Business Continuity and Incident Management - Security Operations - Finance & Administration

New York, NY

Posted Apr 23, 2024 - Requisition No. 124791

The energy of a newsroom, the pace of a trading floor, the buzz of a recent tech breakthrough; we work hard, and we work fast - while keeping up the quality and accuracy we're known for. It's what keeps us inventing and reinventing, all the time. Our culture is wide open, just like our spaces. We bring out the best in each other through collaboration. Through our countless volunteer projects, we also help network with the communities around us. You can do amazing work here. Work you couldn't do anywhere else. It's up to you to make it happen.

What’s the role?

As part of the Enterprise Resilience and Incident Management (ERIM) Team at Bloomberg, you will be a part of a global team working to ensure that Bloomberg is prepared and ready to manage incidents effectively, with the least amount of impact to our business, clients and brand. Please note, this person can be based out of Princeton or New York.

We are seeking a trusted advisor on business continuity (BC) and physical incident (IM) risk management, who will be based in our NYC, NY headquarters. In this role, you will provide expertise throughout the implementation of a new third-party BC tool, in which we aim to capture the enterprise’s BC data and processes, including new data requirements under the UK’s Critical Third-Party Regime (CTP) and the EU’s Digital Resiliency Act (DORA). You will also work closely with multi-functional teams and the business in adopting a robust, risk-based approach to account for the continuity of our most critical business services, while leading the enterprise’s response to physical incidents that threaten the continuity of these services.

As a Business Continuity and Incident Management member within the ERIM Team, you will have the outstanding opportunity to collaborate with the business throughout every phase of the BC lifecycle and empower them with the tools and techniques vital to make timely business resilience decisions when a disruption occurs. You will facilitate training sessions and workshops aimed to support the business with the development of their business impact assessments (BIAs) and BC plans, as well as assist the business with maintaining recovery plans that capture and developing the strategies they will need to adopt to prevent material business impact during adverse events. Through the implementation of a robust testing curriculum that includes consistent testing of recovery plans, identification of recovery gaps and the monitoring of mitigation strategies through resolution, you will also aid the business in validating the effectiveness of their continuity plans.

We’ll trust you to:

• Drive the implementation of our global policies as well as the adoption of our third-party BC management platform across the organization by building and maintaining solid relationships with business leaders and gaining an understanding on their business’ evolving resilience needs

• Train the business on every aspect of the BC lifecycle, including facilitating training sessions on the BC management system as well as hosting BIAs and BC Plans development training workshops

• Support the business in the development and regular maintenance of recovery strategy documentation for their most important business services

• Collaborate consistently with SMEs in Operational Resilience, Engineering, the Chief Risk Office, Legal and Compliance and other domains to build familiarity on enterprise-wide strategic objectives and resilience requirements

• Consult on, design and implement improvements to the workflows and configuration of the BC management system that are aligned to the enterprise’s resilience strategic objectives. Including advancements across industry standard processes and/or upcoming regulatory requirements

• Lead the design, implementation and execution of a robust, enterprise-wide BC testing program that incorporates high impact, severe but plausible scenarios that are exercised in coordination with partners across Physical Security and Information and Communications Technology (ICT) domains

• Develop and maintain BC training materials, including on-line courses

• Deliver BC training to the business, including training on our tools

• Supervise metrics and key performance indicators to translate these data sets into technical requirements that drive enhancements of ERIM’s tools and systems

• Regularly report on BC and Physical IM Key Preforming Is and key risk indicators (KRIs)

• Collaborate with various internal support and operations teams to identify and assess threats and risks that have the potential to escalate to operational impacting incidents

• Manage the impacts of physical incidents that pose a threat to standard business operations

• Develop and handle incident communications throughout the incident management lifecycle, including the issuing of notifications via our emergency notification system (ENS) to relevant response teams and/or impacted businesses

• Conduct after action reviews (AARs) in partnership with multi-functional operational groups to improve and validate incident response standard methodologies

You'll need to have:

• Bachelor’s Degree and a minimum of 3 years of experience in business continuity management, physical incident management or application or infrastructure outage management

• Highly developed relationship management and partnership skills

• Excellent written and oral communication skills

• Some understanding of European financial systems regulations and regimes

• Proven track record of leading projects involving multi-functional teams

• Solid project management, problem solving, and facilitation skills

We’d love to see:

• Good understanding of the fundamentals of industry standard technologies and infrastructure such as: networking, cloud infrastructure, middleware, databases, and virtual infrastructure

• Prior experience with problem management activities, such as root cause analysis for technology outages

• Experience in the design and implementation of a Disaster Recovery testing program

• ITIL knowledge

• Experience in drafting responses to requests for information from assessors and regulators in a timely and satisfactory manner

• CBCP, MBCP, CRMP, CISM, CISA, CISSP or other related professional certifications

• Knowledge of the operational and technical infrastructure of financial firms and the financial markets

• Familiarity with physical and/or technical incident management platforms

• Expertise on business continuity management systems and tools

• Experience in Scrum principles and a solid understanding of supporting tools such as JIRA

Does this sound like you?

Apply if you think we're a good match. We'll get in touch to let you know that the next steps are, but in the meantime feel free to have a look at: https://www.bloomberg.com/company/what-we-do/

Bloomberg is an equal opportunity employer and we value diversity at our company. We do not discriminate on the basis of age, ancestry, color, gender identity or expression, genetic predisposition or carrier status, marital status, national or ethnic origin, race, religion or belief, sex, sexual orientation, sexual and other reproductive health decisions, parental or caring status, physical or mental disability, pregnancy or maternity/parental leave, protected veteran status, status as a victim of domestic violence, or any other classification protected by applicable law.

Bloomberg provides reasonable adjustment/accommodation to qualified individuals with disabilities. Please tell us if you require a reasonable adjustment/accommodation to apply for a job or to perform your job. Examples of reasonable adjustment/accommodation include but are not limited to making a change to the application process or work procedures, providing documents in an alternate format, using a sign language interpreter, or using specialized equipment. If you would prefer to discuss this confidentially, please email AMERrecruit@bloomberg.net (Americas), EMEArecruit@bloomberg.net (Europe, the Middle East and Africa), or APAC_recruit@bloomberg.net (Asia-Pacific), based on the region you are submitting an application for.

Salary Range: 110,000 - 140,000 USD Annually + Benefits + Bonus

The referenced salary range is based on the Company's good faith belief at the time of posting. Actual compensation may vary based on factors such as geographic location, work experience, market conditions, education/training and skill level.

We offer one of the most comprehensive and generous benefits plans available and offer a range of total rewards that may include merit increases, incentive compensation [Exempt roles only], paid holidays, paid time off, medical, dental, vision, short and long term disability benefits, 401(k) +match, life insurance, and various wellness programs, among others. The Company does not provide benefits directly to contingent workers/contractors and interns.