Director, Client & Regulator Engagement

Job Description:

Director, Client & Regulator Engagement

The Role

The Fidelity Enterprise Cybersecurity Client & Regulatory Engagement team is seeking a Director to manage responses to inquiries about Fidelity’s cybersecurity program from clients and regulatory bodies.  The Director will work with team members to understand the depth and breadth of Fidelity’s cybersecurity policies, practices, professionals, and technologies to communicate Fidelity’s capabilities to clients and regulators in a manner that is clear and satisfies the inquiry.  The analyst will assess the impact of new laws and regulations on the ECS product areas, and will influence product area managers to prioritize such mandates in their roadmaps

Success in this role will be demonstrated by strong partnerships with business unit compliance and relationship management teams, enterprise compliance, technology risk teams, and Fidelity Legal.  Together with these partners, this role will win and retain business and meet regulators’ expectations. 

The Client & Regulatory Engagement team is the 'eyes and ears' for ECS on the legal and regulatory environment.  It knows the laws and regulations which impact Fidelity’s many legal entities and it shares that knowledge with ECS Product areas, who ensure that products satisfy applicable requirements.  When regulators inquire about Fidelity’s cybersecurity policies and program, whether as part of a larger exam or an ad hoc request, the Client & Regulatory Engagement team works closely with the BU compliance teams to respond to the inquiry.  The team makes sure that the response is accurate and consistent with recent responses to similar inquiries. 

The Client & Regulatory Engagement team also responds to requests from clients and prospects about Fidelity’s cybersecurity program.  These entities perform thorough due diligence on Fidelity, and cybersecurity has become 'table stakes' to win and retain business.  The Client & Regulatory Engagement team interfaces with the BU client relationship teams to supply comprehensive responses, assuring clients of the strength of the ECS program and establishing a sound foundation of trust and reliability.

 The Expertise and Skills You Bring

• Proven knowledge of cybersecurity functions and how they contribute to the ECS and Fidelity mission

• A background or strong interest in cybersecurity from a legal, risk or compliance standpoint; an ability to understand legislative proposals and to assess the impact to cybersecurity policies and practices

• Knowledge of cybersecurity and privacy regulations strongly desired; these include New York State Dept. of Financial Services Cybersecurity Regulations, SEC Regulation S-P and Regulation S-ID, FFIEC Information Security Standards, HIPAA Security Rule, state data security and privacy laws

• Experience and knowledge managing projects end-to-end, with demonstrable ability to communicate progress effectively across multiple lines and levels

• Strong understanding of NIST Cybersecurity Framework core standards

• Bachelor’s degree in a technology or a computer science subject area a plus

• Cybersecurity certifications a plus

• Prior experience in a cybersecurity role (policy, operations, technology) or in a risk or compliance role a plus

• Executive presence – ability to speak confidently about all aspects of Fidelity’s cyber program in front of regulatory examination staff and client auditors. 

• Excellent writer – respond to requests for information directly, clearly, and succinctly; able to explain complex legal and regulatory requirements to product areas and ECS management in an actionable manner

• Ability to quickly establish trust and a positive rapport with ECS business partners and BU stakeholders; exceed customer expectations for speed and quality of responses

• Independent worker; high sense of ownership; 'focus and finish' attitude

• Ability to influence product areas to prioritize regulatory work in product roadmaps and backlogs

• Ability to manage multiple priorities independently; proactive approach to defining issues and resolving open questions

• Ability to effectively facilitate and follow up on business meetings and to present information to groups with the appropriate degree of formality

• React quickly to requests; bring a sense of urgency to respond to inquiries

• Data analysis and synthesis; working knowledge of MS-Excel

The Value You Deliver

• Help to win and retain business for Fidelity by demonstrating the depth and breadth of Fidelity’s cybersecurity program

• Manage regulatory inquiries in a manner which minimizes risk for Fidelity

• Provide excellent customer service for Fidelity’s compliance and relationship management professionals

• Minimize impact of inquiries on day-to-day ECS product area operations by clarifying requests (scope, timeframe, level of detail, etc.)

• Center of excellence and expertise for legal and regulatory requirements

The Team

Members of the Compliance Center of Excellence within the GRC Product Area are charged with knowing the external requirements and standards to which Fidelity is held.  They make certain that Fidelity ECS has appropriate policies and controls which align to these standards, and they work with Product Area teams to produce evidence supporting the policies and controls.  The external requirements include federal and state laws, regulations, guidance, best practices, and industry expectations.  Members of the team engage with external assessors and examination staff periodically to provide evidence of control.

Certifications:

Category:

Fidelity’s hybrid working model blends the best of both onsite and offsite work experiences. Working onsite is important for our business strategy and our culture. We also value the benefits that working offsite offers associates. Most hybrid roles require associates to work onsite every other week (all business days, M-F) in a Fidelity office.