FS-ISAC - Position Openings

Business Analyst, FS-ISAC

Chief Information Security Officer, FS-ISAC

​Marketing Specialist, GRF 

Full job descriptions of the positions listed above are available following the position openings section. To apply, please send a cover letter and resume to with the positions title listed in the subject line.


FSARC - Position Openings

​Intelligence Analyst

Full job descriptions of the positions listed above are available following the position openings section. To apply, please send a cover letter and resume to with the position title listed in the subject line. 



Financial Systemic Analysis and Resilience Center (FSARC)

Position: Intelligence Analyst

Job Status: Full Time                                                         FLSA Status: Exempt

Reports To: Intelligence Coordinator                                 Travel Required: Occasional

Work Schedule: Mon - Fri: 40 hours                                 Positions Supervised: None

Office Location: Arlington, Virginia                                    Type : New Hire

Capability/Team:  Intelligence                                           

Clearance:  Minimum Secret required



The FSARC seeks a highly motivated and cross-disciplinary analyst to join its intelligence team, offering a rare opportunity to meaningfully contribute to the genesis of an organization driving a new paradigm in collaborative cyber intelligence analysis and security. This is a demanding position that requires a candidate with proven cyber intelligence and analysis skills and demonstrated success in supporting high-impact teams in a fast-paced, high-visibility environment. The FSARC’s mission is to proactively identify, analyze, assess and coordinate activities to mitigate systemic risk to the U.S. financial system from current and emerging cyber security threats through focused operations and enhanced collaboration between participating firms, industry partners, and the U.S. Government 

In 2016, the CEOs of eight banks – Bank of America, BNY Mellon, Citigroup, Goldman Sachs, JPMorgan Chase, Morgan Stanley, State Street and Wells Fargo – came together to proactively identify ways to enhance the resilience of the critical infrastructure underpinning much of the U.S. financial system. The result is the creation of the FSARC. The FSARC combines the expertise of participating firms’ cyber security and threat intelligence teams with that of its government partners, including the Department of Treasury, the Department of Homeland Security and the Federal Bureau of Investigation. As a result, the collective pipeline of intelligence produced deepens the analysis of identified threats and reduces systemic risk across critical financial operations.



Leverage prior successes in intelligence analysis, cyber operations, and geopolitical forecasting to contribute to the collective economic and national security of the United States.

Use analytic acumen and critical thinking skills to produce timely, actionable, and informative analysis regarding threat actor activity and indications of systemic cyber threats to the financial sector for delivery to C-Suite executives and senior government officials.

Aggregate, process, and analyze information from a wide variety of public and non-public sources while closely collaborating with other FSARC teams, member firms, and U.S. Government partners to deliver strategic intelligence reports that convey analytic judgments on cyber threat activity targeting the financial sector.

Advance a broader and deeper understanding of both state and non-state cyber threat actors, and their associated capabilities and intentions.

Accurately perform trending analysis and scenario forecasting at both the operational and strategic levels.

Substantively contribute to the FSARC’s advancement through relevant experiential and subject matter expertise that support the Center’s mission.

Attend regular and routine meetings in the Washington, DC area.




At least 5-7 years of demonstrated success in cyber-related intelligence and analysis.

Minimum undergraduate degree in Intelligence Studies, International Affairs, Cyber Security, Computer Science, Political Science, Economics, or other related discipline with a strong academic record.

Superb research, writing, and analysis skills.

Deep knowledge of the cyber threat landscape, particularly as it relates to the financial services industry, as well as other critical infrastructure sectors.

Thorough understanding of Internet technologies, lexicon, and common cyber threat issues.

Proven success in authoring and delivering analytic products based on often incomplete information with the ability to cogently express complex technical and non-technical topics both verbally and in writing.

Demonstrated experience in critical and strategic thinking.

Strong collaboration and problem-solving skills with the ability to work independently and as part of a team.

Firm commitment to confidentiality and discretion.

Experience in building professional presentations and delivering briefings to executive or government leadership.

Self-starter with a high degree of initiative and personal accountability.

Ability to use standard office software applications.

U.S. Citizen.




  • Master’s Degree in a relevant discipline
  • Prior military or intelligence community experience
  • Country/region subject matter expertise
  • Advanced language skills in Arabic, Farsi, Mandarin Chinese, or Russian
  • Knowledge of U.S. Government organization and functions
  • Understanding of risk management and assessment processes
  • Prior financial sector employment
  • Scripting/programming experience in common languages (e.g. Perl, Python, Ruby)



This position is performed in an office work environment with physical demands associated with that environment. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.



Financial Services Information Sharing and Analysis Center (FS-ISAC)

Position: Business Analyst 

Job Status: Full Time                                                         FLSA Status: Exempt

Reports To: VP, Security Info Services                             Travel Required: As needed

Work Schedule: Mon - Fri: 40 hours                                 Positions Supervised: N/A

Firm: New Hire



The Business Analyst is a highly motivated and cross-disciplinary analyst that serves as part of the Security Information Management team (SINFO). The SINFO team assesses the security information needs of FS-ISAC members, affiliates, and staff.  We then design and deliver on opportunities to meet those security information needs. The team will assess what information is available with existing FS-ISAC resources, including the Member and Affiliate communities, and determine what information needs to be collected from the broader security community. The team’s goal is to build capabilities that will lead members to identify FS-ISAC as the premier source for information security knowledge.

The employee is this role understands current and emerging security trends across the Financial Industry. They will have operational experience in a security organization and be familiar with the challenges and issues a security team faces on a day-to-day basis. The Business Analyst will host events to provide our members with relevant security information.  Events can include Summits, Webinars, regional/networking meetings, educational sessions, and other initiatives as created to address the needs of the financial community.




Work with staff, members and affiliates to plan themes/content for FS-ISAC events. 

Work with Content Committee to identify gaps, build themes, and obtain feedback.

Create, review, edit, and revise security materials as needed.

Moderate or host events as needed.

Assist with content-related activities, including creating scripts, reviewing materials, planning sessions, outreach to staff, etc.


Content Management

Build and maintain a content management process to collect, assess, distribute, and maintain security topics and trends. 

Create plan for sharing information with Members. 

Design and analyze surveys related to security needs and trends

Identify and prioritize security topics of interest to FS-ISAC staff and Members.

Perform basic data analysis and calculate metrics, e.g., build pivot tables and other analytical tools in Excel.


Change Management

Assist with planning and executing changes related to the STARS program

Identify adjustments to processes that can enhance Member events or FS-ISAC’s ability to provide information to members.



Communication Skills – Strong written and verbal communication skills.

Critical Thinking - Able to think critically, independently identify security trends and standards.

Interpersonal Skills –Able to interact with individuals from a variety of levels internally and externally.

Problem Solving - Able to make independent judgments and use discretion. 

Professionalism – Is self-motivated, responsible and disciplined, and able to work as part of a team.

Planning and Organizing - Able to handle multiple tasks simultaneously, carryout complex event planning.



  • Bachelor’s degree in a technical field or equivalent combination of education and experience.


Background and Experience 


  • 2 years operational security experience or equivalent. Basic knowledge of technology, including systems and applications highly preferred
  • Must have an excellent knowledge of cyber security, cyber regulations, governance and key contributors and topics
  • Familiarity with organizing and hosting security events, to include Summits, Webinars, Regional meetings, educational sessions
  • Knowledge of financial industry preferred
  • Knowledge of security frameworks, trends and solutions
  • Knowledge of FS-ISAC members and affiliates 



This position is performed in an office work environment with physical demands associated with that environment. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

The company has reviewed this job description to ensure that essential functions and basic duties have been included. It is not intended to be construed as an exhaustive list of all functions, responsibilities, skills and abilities. Additional functions and requirements may be assigned by supervisors as deemed appropriate.



Financial Services Information Sharing and Analysis Center (FS-ISAC)

Position: Chief Information Security Officer (CISO)

Job Status: Full Time                                                         FLSA Status: Exempt

Reports To: Sr. Management                                             Travel Required: 10 - 20%

Work Schedule: Mon - Fri: 40 hours                                 Positions Supervised: TBD

Firm: New Hire



The Financial Services Information Sharing and Analysis Center (FS-ISAC) is a non-profit corporation that was established in 1999 and is funded by its member firms.  The FS-ISAC is a member-driven organization whose mission is to help assure the resilience and continuity of the global financial services infrastructure and individual firms against acts that could significantly impact the sector’s ability to provide services critical to the orderly function of the global economy.  The FS-ISAC shares threat and vulnerability information, conducts coordinated contingency planning exercises, manages rapid response communications for both cyber and physical events, conducts education and training programs, and fosters collaborations with and among other key sectors and government agencies.

As one of the premier ISAC’s, the FS-ISAC has a history of innovation and delivering valuable products and services to our members to help achieve our mission.  To ensure our members are continuously aware and prepared for today’s threats and tomorrow’s challenges, the FS-ISAC is seeking a CHIEF INFORMATION SECURITY OFFICER to oversee the FS-ISAC security program.



The position of Chief Information Security Officer (CISO) is responsible for establishing the security strategy and the overall risk posture of the organization through the development of a comprehensive risk management program. This program is appropriate for the risk appetite of the organization focusing on the confidentiality, integrity, and availability of the organization and membership's information assets. The CISO. As a trusted advisor, the CISO will work with the sales and marketing departments to enable membership sales opportunities and executive-level member engagement through thought leadership and relationship building. The CISO position reports directly to the Chief Information Risk Officer and will support the CIRO in communicating with the Board of Directors Security & Risk Committee.


Establish and maintain a global cyber risk and security program driven by established information protection and physical security policies.

Collaborate with internal stakeholders to develop processes and procedures to carry out the intended goals of the policies.

The CISO is responsible for the development and management of a robust security program responsible for security operations, administration of logical and physical access, monitoring of threats against the organization and membership, vulnerability management, intrusion detection/prevention, malware detection/prevention/analysis, data loss prevention, forensics, incident response, and event logging/correlation.

The CISO will also be responsible for the continuity of business/disaster recovery program of the organization working closely with the Director of IT and Director of Business Resiliency to facilitate.

Having advanced knowledge of the global threat landscape, the CISO will also shape the direction of the Intelligence program integrating threat information compiled from disparate sources with data available from email distro lists, vendor feeds, and commercial products to maintain existing intelligence products as well as enabling the creation of new product capabilities.

The CISO will be a global strategic thinker who knows how to integrate people and process with procedure while always executing on the broader mission.

Superb interpersonal skills will also enable the CISO to manage a highly diverse and global staff working in a fast-pace and dynamic environment.

Align with priorities and mission of the Chief Operating Officer, CIRO, & VP, Information Technology to ensure security is "baked in" to all operational functions of the organization.

Partner closely with the head of Sales & Marketing and Chief Product & Innovation Officer to enable sales opportunities by providing expertise in security to potential members typically at the C-Suite level.


Strategic thinking, thought leadership, strong presentation skills.

Certification with ISSEP/CISSP, CISM, GSEC, etc.

Outsourcing management experience.

Strong working knowledge of global threat landscape from both a physical and cyber perspective.

15+ years of experience leading a global cyber security program.

Ability to forge and maintain strong relationships with various government agency officials, membership leadership, and vendor executives.

Exceptional ability to manage resources and priorities across multiple time zones and countries; Multi-cultural knowledge a plus.

Previous law enforcement or inter-agency experience preferred.


  • An equitable compensation package will be provided commensurate to work experience & job requirements
  • Ability to obtain a Clearance from US government partner agency a plus
  • The FS-ISAC offers a comprehensive benefits package including paid time off, medical, and dental benefits paid for by the employer, annual bonuses, 401k plan with company match and others.



  • Cyber Security, Threat Intelligence, Vulnerability Management, Business Continuity, Security Operations, Security Architecture and Design, Identity & Access Management, Risk Management, Compliance & Audits, Business Enablement: +15 years



  • Bachelor's Degree in Computer Science, Business, Engineering, or related field.  
  • Master's degree or equivalent work experience preferred.



  • This position will be based in our Reston, VA global headquarters



Global Resilience Federation (GRF)

Position: Marketing Specialist 

Job Status: Full Time                                                         FLSA Status: Exempt

Reports To: Director of Communications, GRF               Travel Required: N/A, as needed

Work Schedule: Mon - Fri: 40 hours                                 Positions Supervised: N/A

Firm: New Hire



Global Resilience Federation (GRF) is a non-profit organization whose mission is to help assure the resilience and continuity of vital infrastructure and individual organizations when facing threats that could impact their ability to provide services critical to the global economy. GRF serves as an intelligence sharing and analysis hub for cyber, physical, and geo-political threat information exchanged between ISACs, ISAOs and CERTs from many different sectors and regions around the world.

The Marketing Specialist for GRF will be responsible for developing and managing marketing material to in support of a GRF Partner Community. The role includes working closely with members, vendors, and various departments within the organization and reports to the GRF Director of Communications.



Develop and manage direct mail and e-mail advertising campaigns in support of sales.

Create PowerPoint presentations for community growth and informational purposes.

Coordinate content for and oversee webinars, newsletters, and case studies.

Design marketing and sales collateral.

Copy-edit critical work for other team members.

Develop and publish website content.

Coordinate with vendors providing marketing support.



Extremely effective written and oral communications skills.

Track record of successful campaign and material development.

Experience managing complex projects or programs.

Possess strong organizational skills.

Be able to identify and track performance metrics.

Self-motivated, responsible and disciplined, able to work independently and as part of a team, able to prioritize effectively, handle multiple tasks simultaneously and consistently turn in high-quality work without close supervision.



  • Bachelor's Degree in Marketing, Communication, English or related field equivalent combination of education and experience.


Background and Experience

  • Working knowledge of information sharing communities
  • Familiarity with cybersecurity technology, techniques and practices
  • Basic understanding of the threat intelligence cycle
  • Graphic design experience
  • Familiarity with tradeshow practices
  • Five or more years of professional experience



This position is performed in an office work environment with physical demands associated with that environment. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.