Cyber Assurance Testing Service and Regulatory Specialist
UBS
We are expanding our global Red Team (Cyber Assurance Testing) and are looking for a skilled and experienced cyber security specialist to join us. This role will assist in the management of UBS’s internal Cyber Assurance Testing service and play a lead role in the delivery of a growing number of regulatory red team engagements to satisfy the requirements and expectations of financial regulators across the globe.
Candidates will be expected to have some experience of engaging with red team testing and financial regulatory red team engagements (e.g. CBEST, iCAST, TIBER), ideally in a finance sector firm, regulatory or consultancy environment. We are looking for individuals with a deep interest in cyber security, and in particular the emulation of real-world offensive cyber-attacks. Keeping up to date with knowledge of threats, vulnerabilities, and techniques should be something you find fun and interesting rather than just a job requirement.
The role will require strong project and stakeholder management skills, an inquisitive mind, an ability to think outside of the box, and a broad understanding of technical aspects of cyber security. Technical certifications such as CISSP, CCSP, CISM, CREST, OSCP, etc will be advantageous, but they are not a deal breaker. We are primarily concerned with your ability to organize and manage projects, and communicate with technical and non-technical stakeholders at all levels of seniority across and outside of the firm.
The ability to write clear reports in business English is an absolute necessity, as are project management skills and personal organizational ability.
Your Duties and Responsibilities will Include:
• contributing to the management of UBS’s internal Cyber Assurance Testing (CAT) service - supporting the ongoing internal testing process and delivery of output
• managing the planning, scoping, execution, and reporting of regulatory red team tests to satisfy regulatory testing frameworks such as CBEST, iCAST and TIBER
• onboarding, contracting and managing third-party red team vendors to deliver regulatory red team testing
• managing relationships with red team testing vendors, senior internal stakeholders, and regulators
• collaborating with blue teams and other cyber defense functions
• developing reports of findings, analysis, and recommendations for internal UBS stakeholders, and contributing to regulatory submissions.
• delivering operational briefings and presentations to technical teams, non-technical stakeholders, and senior management.
• providing technical cyber security expertise to UBS Group Compliance, Regulatory and Governance (GCRG) Cyber and Technology Risk Control
Candidates will be expected to have some experience of engaging with red team testing and financial regulatory red team engagements (e.g. CBEST, iCAST, TIBER), ideally in a finance sector firm, regulatory or consultancy environment. We are looking for individuals with a deep interest in cyber security, and in particular the emulation of real-world offensive cyber-attacks. Keeping up to date with knowledge of threats, vulnerabilities, and techniques should be something you find fun and interesting rather than just a job requirement.
The role will require strong project and stakeholder management skills, an inquisitive mind, an ability to think outside of the box, and a broad understanding of technical aspects of cyber security. Technical certifications such as CISSP, CCSP, CISM, CREST, OSCP, etc will be advantageous, but they are not a deal breaker. We are primarily concerned with your ability to organize and manage projects, and communicate with technical and non-technical stakeholders at all levels of seniority across and outside of the firm.
The ability to write clear reports in business English is an absolute necessity, as are project management skills and personal organizational ability.
Your Duties and Responsibilities will Include:
• contributing to the management of UBS’s internal Cyber Assurance Testing (CAT) service - supporting the ongoing internal testing process and delivery of output
• managing the planning, scoping, execution, and reporting of regulatory red team tests to satisfy regulatory testing frameworks such as CBEST, iCAST and TIBER
• onboarding, contracting and managing third-party red team vendors to deliver regulatory red team testing
• managing relationships with red team testing vendors, senior internal stakeholders, and regulators
• collaborating with blue teams and other cyber defense functions
• developing reports of findings, analysis, and recommendations for internal UBS stakeholders, and contributing to regulatory submissions.
• delivering operational briefings and presentations to technical teams, non-technical stakeholders, and senior management.
• providing technical cyber security expertise to UBS Group Compliance, Regulatory and Governance (GCRG) Cyber and Technology Risk Control
Confirm your E-mail: Send Email
All Jobs from UBS