Technology Risk Advisor

Overview:     

Conducts comprehensive risk analyses, develops and implements risk mitigation plans, and actively contributes to policy improvement and compliance efforts.

Primary Responsibilities:

• Conduct thorough risk analysis of capabilities; identify potential control gaps and recommend mitigation plan based on identified potential risk.
• Create and apply effective risk management plans that include regular reporting and documentation, such as identifying gaps in processes, writing standards, creating basic risk assessments, or reporting on findings.
• Assist compliance efforts for respective function, ensuring adherence to internal standards, policies, and procedures.
• Collaborate with cross-functional teams and leadership to ensure swift and effective action when events occur which are beyond the Bank's risk appetite.
• Assist with preparation and response to regulatory engagements, including material preparation, coordination of responses from various individuals, and aiding in exam management (i.e., template folders, collection of first day letter and follow-up requests)
• Propose and/or implement proactive measures and improvements, leveraging experience to safely innovate and optimize risk analysis processes.
• Provide hands-on training and guidance to newer analysts to effectively onboard to technology and cybersecurity risk team.
• Ensure partners across the Bank have appropriate level of understanding of Technology and Cybersecurity Risk management and roles within risk management.
• Understand and adhere to the Company’s risk and regulatory standards, policies and controls in accordance with the Company’s Risk Appetite.  Identify risk-related issues needing escalation to management.
• Promote an environment that supports diversity and reflects the M&T Bank brand.
• Maintain M&T internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators as applicable.
• Complete other related duties as assigned.

Scope of Responsibilities:

• Interacts primarily with individual contributors and people leaders within the Technology and Cybersecurity teams. Will have occasional to frequent interaction with senior leaders of Technology and Cybersecurity. 
• Work is accomplished with regular check-ins for alignment and limited direction.
• This role determines and develops approach to solutions, and work is evaluated upon completion to ensure objectives have been met.
• This role will prepare materials for Regulators under the direction of senior Technology and Cybersecurity Risk leaders.

Education and Experience Required:

• Bachelor's degree and a minimum of 3 years’ relevant work experience, or in lieu of a degree, a combined minimum of 7 years’ higher education and/or work experience
• Demonstrated proficient knowledge of Technology and/or Cybersecurity risk principles
• Minimum of 2 years' relevant work experience in or with risk, audit, technology, cybersecurity, or related experience

Education and Experience Preferred:

• Applicable certification aligned to function or domain such as Certified in Risk and Information Systems Control (CRISC®), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP)
• Proficient level of critical thinking and problem solving
• Excellent written and verbal communication skills
• Experience collaborating with peers and leadership to execute results
• Demonstrates curiosity and seeks critical information, and has ability to apply learnings
• Ability to adapt seamlessly to changing priorities and deliver results aligned with priorities
• Prior experience seeking buy-in of others to align on processes

Physical Requirements:

M&T Bank is committed to fair, competitive, and market-informed pay for our employees. The pay range for this position is $82,783.41 - $137,972.36 Annual (USD). The successful candidate’s particular combination of knowledge, skills, and experience will inform their specific compensation.

LocationBuffalo, New York, United States of America