Responsible for leading the Governance, Oversight and Enablement (GOE) group of Enterprise Information Security (EIS) team in EGS and effectively managing the delivery of related activities from EGS locations. This includes but not limited to people management and delivery accountability for the EIS GOE team Operations. This role calls for close collaboration with four functional leaders at the enterprise level who are primarily responsible for the following four major functions / areas:
1. Enterprise Application Security Program: Responsible for developing a proactive enterprise-wide Application Security Development lifecycle
2. Governance: Responsible for leading the development of the next generation information security program and framework, including the information security strategy, setting and communicating our information security policies and exception management process, control remediation, information security risk assessments, 3rd party programs, and risk appetite metrics. Designing architecture solutions to meet the strategic goals of organizations businesses while protecting its assets. EIS Architecture focuses on developing actionable information security strategies, architecture designs and mitigating control solutions.
3. Oversight: Responsible for Control Testing, Oversight & Compliance, Monitoring & Reporting, and Regulatory Exam Engagement Support.
4. Enablement: Responsible for ensuring every business has access to the tools, knowledge, and expertise to manage information security risk within the risk appetite.
Partner with EIS GOE leadership team to help develop global sourcing and talent strategies and execute them effectively.
Help identify process improvements that will contribute to the overall effectiveness of EIS program.
Demonstrate effective leadership and people management skills to drive team member engagement across multiple geographies. Should have the knowledge and experience in dealing large size teams, managing learning and development and effective career progression in consultation with HR and stateside partners.
Demonstrate expertise related to information security governance processes related to banking organizations.