Head of Operational and Cyber Resilience - Cr--dit Agricole Group : Job Details

Summary The Head of Operational and Cyber Resiliency will be responsible for developing, implementing, and overseeing the bank's strategy to ensure resilience against operational disruptions, cyber threats, and systemicrisks. This role will lead enterprise-wide resiliency initiatives, ensuring alignment with regulatory expectations, industry best practices, and emerging threats. The ideal candidate will collaborate closely with technology, risk management, compliance, and business leadership to enhance operational integrity and incident response capabilities. This is a high-impact role requiring deep expertise in cybersecurity, operational risk management, and business continuity planning in a highly regulated financial environment. Key Responsibilities 1. Enterprise Resilience Strategy Development - Develop and implement a comprehensive operational and cyber resiliency strategy aligned with regulatory requirements and industry standards. - Define resilience objectives, key risk indicators (KRIs), and performance metrics to measure the effectiveness of resiliency programs. - Collaborate with senior leadership to embed resilience principles into business and technology processes. - Stay ahead of emerging risks, regulatory changes, and threat landscapes to refine and enhance resilience strategies. 2. Cyber Resiliency and Incident Management - Oversee the development and execution of the bank's cyber resilience framework, ensuring rapid response and recovery from cyber incidents. - Lead tabletop exercises and simulations to test cyber incident response and business recovery capabilities. - Coordinate with internal and external stakeholders (e.g., regulators, law enforcement, third-party service providers) during cyber events. - Ensure integration of cyber resilience into broader enterprise risk management and IT security functions. 3. Business Continuity and Disaster Recovery (BC/DR) - Develop and maintain enterprise-wide business continuity and disaster recovery plans, ensuring readiness to sustain critical business operations during disruptions. - Conduct regular BC/DR testing, audits, and training sessions to validate effectiveness and improve preparedness. - Work closely with technology teams to ensure recovery time objectives (RTOs) and recovery point objectives (RPOs) are met for critical systems. - Establish and maintain alternative operational processes to mitigate disruptions during system failures or cyber events. 4. Regulatory Compliance and Governance - Ensure compliance with all relevant regulatory frameworks (e.g., FFIEC, OCC, Basel, DORA) related to operational and cyber resiliency. - Serve as a key liaison with regulatory bodies and auditors, preparing reports and responses to inquiries regarding resilience programs. - Develop governance frameworks, policies, and procedures to enforce resilience-related mandates across the organization. - Foster a culture of compliance and resilience awareness #J-18808-Ljbffr