Cyber Security Senior Manager
Regions Bank · Birmingham, AL · 1 wk ago
On-siteInformation Technology$179k/yrFull-time
About the role
The Cyber Security Senior Manager role at Regions is responsible for leading a team of engineers and analysts to enforce, monitor, and manage cyber security controls. This role involves developing and implementing incident response protocols, communicating threat environments, and managing evaluations and tests of security controls.
Responsibilities
- Develops and implements incident response protocols for ongoing threats and attacks
- Communicates status of current threat environment, incidents, and projected threats to senior management and executives
- Manages the evaluation and testing of hardware, firmware, and software for possible impact on systems security
- Coordinates with other managers to integrate Information Security project components with other projects including application development, network, server, and mainframe
- Maintains knowledge of industry and market trends and collaborates with teams to incorporate necessary changes
- Serves as a point of contact for key stakeholders, ensuring mutual understanding of strategy, goals, and objectives
- Serves as a thought and execution leader within the company
- Manages complex Cyber Security projects and initiatives
- Promotes and partners across Technology, Operations, Digital, and Data (TODD) to ensure controls are designed, implemented, and monitored to strengthen risk management, compliance, and cyber security, effectively mitigating risk to levels within the company’s risk appetite
- Evaluates risk and control impacts when designing or implementing changes to processes, systems, products, and/or services
Requirements
- Bachelor's degree in a related field and twelve (12) years of related experience
- Four (4) years of lead or supervisory/managerial experience
Qualifications
- Bachelor’s degree in related field
- Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or other industry certification
- Good understanding of current internal and external cyber threats to the financial services sector
- Experience managing Information Technology and/or Information Security projects
- Experience with security operations and incident response/handling
- Experience leading advanced and complex projects and initiatives
Skills and Competencies
- Ability to prioritize assignments while working on multiple projects
- Advanced ability to predict and plan for unknown threats
- Demonstrated ability to effectively engage project teams and leadership within a corporate setting
- Excellent technical aptitude skills
- Excellent writing and oral communication skills
- Strong ability to work well with others and place a premium on the group’s success
- Strong project management skills
- Understanding of and ability to interpret applicable rules, regulations, and industry guidance
Additional Responsibilities and Preferred Qualifications
- Lead enterprise Cyber Threat Intelligence and Threat Hunting programs to proactively identify emerging threats, adversary activity, and security gaps, while enabling intelligence-driven defense strategies
- Own the Exposure Management strategy, including Continuous Threat Exposure Management (CTEM), and risk-based prioritization of remediation activities
- Oversee multiple teams responsible for identifying, assessing, prioritizing, and reducing cyber risk across infrastructure, applications, cloud platforms, and third-party environments
- Partner with Security Operations, Incident Response, Infrastructure, Engineering, and Architecture teams to improve detection capabilities, strengthen security controls, and drive remediation efforts
- Develop and execute strategic roadmaps, metrics, and executive reporting that provide visibility into cyber threats, organizational exposure, cloud security posture, and overall risk reduction progress
- Build, mentor, and lead high-performing security teams while managing budgets, vendor relationships, and security technology investments
- Influence enterprise security strategy and ensuring alignment with business objectives, regulatory requirements, and industry best practices