Security Business Partner Mgr - Business Information Security Office

About The Position

Requirements

• CISSP, CRISC, or CISA certification.
• 5 years’ experience in information security, risk, or audit.
• Management experience in information security, technology risk, or related technology roles within large, complex enterprise environments.
• Expertise with one or more enterprise security domains such as Identity Access Management, Data Protection, Cloud Security, and Risk Management.
• Demonstrated ability to work effectively with business, technology, and risk stakeholders.
• Successful candidates must demonstrate appropriate knowledge, skills, and abilities for a role.
• Roles at this level typically require a university / college degree.
• Industry-relevant experience is typically 8+ years.
• At least 5 years of prior management experience is typically required.
• Proven leadership experience with a moderate to large scope of responsibility is required.

Nice To Haves

• Experience supporting regulated financial services or large institutional lines of business.
• Management experience in multiple enterprise security domains such as Identity Access Management, Data Protection, Cloud Security, and Risk Management.
• Higher level education such as a Masters degree, PhD, or certifications is desirable.
• Preferred Skills Access Control (AC), Building Architecture, Customer Solutions, Disaster Recovery Planning, Information Security, Network Security, Physical Security, Risk Assessments, Security Technologies
• Competencies Business Acumen, Effective Communications, Influencing, Problem Solving, Relationship Management, Strategic Thinking

Responsibilities

• Senior leader responsible for the client relationship with all PNC Lines of Business to ensure successful outcomes on the integrated delivery of cybersecurity services including cybersecurity technology, security risk management, business demand management, and client feedback.
• Participate in key executive initiatives and program meetings to provide ongoing input to improve PNC’s security and risk posture while supporting product strategies and revenue generation / cost reduction.
• Manages the team responsible for Line of Business security relationships and participates in Line of Business leader meetings providing relevant security input and topics for discussion.
• Lead the coordination and scheduling of Security topics for executive updates and committee presentations.
• Manages team responsible ensuring security requirements and standards are identified and incorporated across the business and technology lifecycle, including RFP activities, technology due diligence, and security approvals.
• Engage with Line of Business leaders to promote adoption, accountability, and sustainability of security requirements and controls for Line of Business initiatives.
• Serve as escalation point within the team for ad hoc or high priority security situations within the Lines of Business, including coordination of communications and remediation planning.
• Manage and provide guidance to the team for Line of Business risk assessments, security reviews, and governance activities for initiatives with material technology, data, or business impact.
• Partner with Line of Business Risk organizations to improve Security posture through the reduction of Policy Exceptions, open vulnerabilities, and implementation of automated identity access controls.
• Translate information security requirements and risk considerations into relevant guidance to support informed decision making by Line of Business stakeholders.
• Senior leader within the Security organization that engages with peer Security leaders responsible for Identity Access Management, Data Protection, Application Security, Cloud Security, PNC subsidiaries and Policy and Governance.
• Responsible for providing and leading relationship management for specific business and staff functions, ensuring integrated delivery of cyber, fraud and physical security services and a centralized escalation point.
• Serves as strategic partner to the lines of business and staff areas, accountable for bringing the right security resources together to provide security solutions.
• Leverages the integrated expertise of the team and reporting capabilities, allowing businesses to elevate their security posture in a risk-balanced manner.
• Provides a strategic advantage to PNC and supports building of trust in the brand.
• Leads team with responsibility for the relationship with the largest and/or most complex and sophisticated clients.
• Serves as the senior point of escalation to ensure successful outcomes and is responsible for the overall client experience with a technology organization, including, cyber, fraud and physical security risk, business demand management, technology expenditures, client feedback & relationship management.
• Proactively seeks opportunities to implement improvements and ensure the execution of solutions that are cost effective, meet business requirements and are consistent with technology capabilities, functionality and the proactive integration of security.
• Directs the consulting services to internal business groups on process improvement projects designed to support product strategies and revenue generation/cost reduction.
• Directs the gathering and analysis of complex client requirements, and the transformation of requirements into functional/non-functional requirements.
• Directs, motivates, develops, and manages the performance of the management team and key staff.

Benefits

• This position may be eligible for remote work in select geographic locations, subject to approval by PNC. If approved, work must be conducted from a quiet, secure, and confidential home-based workspace. Occasional in-office participation may be required based on business needs.
• PNC offers a comprehensive range of benefits to help meet your needs now and in the future. Depending on your eligibility, options for full-time employees include: medical/prescription drug coverage (with a Health Savings Account feature), dental and vision options; employee and spouse/child life insurance; short and long-term disability protection; 401(k) with PNC match, pension and stock purchase plans; dependent care reimbursement account; back-up child/elder care; adoption, surrogacy, and doula reimbursement; educational assistance, including select programs fully paid; a robust wellness program with financial incentives.
• In addition, PNC generally provides the following paid time off, depending on your eligibility: maternity and/or parental leave; up to 11 paid holidays each year; 9 occasional absence days each year, unless otherwise required by law; between 15 to 25 vacation days each year, depending on career level; and years of service.
• To learn more about these and other programs, including benefits for full time and part-time employees, visit pncthrive.com.