Careers

Financial Systemic Analysis and Resilience Center (FSARC)

Position: President

Job Status: Full Time                                                        FLSA Status: Exempt

Reports To: Board of Managers                                         Travel Required: Moderate

Work Schedule: Mon-Fri; 40 hours + as necessary               Positions Supervised: Chief of Staff

Office Location: Arlington, Virginia                                   Type: New Hire

Clearance: Yes

POSITION SUMMARY

The FSARC is seeking a President to lead the organization in accordance with the mission and desired goals of the Board of Managers. The President reports to the FSARC Board of Managers and is accountable to the FS-ISAC CEO for execution of assigned FSARC duties. Submit letters of interest and resumes to fsarc-HR@fsisac.com with position title and new hire in subject.

 

ESSENTIAL FUNCTIONS

Implement decisions by the FSARC Board of Managers.

Execute strategic alignment and synchronization of services, products, and external relationships for implementation of FSARC capabilities, coordinating member firms, FS-ISAC, and the U.S. Government as necessary.

Serve as the FSARC official representative for external engagements.

Lead strategic planning to identify organization capabilities and build plans for execution of those functions; provide opportunity for collaboration with FS-ISAC, member firms, and the U.S. Government.

Plan and execute organization’s financial activities to include budgeting, dues schedules and amounts, manage current year budget; report P&L statements as required to FSARC Board of Managers, FS-ISAC, and member firms.

Conduct membership outreach and approve member Participant Agreements.

Decision authority for staffing allocations between firms and FSARC; present and gain Board of Managers approval for final decisions and implement those decisions.

Report operational status and effectiveness of activities to Board of Managers, FS-ISAC, and member firms.

Able to travel outside of the Washington, D.C. area for meetings and events; as well as attend regular and routine meetings in the Washington, D.C. area.

 

POSITION QUALIFICATIONS

Competency Statement(s). To perform the job successfully, an individual should demonstrate the following competencies:

  • Excellent leadership skills with the ability to direct and leverage cross-functional teams to meet defined objectives.
  • Excellent negotiation skills with proven ability to identify, influence, and persuade key decision makers at multiple levels of organizations.
  • Strong oral and written communications skills; strong presentation and marketing skills.
  • Proven excellence in cybersecurity leadership, building teams, shaping priorities, driving results, and conducting strategic planning.
  • Strong understanding of the risks, centers of gravity and operations of the U.S. financial sector.
  • Experience leading high impact teams in a fast paced, high profile environment.
  • Strong collaboration skills among a multi-stakeholder membership.
  • Experience developing, refining, and coordinating enterprise-wide internal policies.
  • Ability to gain and maintain a government security clearance.

 

Education and Certifications
Minimum undergraduate degree

Other Desired Experience
Financial sector background

Technology Applications
Standard office software applications

 

WORK ENVIRONMENT

This position is performed in an office work environment with physical demands associated with that environment. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

 


 

Financial Systemic Analysis and Resilience Center (FSARC)

Position: Chief of Staff

Job Status: Full Time                                                         FLSA Status Exempt

Reports To: President                                                        Travel Required: Occasional

Work Schedule: Mon - Fri: 40 hours + as needed                 Positions Supervised: Security Manager and IT/Administrative Assistant

Office Location:     Arlington, Virginia                                Type: New Hire

Capability/Team:  Governance                                            

Clearance:  Yes

 

POSITION SUMMARY

The FSARC is seeking a Chief of Staff to supervise and manage the operations of the FSARC, support the President in fulfilling the organizational mission, liaison and connect the Capability/Teams as well as with the FS-ISAC, and supervise the security manager and IT/Administrative Assistant. The Chief of  Staff reports to the President. This position requires a candidate that has proven ski experience in leading high impact teams in a fast paced, high profile environment to successfully operate an effective organization. Submit letters of interest and resumes to fsarc-HR@fsisac.com with position title and new hire in subject.

 

ESSENTIAL FUNCTIONS

Drive operational results by integrating and synchronizing FSARC activities conducted by the work streams and external stakeholders.

Develop budget requirements for President’s approval; manage expenditures to ensure alignment with approved budgets; report as required current budget status to include monthly run rates.

Introduce new firms to the FSARC structure, advise on bi-directional needs between the FSARC and firm’s security teams; integrate the firm into the capability teams work streams.

Responsible for recruiting and staffing actions required to ensure fulfillment of approved staff positions, both those hired by FSARC and those provided by member firms.

Develop status and operational effectiveness metrics and updates; reports this information to President as required to include analysis of shortfalls and prioritized alternatives to meet FSARC mission requirements.

Attend regular and routine meetings in the Washington, D.C. area; some travel to meetings and events outside of Washington D.C. area.

 

POSITION QUALIFICATIONS

Competency Statement(s). To perform the job successfully, an individual should demonstrate the following competencies:

  • Excellent leadership skills with the ability to leverage cross-functional teams to meet defined objectives.
  • Excellent negotiation skills with proven ability to identify, influence, and persuade key decision makers at multiple levels of an organization.
  • Strong interpersonal, oral and written communications skills; strong presentation and marketing skills; strong organizational and time management skills.
  • Experience with internal audit processes and/or external regulatory examinations.
  • Proven excellence in cybersecurity leadership, building teams, shaping priorities, driving results and conducting strategic planning.
  • Strong understanding of the risks, centers of gravity and operations of the U.S. financial sector.
  • Strong collaboration skills among a multi-stakeholder membership.
  • Experience developing, refining, and coordinating enterprise-wide internal policies.
  • Ability to gain and maintain a government security clearance.
  • Self-starter with ability to work independently as well as part of the team.
  • Understanding and demonstrating good problem-solving skills.

 

Education and Certifications
Minimum undergraduate degree

Other Desired Experience
Financial sector background

Technology Applications
Standard office software applications

 

WORK ENVIRONMENT

This position is performed in an office work environment with physical demands associated with that environment. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

 


 

Financial Systemic Analysis and Resilience Center (FSARC)

Position: Security Manager

Job Status: Full Time                                                   FLSA Status: Exempt

Reports To: Chief of Staff                                            Travel Required: Occasional

Work Schedule: Normal Office Hours                            Positions Supervised: None

Office Location: Arlington, Virginia                              Type: New Hire

Capability/Team: Access to Classified Information        

Clearance: Yes

 

POSITION SUMMARY

The FSARC is seeking a Security Manager, responsible for the organization’s implementation and management of an information security program. The position is responsible for ensuring fundamental compliance with the National Industrial Security Program’s policies and procedures while standing up and directing the security operations of a cleared facility and personnel security clearance program. Submit letters of interest and resumes to fsarc-HR@fsisac.com with position title and new hire in subject.

 

ESSENTIAL FUNCTIONS 

Implement certification and accreditation processes, physical and personnel security requirements and procedures.

Oversee the planning, installation, implementation, control, and operation of security systems to ensure continuous integrity of facility and secure area access controls. 

Implementation of and compliance with information security requirements for all uses of information technology. 

Coordinate internal security measures for the classification, safeguarding, transmission, declassification, and destruction of classified information. 

Coordinate with information systems security personnel as required for effective management, use, and oversight of classified information in electronic form. 

Achieve system security operational objectives by contributing information and recommendations to strategic plan improvements.

Ensure that security threats and incidents pertaining to classified information are reported, recorded, coordinated with the proper authorities and when necessary take appropriate actions to mitigate damage and prevent recurrence of security issues. 

Establish system safeguards by directing disaster preparedness development; conducting preparedness tests.

Ensure compliance with government and company security regulations, policies, and procedures.

Establish inspection schedules, review results and make recommendations for security enhancements.

Ensure all inspections, checks, reviews, and investigations of any security incidents are completed to standard and on time.

Review and investigate non-compliance issues. Add controls as needed to implement and ensure that risks are sensibly being managed.

Prepare and maintain manuals outlining regulations and establish procedures for handling, storing, and keeping records for granting personnel and visitor’s access to restricted areas. 

Formulate, coordinate, and conduct the activity’s security education and training program, to include related information systems. Keep personnel performing security duties abreast of changes in policies and procedures, and assist in problem-solving. 

Establish briefings and provide security training and oversight to all employees on Industrial Security Program policy and procedures, including insider threat, suspicious contacts/activities, and espionage.

Develop, recommend, and procure training materials as needed and monitor the effectiveness of the security related training program.

Plan and implement controls to ensure personnel with the appropriate clearances are cleared for access; ensure the facility is secured with the appropriate physical security associated with the facility clearance; and ensure that digital and paper media are stored securely based on the respective clearance levels.

Attend regular and routine meetings with stakeholders in the DC region.

 

POSITION QUALIFICATIONS

Competency Statement(s). To perform the job successfully, an individual should demonstrate the following competencies:

  • Knowledge of NISPOM, DCIDs, ICDs, Information Security Policies and other government security directives, Network Security, Change Management, Quality Management, Technical Management, Tracking Budget Expenses, Strategic Planning, Supervision, Decision Making, Problem Solving, Analyzing Information
  • The company has reviewed this job description to ensure that essential functions and basic duties have been included. It is not intended to be construed as an exhaustive list of all functions, responsibilities, skills and abilities. Additional functions and requirements may be assigned by supervisors as deemed appropriate.
  • Effective written and verbal communication skills, strong interpersonal relations, and the ability to calmly articulate and present comprehensive, concise and risk-management recommendations in a timely manner.
  • Proficient knowledge and use of data visualization tools, Microsoft Office Professional Suite, SharePoint, project management, database management tools, mass communication tools, incident management systems, and other IT or web enabling skills.
  • Experience developing, refining, and coordinating enterprise-wide internal policies.
  • Ability to gain and maintain a government security clearance

 

Education and Certifications
Undergraduate Degree with 5-7 years’ experience

Other Desired Experience
Preferred current SSBI investigation with past experience working in classified environments
Experience as a security manager over facilities and personnel clearances
Experience working in the financial services industry

Technology Applications
Standard office software applications

 

WORK ENVIRONMENT

This position is performed in an office work environment with physical demands associated with that environment. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

 


 

Financial Systemic Analysis and Resilience Center (FSARC)

Position: Crisis Management Lead

Job Status: Full Time                                                     FLSA Status: Exempt

Reports To: FSARC Chief of Staff                                 Travel Required: Occasional

Work Schedule:  Normal Office Hours 
                        As needed during incident or event

Office Location: Arlington, Virginia                               Type: New Hire

Capability/Team: Improve Resilience and Resiliency

Clearance: Yes – must be able to gain and maintain a SECRET clearance

 

POSITION SUMMARY

The FSARC is seeking a Crisis Management Lead to work as part of the Improve Response and Resiliency Team. This position requires a proven team leader, with strong analytical, critical thinking, and problem solving skills with demonstrable hands-on operational experience in crisis management prevention, preparedness, and response and recovery efforts. The candidate must be self-driven, technically literate, and results oriented individual capable of effectively prioritizing and working multiple tasks concurrently across an ambiguous and uncertain global risk landscape. This position supervises two Risk Analyst and Contingency Planners and one Business Integration Lead. Submit letters of interest and resumes to fsarc-HR@fsisac.com with position title and new hire in subject.

 

ESSENTIAL FUNCTIONS

Lead the FSARC Response and Resiliency Team.

Ensure the sector exercise program plans, executes and follows through on validation of risk mitigation strategies and other FSARC objectives to reduce systemic risk to the sector.

Participate in key sector exercise roles when required to further FSARC objectives.

Identify systemic risks to the financial sector and document/validate in a sector risk register; assist FSARC efforts to prioritize operational efforts to reduce systemic risk to sector.

Create mitigation strategies for identified risks by leading contingency plan creation, validation and integration of objectives into sector exercise program.

Serve as FSARC representative in sector crisis response roles that stand-up in the event of an actual systemic crisis resulting from a cyber attack.

Evaluate and shape as needed USG and FS-ISAC sector crisis management protocols for effective sector response to a cyber attack.

Responsible for building relationships and collaborating with external stakeholders such as the FSSCC and FS-ISAC.

 

POSITION QUALIFICATIONS

Competency Statement(s). To perform the job successfully, an individual
should demonstrate the following competencies:

  • Experience leading crisis management teams and programs in a corporate setting.
  • Thorough knowledge of the National Response Framework (NRF), National Incident Management System (NIMS), Incident Command System (ICS) and the ability to apply these principles to the financial services industry.
  • Knowledge of U.S. Government regulations and certifications pertaining to emergency preparedness, response and recovery.
  • Effective written and verbal communication skills, strong interpersonal relations, and the ability to calmly articulate and present comprehensive, concise and risk-management recommendations in a timely manner to an executive audience.
  • Experience working in the financial services sector.
  • Technology experience with disaster recovery and crisis response.
  • Risk management experience.
  • Proficient knowledge and use of data visualization tools, Microsoft Office Professional Suite, SharePoint, project management, database management tools, mass communication tools, incident management systems, and other basic IT or web enabling skills.
  • Experience developing, refining, and implementing enterprise-wide policies.
  • Experience leading high impact teams in a fast paced, high profile environment.
  • Strong collaboration skills to work with a multi-stakeholder membership.
  • Ability to work independently as well as part of the team.
  • Ability to gain and maintain a government security classified clearance.
  • Attend regular and routine meetings in the Washington, D.C. area.

 

Education and Certifications
Master’s Degree and 8-10 years’ experience
Industry accepted Information Security or Risk certification desired

Other Desired Experience
Experience in crisis incident response
Minimum of ten years of demonstrated experience in an Information Security or IT Risk Management function, at a financial institution.
Experience working in the financial services industry.
Exposure to planning, executing and coordinating cyber exercises

Technology Applications
Standard office software applications

 

WORK ENVIRONMENT

This position is performed in an office work environment with physical demands associated with that environment. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

 


 

Financial Systemic Analysis and Resilience Center (FSARC)

Position: Intelligence Analyst

Job Status: Full Time                                                   FLSA Status: Exempt

Reports To: Intelligence Coordinator                             Travel Required: Occasional

Work Schedule: Mon – Fri; 40 hours                             Positions Supervised: None

Office Location: Arlington, Virginia                              Type: New Hire

Capability/Team: Improve Intelligence Support              

Clearance: Yes

Number of Positions: 2

 

POSITION SUMMARY

The FSARC is seeking an analyst for the Improve Intelligence Support team. This position requires a candidate with proven cybersecurity forensic and analysis skills and experience in supporting high impact teams in a fast paced, high profile environment. Submit letters of interest and resumes to fsarc-HR@fsisac.com with position title and new hire in subject.

 

ESSENTIAL FUNCTIONS

Monitor information feeds and threat actor activity from a variety of sources to identify activity levels and indicators for systemic cyber threats and cyber-attacks.

Responsible for mining data sources and reviewing analytic methods to identify potential cyber threats, targets of interest, and timeframes for attack.

Facilitate the exchange of analytic methods and reviews inputs from FSARC members for completeness in terms of analytic content and regression test results.

Responsible for normalizing analytic inputs so that it can be captured in the FSARC repository and track regression test results to determine if systemic issues are emerging.

Triage, process, analyze threat intelligence data, and draft and disseminate alerts, analytic reports, and briefings.

Attend regular and routine meetings in the Washington, D.C. area.

 

ANALYST SKILLS

Experience with Sensor gathering [i.e. Splunk] and SIEM systems
Experience with neural network decision making systems, machine learning and/or AI systems
Experience with data mining (i.e. Cognos, Tableau, etc.)

 

POSITION QUALIFICATIONS

Competency Statement(s). To perform the job successfully, an individual should demonstrate the following competencies:

  • Undergraduate degree and at least 5-7+ years combined cybersecurity analysis experience.
  • Demonstrated experience in critical and strategic thinking, as well as problem solving skills.
  • Excellent written, interpersonal, planning, and organizational, and time management skills.
  • Strong collaboration skills and working with multi-stakeholder membership
  • Experience in building professional presentations and products.
  • Strong collaboration, negotiation and mediation skills.
  • Ability to work independently and as part of a team.
  • Possess a high degree of initiative, motivation, and problem-solving skills.
  • Proven analytical, planning, problem solving, and decision-making skills.

 

Education and Certifications
Undergraduate degree
5-7+ years combined cybersecurity analysis experience

Other Desired Experience
Knowledge of U.S. Government organization and processes
Experience with collaborative intelligence processes
Planning experience

Technology Applications
Standard office software applications

 

WORK ENVIRONMENT

This position is performed in an office work environment with physical demands associated with that environment. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

 


 

Financial Systemic Analysis and Resilience Center (FSARC)

Position: Business Integration Lead

Job Status: Full Time                                                  FLSA Status: Exempt

Reports To: Crisis Management Lead                           Travel Required: Occasional

Work Schedule: Normal Office Hours                           Positions Supervised: None

Office Location: Arlington, Virginia                             Type: New Hire

Capability/Team: Improve Response and Resiliency       Clearance: No

 

POSITION SUMMARY

The FSARC is seeking a Business Integration Lead to work as part of the Improve Response and Resiliency Team to lead and execute key initiatives and projects across the organization. Submit letters of interest and resumes to fsarc-HR@fsisac.com with position description and firm placement in subject.

 

ESSENTIAL FUNCTIONS

Lead and execute key initiatives and projects at multiple levels across the organization.

Support other functions to ensure efficient and effective operations.

Define and ensure successful delivery of the FSARC’s key risk reduction projects.

Partner with key stakeholders from other FSARC Capabilities/Teams, U.S. Government, and other groups throughout the sector to offer transparency on matters pertaining to information security as it applies to the financial services industry.

Ensure the sector exercise program is shaped to validate mitigation strategies against threats to the system identified by team activities.

Participate in key sector exercise program roles when required to meet team objectives.

Provide leadership and direction to ensure program elements including risk assessments, project management, and ongoing operations reflect appropriate FSARC and sector requirements.

Act as a thought leader and trusted partner enabling the sector and U.S. Government partners to more aggressively leverage its capabilities to drive risk reduction and strengthen its role in upholding the FSARC’s mission and charter.

Attend regular and routine meetings in the Washington, D.C. area.

 

POSITION QUALIFICATIONS

Competency Statement(s). To perform the job successfully, an individual should demonstrate the following competencies:

  • Minimum of ten years of demonstrated experience in an Information Security or IT Risk Management function at a financial institution.
  • Ability to relate business requirements and risks to technical controls, systems and processes.
  • Highly adaptable to a constantly changing business and technology environment
  • Familiarity with multi-platform environments, their operational/security risk considerations and recovery processes.
  • Strategic thinker with ‘big picture’ perspective and a broad understanding of information security, risk management, and their direct applications to financial services business processes.
  • Excellent leadership skills with the ability to leverage cross-functional teams to meet defined objectives.
  • Excellent negotiation skills with proven ability to identify, influence, and persuade key decision makers at multiple levels internally and externally.
  • Strong oral and written communications skills; strong presentation and marketing skills.
  • Experience with internal audit processes and/or external regulatory examinations.
  • Self-starter and experience leading and working in high impact teams in a fast paced, high profile environment.
  • Strong interpersonal, written, and oral communication skills.
  • Strong organizational and time management skills.
  • Ability to work independently as well as part of the team
  • Understanding and demonstrating good problem-solving skills
  • Ability to gain and maintain a government security clearance

 

Education and Certifications
Master’s Degree and 10+ years’ experience
Industry accepted Information Security or Risk certification desired

Other Desired Experience
Experience working in the financial services industry to include familiarity with key sector organizations, both private and public
Minimum of ten years of demonstrated experience in an Information Security or IT Risk Management function, at a financial institution.
Exposure to planning, executing and coordinating cyber exercises

Technology Applications
Standard office software applications

 

WORK ENVIRONMENT

This position is performed in an office work environment with physical demands associated with that environment. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.


 

Financial Services Information Sharing and Analysis Center (FS-ISAC)

Position:  Credit Union Council Manager 

Job Status: Full Time                                                       FLSA Status:  Exempt

Reports To: Dir. of Community Institutions & Assoc.            Travel Required: Nominal     

Work Schedule: Normal Work Week                                  Positions Supervised:   N/A    

 

POSITION SUMMARY

The Credit Union Council (CUC) Manager will be responsible for the engagement of Financial Services Information Sharing and Analysis Center (FS-ISAC) members who participate in the Credit Union Council.  The role includes working closely with FS-ISAC members, other FS-ISAC colleagues, and vendors. The FS-ISAC provides vital information to the financial services sector to assist financial firms in protecting their critical infrastructure assets and confidential information.   

The FS-ISAC is a non-profit corporation that was established in 1999, and is funded by its member firms and sponsors.  The mission of the FS-ISAC is to help assure the resilience and continuity of the global financial services infrastructure and individual firms against acts that could significantly impact the sector’s ability to provide services critical to the orderly function of the global economy.  The FS-ISAC shares threat and vulnerability information, conducts coordinated contingency planning exercises, manages rapid response communications for both cyber and physical events, conducts education and training programs, and fosters collaborations with and among other key sectors and government agencies.
ESSENTIAL FUNCTIONS
 
Responsible for supporting the Credit Union (CU) Council. 

Must have a working knowledge of the CU community, operations, information security (cybersecurity), and technology. Knowledge regarding loss prevention, fraud, and physical security is a plus.

Understands and communicates CU regulatory priorities and guidelines as they pertain to cybersecurity, physical security and resiliency.

Monitor CUC mail list communication and ensure that pertinent information is disseminated to the CUC and other entities as needed in a timely manner, in accordance with classification and handling protocols; encourage the participation information sharing within the Council and other communities.

Identify, document, and manage any risks to successful execution of tasks.

Manage all tasks to ensure tasks are performed on time and within budget.

Identify value added products/services that can enhance FS-ISAC members. 

 

POSITION QUALIFICATIONS

  • Core Competency Statement(s).To perform the job successfully,an individual should demonstrate the following core competencies:
  • Communications - Has effective oral and written communications skills and an ability to communicate with diverse persons.
  • Organization - Possesses strong organizational skills; the ability to plan and implement planning and coordination activities with other Councils and communities.
  • Program Management – Demonstrates excellent program management skills, with a proven track record of successful project execution; able to identify and track performance metrics. 
  • Planning - Handles multiple tasks simultaneously; and consistently turns in high-quality work without close supervision. 
  • Professionalism – Is self-motivated; responsible and disciplined; able to work independently and as part of a team.

Education 

Bachelor’s degree or equivalent combination of education and/or work experience.  

Leadership
    Ability mentor and lead a large group of individuals in achieving the CUC Charter and FS-ISAC goals

Experience
Experience in developing, implementing and maintaining strategies, project plans and risk/issues logs. Experience at a credit union or regulator body that oversees credit unions or community banks as well as participation in the FS-ISAC’s Community Institution Council is desired.  
    
Technology Applications 
MS Office Suite including Excel, Outlook, PowerPoint and Word. Access knowledge is a plus.
Knowledge of cybersecurity technology, techniques and practices.

 

WORK ENVIRONMENT        

This position is performed in an office work environment with physical demands associated with that environment. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. The position may also be performed remotely site.  Candidate will maintain heightened levels of cyber and physical security.

 

Thank you for your interest in FS-ISAC. Please visit our site again for future job postings that may relate to your experience.