Basic Function:
As part of M&T's T&BO/Information Security team, candidate would provide centralized compliance expertise to all M&T Bank Corporation business lines, support functions and management concerning compliance to regulations dealing with privacy and information security and to the Technology & Banking Operations Division on all applicable regulations dealing with financial institutions.
Responsibilities:
* The Information Security Compliance Specialist (ISCS) is responsible for minimizing exposure to potential penalty assessments, which would impede the profitability of the Bank.
* As the subject matter expert, the ISCS works directly with his or her constituents to complete the self-assessment on how compliance for each regulation is achieved, documented, monitored and tested.
* The ISCS develops and delivers training in different media to all level employees.
* The ISCS interacts with various levels of management
* The ISCS interacts with various audit/examination functions both internal and external. These can include the Federal Reserve Bank of New York, the New York State Banking Department, and the Office of the Comptroller of the Currency.
* Department, and the Office of the Comptroller of the Currency.
Basic Qualifications:
* Expertise in the field of Information Security and Compliance, specifically the areas of regulations and standards where M&T Bank must comply by continuously exploring avenues for self-improvement.
* Must have prior experience with Gramm-Leach-Bliley (GLB), Sarbanes-Oxley (SOX) other Privacy Laws, as well as Global regulations and initiatives.
* Excellent written and verbal communication skills with the ability to communicate with sr. management, peers, and external community contacts.
* Proven ability to integrate sound compliance controls into business plans
* Broad based knowledge of technology and related operations with more detailed knowledge of the Information Compliance components of technologies.
* Proven experience with MS Word, Excel, Access, Group Wise or another e-mail package.
Ideal Qualifications:
* Solid understanding of M&T, bank operations, and systemic functionality
Project Management: Requires a complete understanding of the project life cycle methodology
* Experience with development and implementation of Information Security policies and procedures.
* Anticipates the consequences of situations/problems. Anticipates the responses of groups or individuals. Performs risk assessments and develops contingency plans.
* Complete understanding of the M&T Bank's enterprise architecture.
Knowledgeable of the Bank's business plan and strategic objectives
* Diplomatic negotiating skills
* Ability to manage several activities simultaneously in an organized fashion
* Excellent problem solving skills to assist in detecting potential issues and issue resolution
* Detail oriented
* Flexible and adaptable to change