At Schwab, you’re empowered to make an impact on your career. Here, innovative thought meets creative problem solving, helping us “challenge the status quo” and transform the finance industry together.
The Cyber Assessments and Resilience Team is a first line of defense team positioned within the Schwab Cybersecurity Services vertical, aligned to ensure that services and applications within the Schwab Portfolio are assessed from a technology risk, cybersecurity risk, and cyber resilience perspective.
In this role, you will be a key player in the Cyber Resilience and 3rd Party Cyber Risk Management activities. You will conduct cybersecurity and technology risk assessments on third-parties that Schwab business relies on to deliver exceptional and secure services to our clients. You will partner with stakeholders to ensure that recovery plan documentation is in place for both internal and 3rd party use cases. You will quantify risk in alignment with Schwab’s Enterprise and Operational Risk Management 2nd line of defense. You will engage directly with third-parties, contract owners, and internal stakeholders to identify methods of mitigating risks associated with both the use of third-parties and the potential for cyber events including ransomware, DDOS attacks, and other attack and recovery scenarios.
What you’ll do
Execute cyber focused risk assessments of third partiesEvaluate the resilience footprint of critical technologies both internal and external to establish areas where recovery plan documentation is neededPartner with key stakeholders to ensure that recovery plan documentation, cyber vaulting requirements, and tabletop exercise requirements are well identified and documentedDocument gaps identified in assessments using the Schwab Enterprise Risk Management frameworkProvide consultative support and collaboration with business partners and third-party management stakeholders to identify enhancement opportunities to strengthen cybersecurity and resilience processes and controlsExecute ad-hoc projects as neededDevelop and maintain good working relationships with colleagues in other technology and risk and control functions at the firm, including Corporate Vendor Management, Technology Risk Management, Corporate Risk Management, Infrastructure & Operations, CORE Technologies, and others. What you haveRequired Qualifications
3-5 years’ experience in third-party cybersecurity, risk assessments, operational risk management, and/or cyber resilienceExperience with contractual terms and conditions and the contractual impact assessments can have 3-5 years’ direct experience performing risk assessments independently3-5 years’ direct experience developing cyber recovery plansExperience as a subject matter expert in third-party risk management, internal controls, financial/banking regulations, risk assessments, and mitigation strategiesFour year degree from an accredited university with a technology or security specializationPreferred Qualifications
One of more of the following certifications is preferred: CISM, CISSP, CCSP, CRISC, CISA, or other standard industry certificationsAbility to manage multiple tasks across many workstreams while prioritizing the most impactful work without constant directionAbility to adjust focus quickly in a fast-paced, heavy workload environmentExperience with one or more of the following tools: ProcessUnity, Ariba Risk, Recorded Future, Risk Recon, OpenPages, Fusion Risk Management
In addition to the salary range, this role is also eligible for bonus or incentive opportunities.
Options Apply for this jobApplyShareRefer a friendRefer Sorry the Share function is not working properly at this moment. Please refresh the page and try again later. Share on your newsfeed Why work for us?Own Your Tomorrow embodies everything we do! We are committed to helping our employees ignite their potential and achieve their dreams. Our employees get to play a central role in reinventing a multi-trillion-dollar industry, creating a better, more modern way to build and manage wealth.
Benefits: A competitive and flexible package designed to empower you for today and tomorrow. We offer a competitive and flexible package designed to help you make the most of your life at work and at home—today and in the future. Application FAQs
Software Powered by iCIMS
www.icims.com