in the second line-of-defense for an international financial services institution? Can you build relationships and influence outcomes?
We are looking for a Cyber Risk Controller like you to:
• challenge our 1st line-of-defense's risk-taking activities and risk assessments, working with CDIO Group Technology teams to review risks associated with cyber security and provide guidance on controls
• collaborate with our Cyber Assurance (Red) Team to maximize the impact of technical findings identified towards our residual risk posture around cyber security; take ownership of complex technical output and manage key stakeholders to ensure sustainable remediation will be orchestrated
• be a cyber risk taxonomy specialist to support and challenge CDIO Group Technology as part of the regular Risk Appetite Assessments (RAA) and Risk & Control Self-Assessment (RCSA) processes
Want more jobs like this?
Get Education jobs delivered to your inbox every week.
• perform cyber security risk assessments, thematic reviews and deep dives as well as ad-hoc analysis, investigations, control testing and other risk control initiatives as required
• provide review and challenge to CDIO Group Technology as well as to our business divisions (via our Divisional Information Security Officers) on projects, new initiatives, processes, risk events, incidents, controls as well as regulatory compliance
• influence executives in CDIO Group Technology on key cyber risks and actions required to manage UBS's risk appetite
• represent C&ORC Cyber Risk Control and escalate cyber risk issues/concerns in relevant forums including Technology Risk Forums and Management Committees
Join us
At UBS, we embrace flexible ways of working when the role permits. We offer different working arrangements like part-time, job-sharing and hybrid (office and home) working. Our purpose-led culture and global infrastructure help us connect, collaborate, and work together in agile ways to meet all our business needs.
From gaining new experiences in different roles to acquiring fresh knowledge and skills, we know that great work is never done alone. We know that it's our people, with their unique backgrounds, skills, experience levels and interests, who drive our ongoing success. Together we're more than ourselves. Ready to be part of #teamUBS and make an impact?
Disclaimer / Policy Statements
UBS is an Equal Opportunity Employer. We respect and seek to empower each individual and support the diverse cultures, perspectives, skills and experiences within our workforce.
Your team
You'll work in the C&ORC Cyber Risk Control team in the US (Weehawken, Stamford or Nashville), reporting to the Head of Cyber Risk Control located in Switzerland. We are a dynamic, driven and diverse team of professionals with oversight responsibility for controlling cyber risks arising from any activities within UBS's business divisions, with specific emphasis on oversight of our CISO function within CDIO Group Technology.
Diversity helps us grow, together. That's why we are committed to fostering and advancing diversity, equity, and inclusion. It strengthens our business and brings value to our clients.
Your expertise
• Ideally 8+ years experience in managing and/or overseeing remediation of complex technical cyber & information security findings, within a financial services, regulatory agency or consultancy environment preferred
• a Bachelor's degree in Computer Science, MIS, CIS, etc. (or comparable), advanced degree (MBA, MA) is a plus
• professional Certifications e.g. CISA, CRISC, CISM, CRISC or CISSP would be preferred
• experience in ISO 27001, the NIST Cyber Security Framework or other renowned international cyber risk management frameworks would be a plus
• experience with financial services regulators (such as FED, FFIEC, PRA/FCA, MAS, HKMA, FINMA) would be plus
• strong understanding of core cyber controls, concepts and architectures. In-depth knowledge of cyber security threats and risks, cloud security concepts as well as new technologies such as artificial intelligence, DLT, quantum-safe cryptography etc.
• successful experience of leadership, both in terms of people as well as projects and initiatives
• strong strategic, judgement and integrative thinking skills, deep cyber risk management & -control knowledge, as well as good organizational, communication and influencing skills
• team-oriented with strong interpersonal skills, able to calmly manage conflict and pressure in a demanding, high-volume environment; able to manage escalations in a transparent and controlled manner
• experienced in handling sensitive information with a high degree of discretion
LI-UBS
UBS-MOGUL
*UBS-ACCA
About us
UBS is the world's largest and only truly global wealth manager. We operate through four business divisions: Global Wealth Management, Personal & Corporate Banking, Asset Management and the Investment Bank. Our global reach and the breadth of our expertise set us apart from our competitors.
With more than 70,000 employees, we have a presence in all major financial centers in more than 50 countries. Do you want to be one of us?