The Role
Overview:
Responsible for providing input, support, and analysis to general cybersecurity business processes. Assists in the creation of new or updating of existing processes and policies that ensure resiliency and security of organization.
Primary Responsibilities:- Act as a remediation specialist responsible for resolving access and identity-related issues identified through investigations, audits, and BAU reporting.
- Prepare and submit Requests for Change (RFCs) to implement remediation activities ensuring accuracy, completeness, and alignment with enterprise change management standards.
- Maintain a strong working knowledge of the change management process, including risk assessment, approvals, implementation, and validation requirements.
- Coordinate remediation execution across multiple technical teams to ensure timely, low‑risk implementation.
- Track remediation progress and provide status updates, artifacts, and evidence required for audit, 2LoD, and regulatory validation.
- Build out job aids and process documentation to ensure consistent framework across all teams and shifts.
- Participate in the review and update of policies and procedures pertaining to various governance areas.
- Conduct and document research on industry best practices and regulatory requirements to inform policy development.
- Maintain systems and processes for monitoring compliance with established policies and procedures.
- Analyze and report on compliance data to provide insights and recommendations to Cybersecurity leadership.
- Collaborate with Cybersecurity, Technology, and First Line Risk teams and, at times, business lines to proactively mitigate risk through existing policies and procedures.
- Gather and share data to peers and leadership for internal audit and regulatory requests, ensuring highest degree of accuracy.
- Assists various aspects of remediation activities by drafting key actions, timeline, and communication plan.
- Effectively communicate governance activities and updates to stakeholders across Cybersecurity teams.
- Proactively respond to ad-hoc Cybersecurity analysis requests, questions, and issues.
- Maintain vendor relationships for specific security products or solutions, including communication around maintenance, issue resolution, and troubleshooting.
- Strategize with leadership to manage vendor relationships by informing budget for future tools and needs.
- Understand and adhere to the Company’s risk and regulatory standards, policies, and controls in accordance with the Company’s Risk Appetite. Design, implement, maintain, and enhance internal controls to mitigate risk on an ongoing basis. Identify risk-related issues needing escalation to management.
- Promote an environment that supports belonging and reflects the M&T Bank brand.
- Maintain M&T internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators as applicable.
- Complete other related duties as assigned.
- Partners with peers, manager, Cybersecurity team, First Line Risk team
- Leverages established directions, policies, and guidelines to accomplish work. Work is reviewed for accuracy and overall quality.
- Working knowledge of 1-2 cybersecurity platforms and applications within function
- Bachelor's degree and a minimum of 2 years’ relevant work experience, or in lieu of a degree, a combined minimum of 6 years’ higher education and/or work experience inclusive of a minimum 1 year work experience in Cybersecurity, Technology, or Risk/Audit
- Demonstrated working knowledge of cybersecurity principles and compliance requirements
- Working knowledge of 1-2 cybersecurity platforms and applications within function
- Proven experience thinking critically and solving problems
- Strong written and verbal communication skills
- Ability to collaborate effectively with all levels of personnel and business partners across the organization
- Demonstrated working knowledge of technology risk principles and compliance requirements
- Proven experience translating technical requirements into clear policies and procedures
#LI-JB3 #Hybrid
M&T Bank is committed to fair, competitive, and market-informed pay for our employees. The pay range for this position is $80,900.00 - $134,800.00 Annual (USD). The successful candidate’s particular combination of knowledge, skills, and experience will inform their specific compensation.LocationBuffalo, New York, United States of AmericaM&T Bank Compensation & Benefits Highlights
The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about M&T Bank and has not been reviewed or approved by M&T Bank.
-
Retirement Support — Retirement benefits are positioned as a strong pillar, including a 401(k) match and the possibility of an additional employer contribution, plus access to an employee stock purchase plan.
-
Leave & Time Off Breadth — Time-off offerings are framed as competitive, with a flexible PTO approach and paid volunteer time called out as a meaningful add-on to standard leave.
-
Wellbeing & Lifestyle Benefits — Wellbeing support appears comparatively robust, highlighted by mental-health therapy/coaching sessions and broader wellness programming alongside community-oriented perks.
M&T Bank Insights
Similar Jobs
.jpeg)
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.
Success! Refresh the page to see how your skills align with this role.
The Company
What We Do
M&T Bank is a multi-state community-focused bank serving New York, Maryland, New Jersey, Pennsylvania, Delaware, Connecticut, Virginia, West Virginia and Washington, D.C. Founded in 1856, the company provides banking, investment, insurance and mortgage financial services to more than 3.6 million consumer, business and government clients.
