5,568 Cyber Risk Management jobs in the United States

**Overview**
**The Cyber Risk Management Specialist (CRMS)** will specialize in in-depth knowledge of the program's cyber security hygiene, DevSecOps, Risk Management Framework (RMF), Assessment and Authorization (A&A), Federal Risk and Authorization Management Program (FedRAMP) compliance, continuous ATO (cATO) and continuous monitoring. A solid grasp on confidentiality, integrity, and availability (CIA) security concepts is required. The candidate will be responsible for the technical implementation and enforcement of security hardening, vulnerability management, scan analysis, data analysis for metrics reporting, cloud environments, compliance with Federal regulation and policy, and commercial best practices relating to cyber security. The candidate must have the ability to be flexible and adaptive to a fast-paced, fluid business environment.
**Contributions**
The role requires strong procedural knowledge of NIST SP 800-37 Risk Management Framework (RMF) for Information Systems and Organization, NIST SP 800-53 Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-137 Information Security Continuous Monitoring (ISCM) for Federal Information Systems and Organizations, FedRAMP requirements, cloud environments, cloud cybersecurity architecture, compliance with Federal regulation and policy, and commercial best practices relating to cloud security. The CRMS is expected to efficiently learn and adapt to rapidly changing federal governance frameworks and standards of practice, to include risk treatments for modern and emerging technologies (e,g, AI, blockchain, microservices).
The Cyber Risk Management Specialist performs a range of functions before, during, and after an authorization is granted:
+ Integrate security into DevOps effectively at every stage of the software development life cycle (SDLC).
+ Identify security holes and potential breaches, work through multifaceted security issues, and create effective solutions based on understanding of risk posture and treatments.
+ Develop and implement tactical strategies for seamless automation to optimize the IT infrastructure.
+ Apply specialized knowledge of financial audit standards, classified system IA requirements, and Privacy Act requirements.
+ Implement the NIST Special Publication (SP) 800 family of publications, particularly those associated with the Risk Management Framework.
+ Evaluating system, network, or infrastructure security controls against requirements such as FISMA, FIPS, and NIST guidelines
+ Apply in-depth, hands-on knowledge of the FedRAMP regulations, process, and requirements to lead project and initiative teams in accrediting cloud products and services.
+ Support external audits, data calls, and theAuthorization to Operate (ATO) process by coordinating with organization system owners, engineers, CSP's and Third-Party Assessment Organizations (3PAO).
+ Positively impact the organization's goals and operational mission through various forms of metric performance measuring tools used to evaluate adherences to compliance.
+ Advise clients on FedRAMP requirements and provide security guidance on the implementation of security compliance controls per technical, management, and operational requirements. 
+ Implement, monitor, and assess NIST SP 800-53 security controls for cloud environments to ensure compliance with FedRAMP requirements and governance models. 
+ Ensure ongoing compliance with FedRAMP policy and requirements through monthly deliverables, regular vulnerability scanning, penetration testing, contingency testing, and annual security assessments performed by a 3PAO.
+ Support ATO, cATO, and continuous monitoring activities to include security documentation, audit log, security incidents, and risk assessment.
+ Review and manage Plan of Action & Milestones (POA&M), to include remediation tracking and reporting.
**Qualifications**
**Required**
+ Ability to obtain a U.S. government Security Clearance
+ Master's Degree and 1 year of relevant experience; OR
+ Bachelor's Degree and 3 years of relevant experience; OR
+ No degree and 8 years of relevant experience
+ Possesses at least one professional certification relevant to the technical service provided. Maintain a certification relevant to the product being deployed and/or maintained.
**Preferred**
+ Experience in FISMA, cloud cybersecurity architecture, compliance with Federal regulation and policy, and commercial best practices relating to cloud security.
+ Experience in Information Security processes to include RMF, FedRAMP, Compliance, Continuous Monitoring, and Annual Assessments.
+ Certifications in one or more of the following: CISSP, CRICS, CCSP, CAP/CGRC.
+ Certifications in one or more of the following: AWS Certified Solutions Architect, AWS Certified Security, Microsoft Certified Solutions Architect, MCSE Cloud Platform and Infrastructure
+ Experience conducting assessments in a 3PAO, C3PAO, or risk auditing organization is desirable, but not required.
+ Experience supporting systems in Agile environments.
**About** **steampunk**
**Identity Statement**
As part of the application process, you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud.
Steampunk is a **Change Agent** in the Federal contracting industry, bringing new thinking to clients in the Homeland, Federal Civilian, Health and DoD sectors. Through our **Human-Centered delivery methodology** , we are fundamentally changing the expectations our Federal clients have for true shared accountability in solving their toughest mission challenges. As an **employee owned company** , we focus on investing in our employees to enable them to do the greatest work of their careers - and rewarding them for outstanding contributions to our growth. If you want to learn more about our story, visit .
_We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law. Steampunk participates in the E-Verify program._
Refer a Friend ( help finding the right job?**
We can recommend jobs specifically for you!
**Job Location** _US-VA-McLean_
**Posted Date** _3 weeks ago_ _(9/17/2025 2:26 PM)_
**_Job ID_** _6842_
**_Clearance Requirement_** _Public Trust_

**Overview**
The **Cyber Risk Management Specialist (CRMS)** will specialize in in-depth knowledge of the program's cyber security hygiene, DevSecOps, Risk Management Framework (RMF), Assessment and Authorization (A&A), Federal Risk and Authorization Management Program (FedRAMP) compliance, continuous ATO (cATO) and continuous monitoring. A solid grasp on confidentiality, integrity, and availability (CIA) security concepts is required. The candidate will be responsible for the technical implementation and enforcement of security hardening, vulnerability management, scan analysis, data analysis for metrics reporting, cloud environments, compliance with Federal regulation and policy, and commercial best practices relating to cyber security. The candidate must have the ability to be flexible and adaptive to a fast-paced, fluid business environment.
**Contributions**
The role requires strong procedural knowledge of NIST SP 800-37 Risk Management Framework (RMF) for Information Systems and Organization, NIST SP 800-53 Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-137 Information Security Continuous Monitoring (ISCM) for Federal Information Systems and Organizations, FedRAMP requirements, cloud environments, cloud cybersecurity architecture, compliance with Federal regulation and policy, and commercial best practices relating to cloud security. The CRMS is expected to efficiently learn and adapt to rapidly changing federal governance frameworks and standards of practice, to include risk treatments for modern and emerging technologies (e,g, AI, blockchain, microservices).
The Cyber Risk Management Specialist performs a range of functions before, during, and after an authorization is granted:
+ Integrate security into DevOps effectively at every stage of the software development life cycle (SDLC).
+ Identify security holes and potential breaches, work through multifaceted security issues, and create effective solutions based on understanding of risk posture and treatments.
+ Develop and implement tactical strategies for seamless automation to optimize the IT infrastructure.
+ Apply specialized knowledge of financial audit standards, classified system IA requirements, and Privacy Act requirements.
+ Implement the NIST Special Publication (SP) 800 family of publications, particularly those associated with the Risk Management Framework.
+ Evaluating system, network, or infrastructure security controls against requirements such as FISMA, FIPS, and NIST guidelines
+ Apply in-depth, hands-on knowledge of the FedRAMP regulations, process, and requirements to lead project and initiative teams in accrediting cloud products and services.
+ Support external audits, data calls, and theAuthorization to Operate (ATO) process by coordinating with organization system owners, engineers, CSP's and Third-Party Assessment Organizations (3PAO).
+ Positively impact the organization's goals and operational mission through various forms of metric performance measuring tools used to evaluate adherences to compliance.
+ Advise clients on FedRAMP requirements and provide security guidance on the implementation of security compliance controls per technical, management, and operational requirements. 
+ Implement, monitor, and assess NIST SP 800-53 security controls for cloud environments to ensure compliance with FedRAMP requirements and governance models. 
+ Ensure ongoing compliance with FedRAMP policy and requirements through monthly deliverables, regular vulnerability scanning, penetration testing, contingency testing, and annual security assessments performed by a 3PAO.
+ Support ATO, cATO, and continuous monitoring activities to include security documentation, audit log, security incidents, and risk assessment.
+ Review and manage Plan of Action & Milestones (POA&M), to include remediation tracking and reporting.
**Qualifications**
**Required**
+ Ability to obtain a U.S. government Security Clearance
+ Master's Degree and 6 year of cyber and FISMA experience; OR
+ Bachelor's Degree and 8 years of cyber and FISMA experience; OR
+ No degree and 12 years of experience, 10 of which must be in cyber and FISMA
+ Possesses at least one professional certification: CISSP, CASP, CISA, CISM or GSLC
**Preferred**
+ Experience in FISMA, cloud cybersecurity architecture, compliance with Federal regulation and policy, and commercial best practices relating to cloud security.
+ Experience in Information Security processes to include RMF, FedRAMP, Compliance, Continuous Monitoring, and Annual Assessments.
+ Certifications in one or more of the following: CISSP, CRICS, CCSP, CAP/CGRC.
+ Certifications in one or more of the following: AWS Certified Solutions Architect, AWS Certified Security, Microsoft Certified Solutions Architect, MCSE Cloud Platform and Infrastructure
+ Experience conducting assessments in a 3PAO, C3PAO, or risk auditing organization is desirable, but not required.
+ Experience supporting systems in Agile environments.
**About** **steampunk**
**Identity Statement**
As part of the application process, you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud.
Steampunk is a **Change Agent** in the Federal contracting industry, bringing new thinking to clients in the Homeland, Federal Civilian, Health and DoD sectors. Through our **Human-Centered delivery methodology** , we are fundamentally changing the expectations our Federal clients have for true shared accountability in solving their toughest mission challenges. As an **employee owned company** , we focus on investing in our employees to enable them to do the greatest work of their careers - and rewarding them for outstanding contributions to our growth. If you want to learn more about our story, visit .
_We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law. Steampunk participates in the E-Verify program._
Refer a Friend ( help finding the right job?**
We can recommend jobs specifically for you!
**Job Location** _US-VA-McLean_
**Posted Date** _3 weeks ago_ _(9/17/2025 2:25 PM)_
**_Job ID_** _6844_
**_Clearance Requirement_** _Public Trust_

**Description**
Department of Homeland Security (DHS), Customs and Border Protection (CBP) Security Operations Center (SOC) is a US Government program responsible to prevent, identify, contain and eradicate cyber threats to CBP networks through monitoring, intrusion detection and protective security services to CBP information systems including local area networks/wide area networks (LAN/WAN), commercial Internet connection, public facing websites, wireless, mobile/cellular, cloud, security devices, servers and workstations.  The CBP SOC is responsible for the overall security of CBP Enterprise-wide information systems, and collects, investigates, and reports any suspected and confirmed security violations.
The DHS CBP SOC Program has a critical need for a Strategic Cyber Risk Management to join our Cyber Risk Management & Communication team.
**Primary Responsibilities:**
+ Candidate selected for this position will identify strategic risk through collaborative working effort with the SCAs, ISSMs, ISSOs, system owners, along with other applicable teams to gather data for the creation of a full picture of the strategic cyber risks.
+ Candidate will develop and maintain a risk tolerance level through working with senior management to formally establish the level of acceptable risk.
+ In addition, the selectedcandidate must be able to createa strategic risk picture and maintain the risk tolerance level, conduct reviews and approvals of risk acceptance memorandums, assist with the prioritization of POA&Ms, create risk profiles for all CBP information systems, identify common gaps in the information system compliance to focus holistic funding in support of remediating security findings for multiple systems.
+ Candidate will assist the Government in conducting reviews and recommendations to aid the government in approving of risk acceptance memorandums, assist with the prioritization of POA&Ms, create risk profiles for all CBP information systems, identify common gaps in the information system compliance to focus holistic funding in support of remediating security findings for multiple systems.
+ Candidate will assist the Government in creating a holistic picture of the cyber risks in the CBP environment and provides methods to effectively communicate the risks to the applicable stakeholders and senior management.
**Basic Qualifications:**
+ Bachelors' degree in Computer Science, Engineering, Information Technology, Cyber Security, or related field and 4 to 8 years of related experience. Additional years of experience and cyber certifications may be considered in lieu of degree.
+ Knowledge/experience conducting Risk Assessments
+ Knowledge of NIST SP 800-53 security controls and required documentation
+ Familiar with the management, operational, and technical aspects of IT Security in a complex enterprise environment.
+ NIST SP 800-37 Risk Management Framework
+ NIST Cybersecurity Framework
+ Using the Enterprise Logging System to conduct regular reviews of audit logs (operating systems, applications, Database etc.)
+ Reviewing and writing security policies and procedures
All Department of Homeland Security CBP SOC employees are required to favorably pass a 5-year (BI) Background Investigation.
**Should have at least one of the following certifications:**
CAP, CISM, CISSP, CISA, CASP, CEH, GCED, CRISC
**Preferred Qualifications:**
+ Experience in Vulnerability scanning and analysis. Experience in financial, CSP and FISMA audits.
+ Experience with Digital Guardian, CrowdStrike, Axonius, Microsoft Power BI and Splunk queries
+ Well-rounded Cyber SME
At Leidos, we don't want someone who "fits the mold"-we want someone who melts it down and builds something better. This is a role for the restless, the over-caffeinated, the ones who ask, "what's next?" before the dust settles on "what's now."
If you're already scheming step 20 while everyone else is still debating step 2. good. You'll fit right in.
**Original Posting:**
August 21, 2025
At Leidos, we don't want someone who "fits the mold"-we want someone who melts it down and builds something better. This is a role for the restless, the over-caffeinated, the ones who ask, "what's next?" before the dust settles on "what's now."
If you're already scheming step 20 while everyone else is still debating step 2. good. You'll fit right in.
**Pay Range:**
Pay Range $104,650.00 - $189,175.00
The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
REQNUMBER: R-
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status. Leidos will consider qualified applicants with criminal histories for employment in accordance with relevant Laws. Leidos is an equal opportunity employer/disability/vet.

Director, Cyber and Digital Risk Management
Country: United States of America
**Your Journey Starts Here:**
Santander is a global leader and innovator in the financial services industry. We believe that our employees are our greatest asset. Our focus is on fostering an enriching journey that empowers you to explore diverse career opportunities while nurturing your personal growth. We are committed to creating an environment where continuous learning and development are prioritized, enabling you to thrive both professionally and personally. Here, you will find ample opportunities to connect and collaborate with talented colleagues from around the world, sharing insights and driving innovation together. Join us at Santander, where you are supported by a culture of engagement and a commitment to your success.
An exciting journey awaits, if you are interested in exploring the possibilities **We Want to Talk to You!**
**The Difference You Make:**
The Director, Cyber and Digital Risk Management monitors activities to minimize the company's exposure to information security risks. Activities may include 2nd line of defense independent assurance over technical cyber risk analysis, risk identification and remediation. The incumbent shall support the preservation of digital trust and ensure that the oversight is adequate to minimize compliance and regulatory risk by resolving issues and ensuring adherence to industry good practice frameworks, company and legal standards. The Director is responsible for ensuring that the company's activities adhere to the necessary rules and regulations, and that the company complies with legal/regulatory statutes and jurisdictions, as they relate to the management of cyber and digital risks.
The Director, Cyber and Digital Risk Management at Santander US and Santander Bank NA is responsible for independent risk management and assurance activities over the assigned business area's technology footprint covering Information Security, Cyber Resilience, Cyber Fraud and Data Security (incl. Retention and Disposal) as part of the second line of defense Technology Risk Management organization.
The incumbent develops and maintains an effective Information Security Risk oversight program that enables the assigned business area to comprehensively identify, assess, mitigate, manage, monitor and report technology risk, including performing technical risk reviews of identified domains.
This role is established in the second line of defense and requires collaboration across CISO, Data Office, IT, Operational Risk, Internal Audit and other relevant functional stakeholders within the organization in the management of Cybersecurity risks. An excellent understanding of the evolving regulatory landscape in the US and EU are vital for success in this role.
The day-to-day focus may vary depending on the requirements of the overall second line of defense program priorities directed by the Head of Technology Risk and may include: planned or ad-hoc technical risk review and challenge, review of Technology or Business initiatives, Ongoing risk monitoring activities, Risk reporting, development of technical risk framework and methodologies.
The team to support the oversight of cybersecurity risks will comprise of individuals aligned against the core coverage areas noted above. This is an individual contributor role but will require people and stakeholder management skills to operate effectively in a 2nd line of defense role in a matrix organization.
**Key Responsibilities:**
+ Establish themselves as the second line of defense subject matter expert for key stakeholders in the management of cybersecurity and technology risks across all operating entities
+ Prepare information to enable governance committees / working groups in the management oversight of cybersecurity and technology risks
+ Participate in relevant governance committees and working groups as a delegate of the Head of Technology, including the Operational Risk Committee, Technology Executive Working Group, Information Security & Data Management Committee, Architectural Review Board, AI Enablement Working Group
+ Initiate timely escalations to the Sr. Director, Cyber & Digital Risk and to the leadership team
+ Identify and assess cybersecurity risks and counsel business units managers, CISO and/or IT GRC stakeholders on risk management issues to ensure awareness and accountability for cybersecurity risks
+ Oversee ongoing oversight of the firm's information risk footprint through ongoing monitoring, formal review and challenge activities, targeted risk reviews, technology policy and standard assurance, and other activities e.g., transformation review and challenge.
+ Contribute to the updating of existing policies and framework or develop new ones that steer the safe and sound adoption of technologies across the organization
+ Participate in the independent and ongoing risk oversight of key technology components of the firm's digital transformation initiatives.
+ Implement and sustain independent risk oversight coverage of the cloud operating platform and vendor software development activities.
+ Work across the lines of defense to recommend strategies that effectively treat risks within the risk appetite
+ Monitor external trends and evaluate potential impacts to business strategy; provide documented analytical insights of the risk horizon, while ensuring a sound operational and compliance control environment through establishment of a system of effective and sustainable internal controls
+ Participate in evaluation of new products / Business changes / projects and assess related information risks and impact to the cybersecurity and technology risk profile
+ Participate in the evaluation and management of cybersecurity risks related to third-party suppliers involved in technology and business projects
+ Advises on remediation of regulatory findings, correction of any inconsistencies and monitors resolution.
+ Manage, oversee and contribute to targeted risk reviews designed to evaluate information risks and their effective and sustainable mitigation
+ Perform review and challenge of first line of defense risk management processes, data and outcomes (e.g. risk assessments, control evaluations, risk metrics, mitigation plans, risk acceptances etc.) and communicate risk opinions at various levels of management
+ Analyze risk data from various sources (e.g. external events, control deficiencies, risk register etc.) to identify and measure levels of risk, concentration, trends and patterns
+ Participate in the review and challenge of scenario for crisis management exercises, especially where there is a cyber component
+ Support process for constructive engagement across the Lines of Defense regarding differences or conflicts in risk appetite, risk metric determination or evaluation, issue severity or other areas of dispute
+ Own individual delivery timelines and develop materials to ensure second line of defense independent opinion appropriately represented during committee meetings, external exams and internal audits.
+ Ensure all activities and deliverables achieve their timeliness, quality and accuracy service levels.
+ Collaborate with other second line of defense functions such as Operational Risk, Model Risk, Compliance etc. on common priorities and strategic initiatives
+ Provides second line of defense leadership and subject matter expertise during response to major technology or cyber incidents including cyber-security related privacy events and coordinate second line of defense engagement and response of incident / crisis managers
**What You Bring:**
To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
**Education:**
+ Bachelor's Degree in a technical discipline or equivalent work experience: Computer Science, Information Technology, Information Systems, Information Security. Req
+ Master's Degree in related technical disciplines. Pref
+ Professional Certifications in Cybersecurity. Req.
+ Professional Certifications in Cloud Security (AWS, Azure). Pref
**Work Experience:**
+ Practitioner and management experience in one or more areas of Cybersecurity Risks
+ Overall professional experience of 15+ years or more in cybersecurity risk management roles in a matrix organization
+ Experience in Cybersecurity risk consulting in the financial services sector, Cyber security audit, Chief Information Security Officer / Deputy or in a similar second line of defense role is highly preferred
+ Experience within a highly regulated environment such as the financial services industry and knowledge of the current and evolving regulatory landscape is necessary
+ Experience leading high performance teams
**Skills and Abilities:**
+ Strong understanding of technology infrastructure, information security, and enterprise resilience
+ Experience with developing and implementing technology & cyber risk oversight programs, preferably in a 2nd or 3rd line of defense
+ Demonstrated leadership skills and ability to coordinate oversight activities across different teams
+ Knowledge of current and evolving regulatory requirements and industry best practices in technology and cybersecurity risk management
+ Strong Leadership Experience
**Technical skills (incl. Tools):**
+ Resilient Security Architecture
+ Identity and Access Management
+ Network / Firewall Management
+ Vulnerability and Patch Management
+ Cloud Security Architecture
+ Secure Application Development / Containerization
+ Encryption / Tokenization
+ Data Loss Prevention
+ Security Logging and Monitoring
+ Incident Detection and Response Management
+ Offensive Security
**Competencies and Abilities:**
+ Demonstrated expertise and track record in technology risk management segment, and ability to perform at an advanced level of competence.
+ Advanced knowledge of cyber risk management best practices and how to implement them.
+ Ability to engage effectively with both senior management and operational teams
+ A keen sense of risk anticipation with attention to details and an ingrained ability to connect the dots and challenge status quo
+ An execution and solution focused risk mindset with an ability to push the needle forward even with ambiguous or incomplete information
+ Ability to direct, train and guide peers, subordinates and management.
+ A team player who can coordinate and drive consensus among different teams and stakeholders having varying viewpoints
+ Ability to build relationships, influencing and negotiating across diverse stakeholders across the lines of defense, handle conflict resolution with other groups to ensure appropriate risk management decisions are made.
+ Ability to adjust to new developments/changing circumstances.
+ Ability to effectively communicate and build relationships with multiple levels of the organizational structure, including senior level management.
+ Ability to collaborate with multidisciplinary teams.
+ Ability to multi-task and adapt/adjust to multiple demands and competing priorities.
+ Ability to maintain and report on confidential information in an appropriate manner.
+ Ability to convey a sense of urgency and drive issues/projects to closure.
+ Ability to effectively interact with the executive management and vendors.
+ Ability to demonstrate sound judgement and critical thinking
+ Excellent written and oral communication skills.
+ Excellent analytical, organizational and project management skills.
+ Strong leadership, supervisory engagement skills.
+ Strong risk, process, and control validation and/or assessment skills
**Certifications:**
+ Professional Certifications in Cybersecurity. Req.
+ Professional Certifications in Cloud Security (AWS, Azure). Pref
**It Would Be Nice For You To Have:**
Established work history or equivalent demonstrated through a combination of work experience, training, military service, or education.
**What Else You Need To Know** **:**
The base pay range for this position is posted below and represents the annualized salary range. For hourly positions (non-exempt), the annual range is based on a 40-hour work week. The exact compensation may vary based on skills, experience, training, licensure and certifications and location.
**Base Pay Range**
Minimum:
$123,750.00 USD
Maximum:
$225,000.00 USD
**Link to Santander Benefits:**
**Santander Benefits - 2025 Santander OnGoing/NH eGuide (foleon.com) ( Culture:**
We embrace a strong risk culture and all of our professionals at all levels are expected to take a proactive and responsible approach toward risk management.
**EEO Statement:**
At Santander, we value and respect differences in our workforce. We actively encourage everyone to apply. Santander is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, genetics, disability, age, veteran status or any other characteristic protected by law.
**Working Conditions** :
Frequent minimal physical effort such as sitting, standing and walking is required for this role. Depending on location, occasional moving and lifting light equipment and/or furniture may be required.
**Employer Rights:**
This job description does not list all of the job duties of the job. You may be asked by your supervisors or managers to perform other duties. You may be evaluated in part based upon your performance of the tasks listed in this job description. The employer has the right to revise this job description at any time. This job description is not a contract for employment and either you or the employer may terminate your employment at any time for any reason.
**What** **To Do Next** **:**
If this sounds like a role you are interested in, then please apply.
We are committed to providing an inclusive and accessible application process for all candidates. If you require any assistance or accommodation due to a disability or any other reason, please contact us at to discuss your needs.
**Primary Location:** Coconut Grove, FL, Miami Coconut Grove Corp
**Other Locations:** Florida-Coconut Grove,Texas-Dallas
**Organization:** Santander Holdings USA, Inc.
AN EQUAL OPPORTUNITY EMPLOYER M/F/Vet/Disabled/SO

**Who Are We?**
Taking care of our customers, our communities and each other. That's the Travelers Promise. By honoring this commitment, we have maintained our reputation as one of the best property casualty insurers in the industry for over 160 years. Join us to discover a culture that is rooted in innovation and thrives on collaboration. Imagine loving what you do and where you do it.
**Job Category**
Data Analytics, Data Science
**Compensation Overview**
The annual base salary range provided for this position is a nationwide market range and represents a broad range of salaries for this role across the country. The actual salary for this position will be determined by a number of factors, including the scope, complexity and location of the role; the skills, education, training, credentials and experience of the candidate; and other conditions of employment. As part of our comprehensive compensation and benefits program, employees are also eligible for performance-based cash incentive awards.
**Salary Range**
$165,000.00 - $272,200.00
**Target Openings**
1
**What Is the Opportunity?**
The Travelers Catastrophe Risk Management Group is seeking a Cyber Peril Lead to join our PERILS team leading our research related to man-made perils with a focus on Cyber risk. You will be joining a group of dedicated professionals charged with leading Travelers to be in position to successfully endure catastrophic loss from natural and man-made perils.
The PERILS team is a multi-discipline group focusing on peril research, the development of next generation analytics, and event response activities. As a member of this Team, you will be an active participant in the development and implementation of peril research and strategies. The team engages in enterprise-wide complex multi-disciplinary CAT research projects with various depths of focus. The position requires an individual who can strive in an analytical, innovation-driven environment, in tune with business needs.
**What Will You Do?**
We are seeking a candidate with a solid analytical base in cyber risk management or a scientific, engineering, or related quantitative discipline. The person will have effective self-organizational and time-management skills with the ability to work independently and formulate and execute project objectives. We seek problem solving and critical thinking skills in support of the team's efforts to provide best-in-class analyses to our business partners. Some of the specific duties include:
+ Provide thought leadership and strategy support related to portfolio cyber risk
+ Validate cyber aggregation risk models and technographic scores
+ Assist the Cyber Underwriting team with subject matter technical expertise and guidance
+ Identify, select, and extract relevant data from various internal and external sources. Complete analyses and present recommendations to team members, stakeholders, and Leadership
+ Stay abreast of the latest scientific research and summarize findings for the peril, including recent trends in threat actors, techniques and vectors of attack
+ Drive innovation through new tools/technologies and capabilities (e.g., develop custom tail scenarios)
+ Monitor the Company's exposures, aggregations, and peril-specific book mix changes
+ Support our Business Units Consulting and Actuarial functions with ad-hoc research and peril strategy development
+ Create and maintain collaborative relationships with business partners
**What Will Our Ideal Candidate Have?**
+ Exposure to cyber catastrophe modeling and/or cyber hygiene technographic scanning tools is a plus
+ Proficiency with Microsoft Suite, SQL, statistical packages, or other programs used to retrieve and analyze data
+ Knowledge of insurance concepts, coverage, products, and operations preferred
+ Ability to apply emerging statistical procedures to large highly complex work
+ Working knowledge of a programming language such as Python/R/Matlab preferred
+ Works well both independently & within a team, strong organization, and time management
+ Demonstrated ability to convey technical concepts across professional fields of discipline
**What is a Must Have?**
+ Master's degree in Statistics, Mathematics, Decision Sciences, Actuarial Science or related analytical STEM field plus six years of experience or any suitable and equivalent combination of education and work experience.
+ Heavy concentration in mathematics, including statistics and programming, business intelligence/analytics, as well as data science tools and research using large data sets. Additional verification of specific coursework will be required.
**What Is in It for You?**
+ **Health Insurance** : Employees and their eligible family members - including spouses, domestic partners, and children - are eligible for coverage from the first day of employment.
+ **Retirement:** Travelers matches your 401(k) contributions dollar-for-dollar up to your first 5% of eligible pay, subject to an annual maximum. If you have student loan debt, you can enroll in the Paying it Forward Savings Program. When you make a payment toward your student loan, Travelers will make an annual contribution into your 401(k) account. You are also eligible for a Pension Plan that is 100% funded by Travelers.
+ **Paid Time Off:** Start your career at Travelers with a minimum of 20 days Paid Time Off annually, plus nine paid company Holidays.
+ **Wellness Program:** The Travelers wellness program is comprised of tools, discounts and resources that empower you to achieve your wellness goals and caregiving needs. In addition, our mental health program provides access to free professional counseling services, health coaching and other resources to support your daily life needs.
+ **Volunteer Encouragement:** We have a deep commitment to the communities we serve and encourage our employees to get involved. Travelers has a Matching Gift and Volunteer Rewards program that enables you to give back to the charity of your choice.
**Employment Practices**
Travelers is an equal opportunity employer. We value the unique abilities and talents each individual brings to our organization and recognize that we benefit in numerous ways from our differences.
In accordance with local law, candidates seeking employment in Colorado are not required to disclose dates of attendance at or graduation from educational institutions.
If you are a candidate and have specific questions regarding the physical requirements of this role, please send us an email ( ) so we may assist you.
Travelers reserves the right to fill this position at a level above or below the level included in this posting.
To learn more about our comprehensive benefit programs please visit .

**Who Are We?**
Taking care of our customers, our communities and each other. That's the Travelers Promise. By honoring this commitment, we have maintained our reputation as one of the best property casualty insurers in the industry for over 160 years. Join us to discover a culture that is rooted in innovation and thrives on collaboration. Imagine loving what you do and where you do it.
**Job Category**
Data Analytics, Data Science
**Compensation Overview**
The annual base salary range provided for this position is a nationwide market range and represents a broad range of salaries for this role across the country. The actual salary for this position will be determined by a number of factors, including the scope, complexity and location of the role; the skills, education, training, credentials and experience of the candidate; and other conditions of employment. As part of our comprehensive compensation and benefits program, employees are also eligible for performance-based cash incentive awards.
**Salary Range**
$165,000.00 - $272,200.00
**Target Openings**
1
**What Is the Opportunity?**
The Travelers Catastrophe Risk Management Group is seeking a Cyber Peril Lead to join our PERILS team leading our research related to man-made perils with a focus on Cyber risk. You will be joining a group of dedicated professionals charged with leading Travelers to be in position to successfully endure catastrophic loss from natural and man-made perils.
The PERILS team is a multi-discipline group focusing on peril research, the development of next generation analytics, and event response activities. As a member of this Team, you will be an active participant in the development and implementation of peril research and strategies. The team engages in enterprise-wide complex multi-disciplinary CAT research projects with various depths of focus. The position requires an individual who can strive in an analytical, innovation-driven environment, in tune with business needs.
**What Will You Do?**
We are seeking a candidate with a solid analytical base in cyber risk management or a scientific, engineering, or related quantitative discipline. The person will have effective self-organizational and time-management skills with the ability to work independently and formulate and execute project objectives. We seek problem solving and critical thinking skills in support of the team's efforts to provide best-in-class analyses to our business partners. Some of the specific duties include:
+ Provide thought leadership and strategy support related to portfolio cyber risk
+ Validate cyber aggregation risk models and technographic scores
+ Assist the Cyber Underwriting team with subject matter technical expertise and guidance
+ Identify, select, and extract relevant data from various internal and external sources. Complete analyses and present recommendations to team members, stakeholders, and Leadership
+ Stay abreast of the latest scientific research and summarize findings for the peril, including recent trends in threat actors, techniques and vectors of attack
+ Drive innovation through new tools/technologies and capabilities (e.g., develop custom tail scenarios)
+ Monitor the Company's exposures, aggregations, and peril-specific book mix changes
+ Support our Business Units Consulting and Actuarial functions with ad-hoc research and peril strategy development
+ Create and maintain collaborative relationships with business partners
**What Will Our Ideal Candidate Have?**
+ Exposure to cyber catastrophe modeling and/or cyber hygiene technographic scanning tools is a plus
+ Proficiency with Microsoft Suite, SQL, statistical packages, or other programs used to retrieve and analyze data
+ Knowledge of insurance concepts, coverage, products, and operations preferred
+ Ability to apply emerging statistical procedures to large highly complex work
+ Working knowledge of a programming language such as Python/R/Matlab preferred
+ Works well both independently & within a team, strong organization, and time management
+ Demonstrated ability to convey technical concepts across professional fields of discipline
**What is a Must Have?**
+ Master's degree in Statistics, Mathematics, Decision Sciences, Actuarial Science or related analytical STEM field plus six years of experience or any suitable and equivalent combination of education and work experience.
+ Heavy concentration in mathematics, including statistics and programming, business intelligence/analytics, as well as data science tools and research using large data sets. Additional verification of specific coursework will be required.
**What Is in It for You?**
+ **Health Insurance** : Employees and their eligible family members - including spouses, domestic partners, and children - are eligible for coverage from the first day of employment.
+ **Retirement:** Travelers matches your 401(k) contributions dollar-for-dollar up to your first 5% of eligible pay, subject to an annual maximum. If you have student loan debt, you can enroll in the Paying it Forward Savings Program. When you make a payment toward your student loan, Travelers will make an annual contribution into your 401(k) account. You are also eligible for a Pension Plan that is 100% funded by Travelers.
+ **Paid Time Off:** Start your career at Travelers with a minimum of 20 days Paid Time Off annually, plus nine paid company Holidays.
+ **Wellness Program:** The Travelers wellness program is comprised of tools, discounts and resources that empower you to achieve your wellness goals and caregiving needs. In addition, our mental health program provides access to free professional counseling services, health coaching and other resources to support your daily life needs.
+ **Volunteer Encouragement:** We have a deep commitment to the communities we serve and encourage our employees to get involved. Travelers has a Matching Gift and Volunteer Rewards program that enables you to give back to the charity of your choice.
**Employment Practices**
Travelers is an equal opportunity employer. We value the unique abilities and talents each individual brings to our organization and recognize that we benefit in numerous ways from our differences.
In accordance with local law, candidates seeking employment in Colorado are not required to disclose dates of attendance at or graduation from educational institutions.
If you are a candidate and have specific questions regarding the physical requirements of this role, please send us an email ( ) so we may assist you.
Travelers reserves the right to fill this position at a level above or below the level included in this posting.
To learn more about our comprehensive benefit programs please visit .

**Who Are We?**
Taking care of our customers, our communities and each other. That's the Travelers Promise. By honoring this commitment, we have maintained our reputation as one of the best property casualty insurers in the industry for over 160 years. Join us to discover a culture that is rooted in innovation and thrives on collaboration. Imagine loving what you do and where you do it.
**Job Category**
Data Analytics, Data Science
**Compensation Overview**
The annual base salary range provided for this position is a nationwide market range and represents a broad range of salaries for this role across the country. The actual salary for this position will be determined by a number of factors, including the scope, complexity and location of the role; the skills, education, training, credentials and experience of the candidate; and other conditions of employment. As part of our comprehensive compensation and benefits program, employees are also eligible for performance-based cash incentive awards.
**Salary Range**
$165,000.00 - $272,200.00
**Target Openings**
1
**What Is the Opportunity?**
The Travelers Catastrophe Risk Management Group is seeking a Cyber Peril Lead to join our PERILS team leading our research related to man-made perils with a focus on Cyber risk. You will be joining a group of dedicated professionals charged with leading Travelers to be in position to successfully endure catastrophic loss from natural and man-made perils.
The PERILS team is a multi-discipline group focusing on peril research, the development of next generation analytics, and event response activities. As a member of this Team, you will be an active participant in the development and implementation of peril research and strategies. The team engages in enterprise-wide complex multi-disciplinary CAT research projects with various depths of focus. The position requires an individual who can strive in an analytical, innovation-driven environment, in tune with business needs.
**What Will You Do?**
We are seeking a candidate with a solid analytical base in cyber risk management or a scientific, engineering, or related quantitative discipline. The person will have effective self-organizational and time-management skills with the ability to work independently and formulate and execute project objectives. We seek problem solving and critical thinking skills in support of the team's efforts to provide best-in-class analyses to our business partners. Some of the specific duties include:
+ Provide thought leadership and strategy support related to portfolio cyber risk
+ Validate cyber aggregation risk models and technographic scores
+ Assist the Cyber Underwriting team with subject matter technical expertise and guidance
+ Identify, select, and extract relevant data from various internal and external sources. Complete analyses and present recommendations to team members, stakeholders, and Leadership
+ Stay abreast of the latest scientific research and summarize findings for the peril, including recent trends in threat actors, techniques and vectors of attack
+ Drive innovation through new tools/technologies and capabilities (e.g., develop custom tail scenarios)
+ Monitor the Company's exposures, aggregations, and peril-specific book mix changes
+ Support our Business Units Consulting and Actuarial functions with ad-hoc research and peril strategy development
+ Create and maintain collaborative relationships with business partners
**What Will Our Ideal Candidate Have?**
+ Exposure to cyber catastrophe modeling and/or cyber hygiene technographic scanning tools is a plus
+ Proficiency with Microsoft Suite, SQL, statistical packages, or other programs used to retrieve and analyze data
+ Knowledge of insurance concepts, coverage, products, and operations preferred
+ Ability to apply emerging statistical procedures to large highly complex work
+ Working knowledge of a programming language such as Python/R/Matlab preferred
+ Works well both independently & within a team, strong organization, and time management
+ Demonstrated ability to convey technical concepts across professional fields of discipline
**What is a Must Have?**
+ Master's degree in Statistics, Mathematics, Decision Sciences, Actuarial Science or related analytical STEM field plus six years of experience or any suitable and equivalent combination of education and work experience.
+ Heavy concentration in mathematics, including statistics and programming, business intelligence/analytics, as well as data science tools and research using large data sets. Additional verification of specific coursework will be required.
**What Is in It for You?**
+ **Health Insurance** : Employees and their eligible family members - including spouses, domestic partners, and children - are eligible for coverage from the first day of employment.
+ **Retirement:** Travelers matches your 401(k) contributions dollar-for-dollar up to your first 5% of eligible pay, subject to an annual maximum. If you have student loan debt, you can enroll in the Paying it Forward Savings Program. When you make a payment toward your student loan, Travelers will make an annual contribution into your 401(k) account. You are also eligible for a Pension Plan that is 100% funded by Travelers.
+ **Paid Time Off:** Start your career at Travelers with a minimum of 20 days Paid Time Off annually, plus nine paid company Holidays.
+ **Wellness Program:** The Travelers wellness program is comprised of tools, discounts and resources that empower you to achieve your wellness goals and caregiving needs. In addition, our mental health program provides access to free professional counseling services, health coaching and other resources to support your daily life needs.
+ **Volunteer Encouragement:** We have a deep commitment to the communities we serve and encourage our employees to get involved. Travelers has a Matching Gift and Volunteer Rewards program that enables you to give back to the charity of your choice.
**Employment Practices**
Travelers is an equal opportunity employer. We value the unique abilities and talents each individual brings to our organization and recognize that we benefit in numerous ways from our differences.
In accordance with local law, candidates seeking employment in Colorado are not required to disclose dates of attendance at or graduation from educational institutions.
If you are a candidate and have specific questions regarding the physical requirements of this role, please send us an email ( ) so we may assist you.
Travelers reserves the right to fill this position at a level above or below the level included in this posting.
To learn more about our comprehensive benefit programs please visit .

**Who Are We?**
Taking care of our customers, our communities and each other. That's the Travelers Promise. By honoring this commitment, we have maintained our reputation as one of the best property casualty insurers in the industry for over 160 years. Join us to discover a culture that is rooted in innovation and thrives on collaboration. Imagine loving what you do and where you do it.
**Job Category**
Data Analytics, Data Science
**Compensation Overview**
The annual base salary range provided for this position is a nationwide market range and represents a broad range of salaries for this role across the country. The actual salary for this position will be determined by a number of factors, including the scope, complexity and location of the role; the skills, education, training, credentials and experience of the candidate; and other conditions of employment. As part of our comprehensive compensation and benefits program, employees are also eligible for performance-based cash incentive awards.
**Salary Range**
$165,000.00 - $272,200.00
**Target Openings**
1
**What Is the Opportunity?**
The Travelers Catastrophe Risk Management Group is seeking a Cyber Peril Lead to join our PERILS team leading our research related to man-made perils with a focus on Cyber risk. You will be joining a group of dedicated professionals charged with leading Travelers to be in position to successfully endure catastrophic loss from natural and man-made perils.
The PERILS team is a multi-discipline group focusing on peril research, the development of next generation analytics, and event response activities. As a member of this Team, you will be an active participant in the development and implementation of peril research and strategies. The team engages in enterprise-wide complex multi-disciplinary CAT research projects with various depths of focus. The position requires an individual who can strive in an analytical, innovation-driven environment, in tune with business needs.
**What Will You Do?**
We are seeking a candidate with a solid analytical base in cyber risk management or a scientific, engineering, or related quantitative discipline. The person will have effective self-organizational and time-management skills with the ability to work independently and formulate and execute project objectives. We seek problem solving and critical thinking skills in support of the team's efforts to provide best-in-class analyses to our business partners. Some of the specific duties include:
+ Provide thought leadership and strategy support related to portfolio cyber risk
+ Validate cyber aggregation risk models and technographic scores
+ Assist the Cyber Underwriting team with subject matter technical expertise and guidance
+ Identify, select, and extract relevant data from various internal and external sources. Complete analyses and present recommendations to team members, stakeholders, and Leadership
+ Stay abreast of the latest scientific research and summarize findings for the peril, including recent trends in threat actors, techniques and vectors of attack
+ Drive innovation through new tools/technologies and capabilities (e.g., develop custom tail scenarios)
+ Monitor the Company's exposures, aggregations, and peril-specific book mix changes
+ Support our Business Units Consulting and Actuarial functions with ad-hoc research and peril strategy development
+ Create and maintain collaborative relationships with business partners
**What Will Our Ideal Candidate Have?**
+ Exposure to cyber catastrophe modeling and/or cyber hygiene technographic scanning tools is a plus
+ Proficiency with Microsoft Suite, SQL, statistical packages, or other programs used to retrieve and analyze data
+ Knowledge of insurance concepts, coverage, products, and operations preferred
+ Ability to apply emerging statistical procedures to large highly complex work
+ Working knowledge of a programming language such as Python/R/Matlab preferred
+ Works well both independently & within a team, strong organization, and time management
+ Demonstrated ability to convey technical concepts across professional fields of discipline
**What is a Must Have?**
+ Master's degree in Statistics, Mathematics, Decision Sciences, Actuarial Science or related analytical STEM field plus six years of experience or any suitable and equivalent combination of education and work experience.
+ Heavy concentration in mathematics, including statistics and programming, business intelligence/analytics, as well as data science tools and research using large data sets. Additional verification of specific coursework will be required.
**What Is in It for You?**
+ **Health Insurance** : Employees and their eligible family members - including spouses, domestic partners, and children - are eligible for coverage from the first day of employment.
+ **Retirement:** Travelers matches your 401(k) contributions dollar-for-dollar up to your first 5% of eligible pay, subject to an annual maximum. If you have student loan debt, you can enroll in the Paying it Forward Savings Program. When you make a payment toward your student loan, Travelers will make an annual contribution into your 401(k) account. You are also eligible for a Pension Plan that is 100% funded by Travelers.
+ **Paid Time Off:** Start your career at Travelers with a minimum of 20 days Paid Time Off annually, plus nine paid company Holidays.
+ **Wellness Program:** The Travelers wellness program is comprised of tools, discounts and resources that empower you to achieve your wellness goals and caregiving needs. In addition, our mental health program provides access to free professional counseling services, health coaching and other resources to support your daily life needs.
+ **Volunteer Encouragement:** We have a deep commitment to the communities we serve and encourage our employees to get involved. Travelers has a Matching Gift and Volunteer Rewards program that enables you to give back to the charity of your choice.
**Employment Practices**
Travelers is an equal opportunity employer. We value the unique abilities and talents each individual brings to our organization and recognize that we benefit in numerous ways from our differences.
In accordance with local law, candidates seeking employment in Colorado are not required to disclose dates of attendance at or graduation from educational institutions.
If you are a candidate and have specific questions regarding the physical requirements of this role, please send us an email ( ) so we may assist you.
Travelers reserves the right to fill this position at a level above or below the level included in this posting.
To learn more about our comprehensive benefit programs please visit .