The Bank sponsors individuals for TN and H-1B transfers on a case by case basis. Please note that this position is not open to anyone on an F-1 student visa including those eligible for CPT/OPT or the Stem OPT extension.

This role offers a hybrid work schedule; offering the flexibility to work from home two days a week, while providing the opportunity for in-person collaboration.

This position is available in Buffalo, NY

About M&T Bank

At M&T Tech, we’re a team of makers, doers, and builders, working to create the most advanced technology solutions in banking. We’re not your stereotypical suit and tie bankers: we’re an innovative team of leading tech experts, pushing boundaries, and taking risks. We’re building an agile team of the most skilled and creative workers to solve complex problems, architect solutions, write high-performance software, and chart our new path, all to make the lives of our customers, and the communities that we serve, better. Join us and be part of something new as we build tomorrow’s bank, today.

Overview:

Provides leadership and direction in support of the Cybersecurity Operations Center (CSOC). Manages individual shift and analysts with responsibility for providing first line 24x7x365 monitoring. Provides coaching, mentorship, guidance, and makes staffing recommendations. Identifies, communicates, and escalates Cybersecurity threats, vulnerabilities, risks, emerging trends, and mitigation strategies in alignment with the organization's risk appetite. Provides analytical reporting when required.

Primary Responsibilities:

• Maintain adequate coverage levels across CSOC shifts that are consistent with M&T’s Risk Appetite.

• Serve as an on-call contact for CSOC escalations.

• Provide mentorship toward individual contributors, and provide technical guidance as needed.

• Audit work product of individual contributors and make recommendations for improvement.

• Empower individual contributors to continue their professional development, along with contribute toward processes that increase the resiliency and functionality of the entire CSOC.

• Align management objectives to individual contributor abilities.

• Lead, align, and manage cybersecurity priorities within the Department's overall security strategy.

• Lead efforts to review and improve the effectiveness of the enterprise's cybersecurity safeguards to ensure they provide the intended level of protection.

• Coordinate cybersecurity incident drills and provide plans, guidance, and recommendations for improvement.

• Oversee the preparation, creation, distribution, and maintenance of Standard Operating Procedures (SOPs) and related deliverables.

• Lead and oversee that cybersecurity awareness, basics, literacy, and training are provided to operations personnel commensurate with their responsibilities within the team.

• Review, evaluate, recommend, and coordinate protective or corrective measures when a cybersecurity incident or vulnerability is discovered.

• Exercise usual authority of a manager concerning staffing, performance appraisals, promotions, salary recommendations, performance management and terminations.

• Understand and adhere to the Company’s risk and regulatory standards, policies and controls in accordance with the Company’s Risk Appetite. Design, implement, maintain and enhance internal controls to mitigate risk on an ongoing basis. Identify risk-related issues needing escalation to management.

• Promote an environment that supports diversity and reflects the M&T Bank brand.

• Maintain M&T internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators as applicable.

• Complete other related duties as assigned.

Scope of Responsibilities:

Oversee, develop, and refine under review of higher management the Cybersecurity Operations Center environment and program, including managing daily operations, building new strategies, revising or creating new policies and procedures, security awareness training, and leading personnel and staffing. Responsible for management and development of Cybersecurity Defense Analyst scheduling and staffing to ensure lossless 24x7x365 coverage. Responsible for forecasting service demands, security activity, staff performance, and Cybersecurity Operations actions to analyze gaps in efficiency and establish process, actions, or metrics to improve operations. Responsible for review, analysis, functional operations, and oversight of the Incident Response Platform to facilitate Cyber Defense Analyst/Specialist workflow processing and incident remediation to include analysis of trends, gaps, or areas of improvement.

Education and Experience Required:

Associates degree or higher in Computer Science or Information Assurance and a minimum of 4 years’ relevant work experience, or in lieu of a degree, a combined minimum of 6 years’ higher education and/or work experience, including a minimum of 4 years’ relevant experience

Minimum of 2 years’ work leadership and/or supervisory experience

Understanding of Cybersecurity operational processes

Understanding of Cybersecurity threats, vulnerabilities, emerging trends, and regulatory and operational impacts

Experience utilizing feedback to drive process and service improvement

Capable of managing stakeholder relationships, including determining needs, requirements, and resources, and managing stakeholder expectations while committing to delivering quality results

Capable of communicating complex information, concepts, or ideas in a confident, accurate, and well-organized manner through verbal, written, and/or visual media

Experience adjusting to and operating in a diverse, challenging, and unpredictable fast-paced work environment

Experience coordinating, collaborating, and disseminating information to subordinate, peer, and leadership teams, departments, and organizations

Experience advising and providing assistance to operations in response to dynamic situations

Ability to oversee and coordinate with a Cybersecurity team of analysts, including the training and development of staff

Knowledge of testing and maintaining network infrastructure requirements, including hardware and software systems

Experience translating functional organizational and department requirements into logical and technical Cybersecurity solutions

Experience managing operations following organizationally-specific guidelines and documents

Understanding and knowledge of processes for reviewing, verifying, and revising Cybersecurity and operational documentation reflecting the application or system security design features

Understanding of Cybersecurity strategy and plan development

Education and Experience Preferred:

Bachelor degree in an applicable discipline

Minimum of 1 year demonstrated job progression and relevant work experience in two (2) or more of the following Cybersecurity domains: Security and Risk Management, Asset Security, Security Engineering, Communication and Network Security, Identity and Access Management, Security Testing and Security Operations

M&T Bank is a Top 10 US bank holding company and one of the best performing and financial stable regional banks in the country, we offer our technology employees a wide range of performance-based career development opportunities. We have a strong commitment to our customers and the communities we serve, and we continue to grow with a focus on the future. So, when looking to advance your career, look to M&T. Grow with us.

Hiring Immediately.

We support our team members with generous benefits.

• Competitive compensation

• Health, welfare, and retirement benefits

• 401(k) match at 5%

• Work-life balance and flexible work arrangements

• Up to 25 days PTO plus 12 paid holidays

#MTBTechCareers, #MTBCareers #MTBTechLife & #MTBTechHub #CybersecurityJobs #InfosecJobs #CybersecurityCareer #Hiring #JobOpening #ITJobs #TechJobs #CISSP #Cybersecurity

#cybersecuritysolutions #cybersecurityarchitecture #securitymanagement #informationsecurity #cybersecurityleadership #securitysolutions #cybersecuritystrategy #cybersecuritymanagement #securearchitecture #ITsecuritysolutions #networksecurity #cybersecurityprofessional #securityconsulting #securityassessment #cybersecurityteam #riskmanagement #datasecurity #cloudsecurity #cybersecurityawareness #cybersecurityexpert

M&T Bank is committed to fair, competitive, and market-informed pay for our employees. The pay range for this position is $93,581.10 - $155,968.51 Annual (USD). The successful candidate’s particular combination of knowledge, skills, and experience will inform their specific compensation.

Location:

Buffalo, New York, United States of America

M&T Bank Corporation is an Equal Opportunity/Affirmative Action Employer, including disabilities and veterans.