This role offers a hybrid work schedule; offering the flexibility to work remotely two days a week, while providing the opportunity for in-person collaboration at our Buffalo, NY Tech Hub.

Overview:   

Oversees the activities of the CSOC team. Responsible for financial and human capital planning to ensure priorities support and protect the Bank from internal and external cybersecurity threats. 

Primary Responsibilities:

• Coordinate and assign activities to team within immediate function of oversight. 

• Collaborate with Cyber senior leadership to prioritize work within immediate function of oversight to inform budget planning. 

• Recommend and implement security controls related to immediate function(s) of oversight to mitigate risk and secure the bank. 

• Participate in initiatives assessing the security implications of new/updated methodologies. 

• Work closely with incident response team to lead effective and efficient resolution of cyber incidents. 

• Provide technical guidance and support to team members, leveraging guidance from engineering team and more senior cyber leaders. 

• Collaborate with cross-functional teams to recommend and maintain appropriate cyber controls and procedures. 

  Develop and execute workforce plan, including recruiting and growing team members within immediate function of oversight. 

• Contribute to the delivery of the Bank-wide information security training and awareness program. 

• Maintain relationships with Cyber leaders and engineering teams to drive results within immediate function of oversight. 

• Exercise usual authority of a manager concerning staffing, performance appraisals, promotions, salary recommendations, performance management and terminations. 

• Understand and adhere to the Company’s risk and regulatory standards, policies, and controls in accordance with the Company’s

• Risk Appetite. Design, implement, maintain, and enhance internal controls to mitigate risk on an ongoing basis. Identify risk-related issues needing escalation to management. 

• Promote an environment that supports diversity and reflects the M&T Bank brand. 

• Maintain M&T internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators as applicable. 

• Maintain adequate coverage levels across CSOC shifts that are consistent with M&T’s Risk Appetite.    

• Availability for on-call CSOC escalations 

• Complete other related duties as assigned. 

Scope of Responsibilities:

• Primary partners: Cybersecurity Senior Managers, Managers, and Team Leads.
• Stakeholders: Technology team and the Bank.
• Work is accomplished with periodic check-ins for alignment and limited direction; translates direction into objectives for team.
• Oversees CSOC Team in coordination with other CSOC Supervisor
• Provides input for budget as it pertains to specific team needs, and accountable for meeting budget.
• This role manages one or more functions/teams/departments within the CSOC:
  • Operations and Threat – proactively identify, analyze, and respond to cyber threats, ensuring the Bank's digital assets are secure and resilient against potential risks and attacks. 
  • Responsible for management and development of Cybersecurity Analyst scheduling and staffing to ensure lossless 24x7x365 coverage. Responsible for forecasting service demands, security activity, staff performance, and Cybersecurity Operations actions to analyze gaps in efficiency and establish process, actions, or metrics to improve operations. Responsible for review, analysis, functional operations, and oversight of the Incident Response Platform to facilitate Cyber Analyst workflow processing and incident remediation to include analysis of trends, gaps, or areas of improvement. 

Manager Responsibilities:

Typically leads a team of 3-7 FTE (entry to mid-level individual contributors)

Education and Experience Required:

• Bachelor's degree and a minimum of 3 years’ relevant work experience, or in lieu of a degree, a combined minimum of 7 years’ higher education and/or relevant work experience.
• Demonstrated proficient knowledge of Cybersecurity principles.
• Minimum 2 years’ work experience in/with the specific cybersecurity function.
• Minimum 2 years’ supervisory experience.

Education and Experience Preferred:

• Minimum of 1 years’ leadership experience.
• Strong ability to train and mentor cybersecurity individual contributors.
• Excellent written and verbal communication skills.
• Prior experience seeking buy-in of others to align on processes.
• Ability to adapt seamlessly to changing priorities.

M&T Bank is committed to fair, competitive, and market-informed pay for our employees. The pay range for this position is $93,581.10 - $155,968.51 Annual (USD). The successful candidate’s particular combination of knowledge, skills, and experience will inform their specific compensation.

Location

Buffalo, New York, United States of America