Job Description
We are currently seeking an Associate Director to build and lead the OneMain Cybersecurity Exercise Program as part of our Cybersecurity Resilience team. It is a fast-growing team focused on providing expert insight into risk, developing team members, and effective oversight of cybersecurity and technology risk. This is a team where you can work with great team members across the Cyber Risk, Cyber Tech, Risk Management, and Technology organizations. You will be challenged to excel with exciting and challenging opportunities daily. There is transparency and great support from management teams to allow team members to be effective, grow their careers and meet company goals. Hard work and initiative are rewarded and recognized by management and colleagues alike, which promotes a culture of respect and value across the organization. This lead will report to the Director of Cybersecurity Resilience within the function of the Cyber Risk team. The Exercise Manager is responsible for the full life-cycle of exercise activities (plan, design, execution and evaluation) from cybersecurity workforce drills, enterprise and business level tabletop exercises and multi-day simulation events with both cybersecurity and business impacts being tested across all stakeholders in the incident response plan. The result of these activities supports the overall team strategy and capability uplift and will focus on strengthening our incident response and coordination processes within OneMain Financial. The position will own all post-exercise after action analysis, reporting, assessment and documenting and driving resolution on gaps identified to improve our operational resilience. The successful candidate will need to have a passion for delivering exceptional cyber exercises, excellent communications skills, and a commitment to innovation in the exercise design arena. Responsibilities: Build the program to support all enterprise cyber exercise types to include seminars, workshops, tabletops, drills, functional business focused exercises, and full scale enterprise simulations.Plan, design and develop, facilitate, evaluaPerform planning, facilitation, documentation development, and coordinate follow-up activities for the Cyber exercise program. Coordinate exercise planning teams comprised of OneMain employees with varied technical and non-technical backgrounds to plan and execute cybersecurity exercises, including tabletop discussions.Work with internal teams to identify cyber risks, design threat scenarios, identify key stakeholders and participants, and execute the exercise against the planned scenarios and objectives. Assesses observations and findings during exercises, communicate findings to stakeholders and escalate high risk findings to appropriate risk remediation efforts.Develop senior executive and Board level presentations and exercise materials. Comprehensive knowledge of resilience and recovery strategies in complex organizations to include solid understanding of disaster recovery methodologies and business continuity principles.Required Qualifications 5+ years of experience designing and executing cybersecurity or resilience exercises (plan, design, execution, and evaluation).Demonstrated leadership across cybersecurity, business continuity, disaster recovery, or information technology teams .Candidate requires a working knowledge of security operations, incident response, threat & vulnerability management, and threat intelligence. Knowledge of enterprise systems and infrastructure. Comprehensive knowledge of resilience and recovery strategies in complex organizations.Strong verbal, written communications skills and presentation skills.Expert knowledge of cybersecurity and exercise best practices, including NIST Cybersecurity Framework, National Cyber Exercise and Planning Program doctrine,Outstanding interpersonal skills to effectively build relations and interact with stakeholders all levels within the organization with proven success in building and developing strong relationships with business stakeholders. Proven experience in leading diverse teams made up of direct reports, indirect reports, consultants, and managed service providers is required. Experience leading geographically diverse teams is a plus.Experience communicating with senior executives as well as technical and financial business colleagues. Master communicator and active listener who understands how to navigate an audience. Proven success delivering solutions to minimize our cyber risk for an enterprisePrior experience working in a fast paced and flexible environment with many conflicting priorities. Experience prioritizing projects and staff time based on other commitments and risk is required.Prior experience working in high visibility positions is required. Ability to attract and retain high performing talent Desired Qualifications 3+ years of experience in incident response operations or supporting training for incident response. 3+ years of Cyber Resilience experience.Adaptable and comfortable with ambiguity, yet eager to understand the root cause of a challenge and drive a solution. The ability to understand the financial, brand and eruptional effect of incidents, as well as an ability to communicate this to all levels of personnel.Strong IT security or disaster recovery support background.Note: Employment-based non-immigrant visa sponsorship and/or assistance is not offered for this specific job opportunity.Benefits:Because we want our team members to bring us their very best every day, we believe they deserve the right opportunities and benefits. That's why we packed our comprehensive benefits package for full- and some part-timers with:Health and wellbeing options for team members and their dependentsUp to 4% matching 401(k)Tuition reimbursementContinuing educationBonus eligiblePaid time offPaid volunteer time And more Our Company:OneMain Financial is the country's largest lending-exclusive financial company, proudly serving millions of customers with safe, affordable and transparent installment loans. Our customers turn to us every day-online and at 1,500 branches in 44 states-to help them take control and improve their financial lives with solutions for debt consolidation, medical expenses, household bills, home improvements and auto purchases. Our talented and dedicated team members constantly look for responsible ways to serve our customers when, where and how they want. It's all about doing the right thing-a mission that hasn't changed for more than 100 years.#LI-EK1