Director, Cybersecurity

at Fidelity Investments
Published August 30, 2022
Location Merrimack, NH
Category Default  
Job Type Full-time  

Description

Job Description:Position Description:Creates security profiles to protect financial platforms, applications, and data. Analyzes corporate security policies and controls, Information Technology (IT) development practices, and technology posture to drive adoption and implementation of Cybersecurity control programs. Identifies, measures, and reduces cyber security risks. Draws on in-depth knowledge of the business or function to provide business unit-wide Cybersecurity solutions. Researches and recommends new technologies in support of the strategic direction of the business unit. Researches and recommends appropriate models, methods, tools, and technologies to achieve business-unit-wide solutions.Primary Responsibilities: Protects critical financial data and infrastructure and mitigates risk across critical business and infrastructure applications. Defines implementation approaches, and evaluates alternative solutions that align with strategic goals while reducing 2018friction with business unit deployments. Plans and leads cybersecurity control implementation adoption efforts. Oversees cross-divisional or company Cybersecurity initiatives. Provides leadership, technical supervision, and expertise to multiple teams in broad technical areas on complex organization-wide projects. Plans and leads organization-wide Cybersecurity initiatives. Provides business unit requirements to program teams for maximum effectiveness. Consults on the development and delivery of major Cybersecurity initiatives for the business unit. Recommends and influences organization wide policies regarding security controls and processes. Reviews and advises on departmental technical policies and procedures. Supports IT Risk functions on regulatory, client, or other examinations, audits or controls assessments. Regularly provides guidance, training, and coaching to other team members for performance and career development. Stays current on business trends, technological developments, threats, vulnerabilities, and risk management strategies. Works with business teams to establish, design, and implement appropriate solutions accordingly. Supports and represents operational and organizational priorities as needed, in various forums. Works with technology product and development delivery teams to analyze and improve the risk posture of critical application infrastructure. Creates requirements for secure technology implementations and process improvements. Engages product teams, and tracks and facilitates application security implementations to comply with new technology policies and enterprise initiatives. Reviews vendor and open software for implementation and Cybersecurity risks. Plans, implements, upgrades, or monitors security measures for the protection of computer networks and information.Education and Experience:Bachelor s degree (or foreign education equivalent) in Computer Science, Engineering, Information Technology, Computer Information Systems, Mathematics, Physics, or a closely related field and six (6) years of experience in the job offered or six (6) years of experience improving the cybersecurity posture of end-to-end technology implementations -- evaluating development practices, business applications, and infrastructure -- within a financial services environment.Or, alternatively, Master s degree (or foreign education equivalent) in Computer Science, Engineering, Information Technology, Computer Information Systems, Mathematics, Physics, or a closely related field and four (4) years of experience in the job offered or four (4) years of experience improving the cybersecurity posture of end-to-end technology implementations -- evaluating development practices, business applications, and infrastructure -- within a financial services environment.Skills and Knowledge:Candidate must also possess:Demonstrated Expertise ( 201CDE 201D) conducting technology assessments of application and infrastructure vulnerabilities for current and emerging technologies used to develop, deploy, and support Asset Management (AM) business applications and infrastructure systems; and analyzing AM business priorities and providing technical direction to business unit technology and Enterprise Cybersecurity program leaders to ensure the business operates securely within Amazon Web Services (AWS) Cloud and traditional on-premise environments.DE identifying, measuring, and reporting systemic cross-enterprise technology vulnerabilities and security mechanisms -- authentication and authorization techniques including, OAuth, elevated access management, Azure Active Directory, access management tools, data protection, and encryption -- of business-sensitive non-public information; providing enterprise security guidance and consulting for technology solutions and controls; and supporting operational and technology risk functions -- vendor and recordkeeping risks, and regulatory examination, internal and external audit, and control assessments.DE planning and leading cybersecurity initiatives -- trading crypto-fund systems and approved vendors by engaging with business product and development delivery teams and analyzing their DevOps practices to ensure compliance with cybersecurity policies and programs, including increasing cybersecurity product adoption -- to improve the risk posture of business unit critical application and system infrastructure.DE conducting incident security investigations -- designing incident classifications for network security breaches -- according to incident threat classifications; and monitoring Key Performance Indicators (KPIs) to ensure they meet month-on-month AM cybersecurity deadlines.#PE1M2Certifications:Company OverviewFidelity Investments is a privately held company with a mission to strengthen the financial well-being of our clients. We help people invest and plan for their future. We assist companies and non-profit organizations in delivering benefits to their employees. And we provide institutions and independent advisors with investment and technology solutions to help invest their own clients’ money.Join UsAt Fidelity, you’ll find endless opportunities to build a meaningful career that positively impacts peoples’ lives, including yours. You can take advantage of flexible benefits that support you through every stage of your career, empowering you to thrive at work and at home. Honored with a Glassdoor Employees’ Choice Award, we have been recognized by our employees as a Best Place to Work in 2022. And you don’t need a finance background to succeed at Fidelity—we offer a range of opportunities for learning so you can build the career you’ve always imagined.Many of our associates are continuing to work remotely temporarily due to COVID-19. When Fidelity employees eventually return to the office, our goal is for most people to work flexibly in a way that balances both personal and business needs with time onsite and offsite through what we’re calling 0022Dynamic Working. 0022We invite you to Find Your Fidelity at fidelitycareers.com.Fidelity Investments is an equal opportunity employer. We believe that the most effective way to attract, develop and retain a diverse workforce is to build an enduring culture of inclusion and belonging.Fidelity will reasonably accommodate applicants with disabilities who need adjustments to participate in the application or interview process. To initiate a request for an accommodation, contact the HR Leave of Absence/Accommodation Team by sending an email to accommodations [Click Here to Email Your Resumé], or by calling 800-835-5099, prompt 2, option 3.

Drop files here browse files ...