Senior Specialist - Technology and Cybersecurity Risk - Enterprise Data
Job in
Buffalo, Erie County, New York, 14266, USA
Listed on 2026-07-02
Listing for:
M&T Bank
Full Time
position Listed on 2026-07-02
Job specializations:
-
IT/Tech
Job Description & How to Apply Below
Overview
Leads risk analysis for complex initiatives within the Enterprise Data division, serving as the primary First-Line risk representative for this space. This role influences the overarching risk framework, drives data‑centric risk governance, and provides advanced guidance to leadership to support informed decision‑making aligned with organizational imperatives. The individual must bring strong experience in process mapping, audit practices, data governance, and the DCAM framework, with the ability to independently evaluate data processes, identify control gaps, and recommend corrective actions.
PrimaryResponsibilities
- Develop and implement strategic approaches for in‑depth risk assessments across Enterprise Data, ensuring comprehensive coverage of all data‑related capabilities, processes, and governance functions.
- Create, maintain, and analyze detailed process maps to identify points of failure, operational inefficiencies, control gaps, and potential risks; translate findings into actionable remediation plans and new or enhanced controls.
- Apply audit‑driven methodologies to evaluate Enterprise Data processes, ensuring alignment with regulatory expectations, internal standards, and industry best practices.
- Leverage the DCAM framework to assess data management maturity, identify capability gaps, and guide the Enterprise Data organization toward stronger governance and compliance.
- Develop and execute sophisticated risk management frameworks and programs that align Enterprise Data practices with business objectives and regulatory requirements, including leading risk and control self‑assessments and summarizing complex findings for leadership.
- Drive enforcement of risk and governance frameworks, providing expert guidance and continually assessing regulations, standards, and emerging risks to achieve industry‑leading compliance across data operations.
- Act proactively as the first‑line risk owner, independently identifying emerging risks, control weaknesses, and areas requiring improvement across Enterprise Data—without waiting for issues to be escalated or discovered by second‑ or third‑line functions.
- Spearhead collaboration among cross‑functional teams and senior/executive leadership, ensuring Enterprise Data practices align with broader business goals, regulatory requirements, and enterprise risk expectations.
- Coordinate preparation and response to regulatory engagements, including reviewing responses for accuracy, organizing documentation, and leading exam management activities (e.g., first‑day letters, follow‑up requests).
- Encourage innovation in risk management strategies by identifying advanced methodologies to address evolving data‑related risks and recommending implementation paths to Technology and Enterprise Data leadership.
- Provide advanced mentorship to mid‑level analysts, fostering professional growth and ensuring a high standard of risk analysis and data governance expertise across the team.
- Contribute to the design and delivery of training programs to strengthen organizational knowledge of data risk management, data governance, and associated regulatory expectations.
- Understand and adhere to the Company’s risk and regulatory standards, policies, and controls in accordance with the Company’s Risk Appetite. Identify risk‑related issues requiring escalation.
- Promote an environment that supports belonging and reflects the M&T Bank brand.
- Maintain internal control standards, including timely remediation of audit points and regulatory issues.
- Complete other related duties as assigned.
- This role primarily interacts with senior people leaders within the Technology and Cybersecurity teams, senior people leaders of Technology and Cybersecurity Risk, and internal partners such as the Risk Division, Internal Audit, and Regulatory Affairs.
- Work is accomplished with periodic direction. The position exercises judgement in selecting methods, techniques, and evaluation criteria in obtaining results. It exerts significant latitude in determining objective of assignment and takes calculated risks with consultation from expert.
- This role may present to Regulators under direction of…
Position Requirements
10+ Years
work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
Search for further Jobs Here:
×