The Cyber Financial Team (CyFI) team works closely with key stakeholders across the Bank to identify, analyse and mitigate financial crime and controls risk associated with cyber-dependent and cyber-enabled financial crime. This role will support that goal through development and leadership of a group of professionals within the FCIU providing analysis and recommendations to reduce risk and financial losses to the Bank through identification and disruption of criminal actors utilizing cyber-enabled methods
Key Roles and Responsibilities
Be aware of and execute the prescribed strategy of Regional SCB leadership in day to day operations, as related to mitigating cyber-enabled financial crime risk and meeting or exceeding current and relevant future regulatory compliance requirements. Understand the complex and developing regulatory environment around cybercrime, developing technologies, data governance and cybersecurity, so to as to guide the efforts of CyFI to proactively address risk, and to provide expert input for key stakeholders across different business units. Proactively identifying strategic networks, state and non-state actors that utilize cyber-enabled methods to conduct financial crime, including but not limited to money laundering, terrorist financing, human trafficking, financial fraud, and sanctions evasion. Conduct analysis of internal, surface web, deep/dark web (DDW), subscription and social media sources, in collaboration with external stakeholders including research institutions, industry partners, law enforcement, and government agencies. Leverage business analytics, geospatial intelligence, link analysis, and cybercrime expertise to reduce risk exposure to current and emerging threats.
Identify potentially suspicious activity, cyber-enabled financial crime, and extant or emerging cyber-enabled threats, and recommend appropriate remediation to FCC Management, Group, or applicable Governance bodies.
Provide subject matter expertise on cyber-enabled financial crime, drawing on cyber-intelligence, industry associations, law enforcement networks, professional qualifications and experience.
Design, implement and manage policies and procedures associated with cyber-enabled financial crime intelligence.
Support complex Group or cross-jurisdictional entity reviews.
Ensures direct report(s) are proactively developing and implementing standards, processes, methodologies, metrics and internal controls to support organizational objectives and mitigate risk exposure.
Collaborate with global Intelligence functions to synchronize cybersecurity efforts, produce cyber-enabled crime intelligence products, and delineate risk exposure to cyber-enabled crime.
Lead through example and build the appropriate culture and values. Set appropriate tone and expectations from their team and work in collaboration with stakeholders.
Ensure the provision of ongoing training and development of people, and ensure that holders of all critical functions are suitably skilled and qualified for their roles ensuring that they have effective supervision in place to mitigate any risks.
Employ, engage and retain high quality people, with succession planning for critical roles
Responsibility to review team structure/capacity plans.
Set and monitor job descriptions and objectives for direct reports and provide feedback and rewards in line with their performance against those responsibilities and objectives
Awareness and understanding of the regulatory framework in which the firm operates, and the regulatory requirements and expectations relevant to the role
Deliver 'effective governance'; challenge fellow executives effectively; and work with any local regulators in an open and cooperative manner .
Qualifications and Skills
7 - 10 years of experience in intelligence, law enforcement, or other intelligence-based work, with experience leading teams with diverse technical and analytical skills.
Recognized advanced certification in cybersecurity-related field, such as CISSP, SSCP, CCE, CEH, CCIE or CCFP
ACAMS certification or equivalent preferred (required within one year of hiring).
Graduate degree in business, information security, criminal justice, intelligence studies, or the like from an accredited institution, or equivalent.