Principal, Cyber Assurance and Support Analyst

Job Description:

The Role

Fidelity Investments has an opening for a Principal role that presents an outstanding opportunity to accelerate an individual’s career in cybersecurity at one of the top financial services companies in America. Join a high impact team that plays a key role in attracting and retaining business by supporting cybersecurity inquiries and assessments from 401k clients and prospects. In this role, you will lead our team's response to in-depth client security assessments and audits (to include client onsite visits) by:

• Responding to security assessment questionnaires and providing assurances over Fidelity’s cybersecurity and customer protection controls, using the team’s standard database of responses, fellow team members, and business partners

• Gathering and demonstrating supporting documentation or evidence of our security policies, controls, and practices securely in person or over screen-share

• Working with subject-matter experts to provide deeper dives into areas like penetration testing, network security, and more

• Promoting and expertly referencing Fidelity’s independent third-party audits and certifications covering data security and data privacy, including ISO 27001/27017, ISO 27701, and SOC 2

• Communicating Fidelity’s industry-leading cybersecurity program in sales finals and client committee meetings

• Supporting clients undergoing regulatory audits or performing due diligence reviews aligned with the Department of Labor’s Cybersecurity Guidance

The Expertise and Skills You Bring

• Bachelor's degree, preferably in Computer Science, Cybersecurity, or a technology-related field; or equivalent experience

• Knowledge of relevant cybersecurity news and current events

• Time management skills necessary to balance multiple priorities concurrently

• Excellent verbal and written communication skills, and an ability to build positive partnerships

• 6-10 years of cybersecurity, information security, and/or technology risk experience

• Relevant cybersecurity certifications, such as the CISSP or CISA

The Team

You will be a member of the Workplace Customer Protection Center of Excellence (CoE). The mission of the Customer Protection CoE is to protect the Workplace community of plan sponsors and participants using our retirement and benefits platforms.

As a member of the Customer Protection Center of Excellence, you would be joining a culture that is defined by how our team members work. We:

• Are trusted, collaborative partners who are engaged and transparent

• Are security subject matter experts and continuous learners that are passionate about protecting our customers

• Take personal accountability for quality & timely delivery of our services

• Demonstrate inclusion and empathy where everyone feels safe to be their authentic selves

• Foster associates’ well-being by supporting work-life balance and guilt-free time off

Certifications:

Category:

Information Technology

Fidelity’s hybrid working model blends the best of both onsite and offsite work experiences. Working onsite is important for our business strategy and our culture. We also value the benefits that working offsite offers associates. Most hybrid roles require associates to work onsite every other week (all business days, M-F) in a Fidelity office.

Please be advised that Fidelity’s business is governed by the provisions of the Securities Exchange Act of 1934, the Investment Advisers Act of 1940, the Investment Company Act of 1940, ERISA, numerous state laws governing securities, investment and retirement-related financial activities and the rules and regulations of numerous self-regulatory organizations, including FINRA, among others. Those laws and regulations may restrict Fidelity from hiring and/or associating with individuals with certain Criminal Histories.