Insider Risk Manager - Director

 SMBC Group is a top-tier global financial group. Headquartered in Tokyo and with a 400-year history, SMBC Group offers a diverse range of financial services, including banking, leasing, securities, credit cards, and consumer finance. The Group has more than 130 offices and 80,000 employees worldwide in nearly 40 countries. Sumitomo Mitsui Financial Group, Inc. (SMFG) is the holding company of SMBC Group, which is one of the three largest banking groups in Japan. SMFG’s shares trade on the Tokyo, Nagoya, and New York (NYSE: SMFG) stock exchanges.

In the Americas, SMBC Group has a presence in the US, Canada, Mexico, Brazil, Chile, Colombia, and Peru. Backed by the capital strength of SMBC Group and the value of its relationships in Asia, the Group offers a range of commercial and investment banking services to its corporate, institutional, and municipal clients. It connects a diverse client base to local markets and the organization’s extensive global network. The Group’s operating companies in the Americas include Sumitomo Mitsui Banking Corp. (SMBC), SMBC Nikko Securities America, Inc., SMBC Capital Markets, Inc., SMBC MANUBANK, JRI America, Inc., SMBC Leasing and Finance, Inc., Banco Sumitomo Mitsui Brasileiro S.A., and Sumitomo Mitsui Finance and Leasing Co., Ltd.

The anticipated salary range for this role is between $198,000.00 and $231,000.00. The specific salary offered to an applicant will be based on their individual qualifications, experiences, and an analysis of the current compensation paid in their geography and the market for similar roles at the time of hire. The role may also be eligible for an annual discretionary incentive award. In addition to cash compensation, SMBC offers a competitive portfolio of benefits to its employees.

Role Description

Establish and manage a comprehensive Insider Risk program for SMBC Americas Division The candidate must be a highly motivated individual with strong interpersonal skills able to leverage their technical insider risk cybersecurity threat analysis and/or counterintelligence experience The position will work closely with various partners within the firm including but not limited to HR Legal Cybersecurity and Technology as well as external partners The ability to work effectively with a diverse set of stakeholders is essential The role requires creativity critical thinking strong communication skills and the ability to work effectively across a large global organization.

Role Objectives

• Responsible for critical strategic deliverables for the Insider Risk Program executed in accordance with data privacy and legal requirements and expectations

• Supervise and lead a team of analysts conducting triage of events generated by monitoring use cases producing contextual datadriven analysis of insider incidents risk analysis and threat assessment

• Facilitate referral of anomalous activity for investigation escalation to other SMEs and crossfunctional coordination of mitigation strategies

• Monitor internal and external Intel for notable insider events  coordinate insider incident topology analysis for risk and response action assessment

• Provide SMElevel support insider risk matters leveraging deep knowledge of insider risk cyber security and counterintelligence

• Communicate complex problem sets in succinct and clear manner that is understandable to a variety audience across the firm

• Align and socialize the insider risk program across multiple stakeholders senior managers and executives synthesize findings and present updates and recommendations

• Manage program governance documentation including definition of roles and responsibilities and support compliance with the control environment

• Work and collaborate with critical stakeholders within the firm financial sector across other industries and the US Government to stay abreast of industry trends and best practices

Qualifications and Skills

• 8-10 years relevant work experience supporting an insider risk cybersecurity andor counterintelligence program investigations or risk analysis assessing complex threats scoping and developing mitigation strategies in coordination with crossfunctional teams and technical domains

• Minimum of an Undergraduate degree preferably a masters degree related to Intelligence Studies Forensic Science Security Studies Computer Science Cybersecurity Data Analysis or a related field

• Experience conducting risk assessments and indepth multisource research on threat actors tactics techniques and emerging trends to inform risk scenarios evaluate control environment and develop mitigation strategies

• Experience supervising direct reports defining and managing business objectives and outcomes

• Proven ability to strategize and demonstrate out of the box thinking and creativity in order to solve complex problems and deliver practical and effective results

• Experience in data analysis design implementation and management of enterprise-wide security initiatives related to insider risk

• Experience building successful sustainable relationships across lines of business and with technical partners to develop detection and mitigation strategies

• Ability to handle of pressure associated with complex projects in a demanding environment

• Very strong oral and written communication skills with focus on attention to detail experience communicating with senior levels

• Ability to leverage multiple data sets and tools to support complex analysis

• Strong negotiation and influence skills with all levels of organization as well as the ability to influence people who do not report to you to achieve results

Additional Requirements

SMBC’s employees participate in a Hybrid workforce model that provides employees with an opportunity to work from home, as well as, from an SMBC office. SMBC requires that employees live within a reasonable commuting distance of their office location. Prospective candidates will learn more about their specific hybrid work schedule during their interview process. Hybrid work may not be permitted for certain roles, including, for example, certain FINRA-registered roles for which in-office attendance for the entire workweek is required.

SMBC provides reasonable accommodations during candidacy for applicants with disabilities consistent with applicable federal, state, and local law. If you need a reasonable accommodation during the application process, please let us know at accommodations@smbcgroup.com.