Cyber Enablement & Transformation Managing Director

Who we are looking for

Global Cybersecurity (GCS) protects State Street and its clients from the impact of cyber-attacks against systems by understanding the risks these attacks present and mitigating them through a robust, continuously evolving, cybersecurity program and control environment.

Fusion & Security Operations (F&SO) is one of five functions that make up GCS. F&SO works to provide real-time knowledge of cyber threats of today collectively to better prepare State Street for threats of tomorrow.

This Managing Director will lead the end-to-end cyber enablement and transformation agenda—defining the “protect the firm” strategy, driving disciplined program execution, standing up and maturing cyber service management capabilities, and leading transformation across cyber operations. The role partners closely with risk, compliance, technology, and business leaders to ensure operational resilience, regulatory alignment, and measurable outcomes.

What you will be responsible for

• Author and maintain a written “protect the firm” strategy that sets enterprise cyber objectives, risk appetite, controls coverage, operating principles, and multi‑year investment roadmap; ensuring alignment enterprise strategy.
• Integrate regulatory requirements and control frameworks (e.g., FFIEC, OCC, GDPR, NIST CSF, ISO 27001) into strategic objectives and execution plans.
• Lead a portfolio of cyber initiatives using a structured delivery framework (governance, intake, prioritization, benefits tracking).
• Establish rigor for scope, schedule, budget, risk/issue management, dependency tracking, and benefits realization across cyber programs; ensure disciplined execution and accountability.
• Build an operational metric and visualization strategy for cyber operations—defining North Star outcomes, KPIs, leading/lagging indicators, and dashboards (e.g., MTTR, incident SLA adherence, control health, vulnerability posture, identity governance).
• Standardize data sources and measurement methods; publish executive‑ready visualizations and performance reviews tied to risk posture and regulatory commitments.
• Build and run a cyber service desk that manages request intake, case routing, triage, and escalation; integrate with ITSM processes and tooling.
• Stand up exception management (documented risk acceptance/compensating controls) and consequence management processes (playbooks, enforcement actions, remediation tracking) with clear SLAs, approvals, and audit trails; align to incident and response standards.
• Lead transformation and innovation across cyber operations, evolving how teams work (automation, SOAR, AI‑assisted analytics, playbook standardization), optimizing control coverage and resilience, and embedding continuous improvement.

What we value

These skills will help you succeed in this role

• Drive culture change towards outcomes‑based delivery, transparency, and measurable value; mentor senior leaders and foster a high‑performance organization.
• Partner with Lines of Defense, Audit, Risk, and Technology to close findings, remediate vulnerabilities, and demonstrate sustained control effectiveness.
• Present strategy, status, and risk posture to executive committees and regulators; ensure timely, accurate reporting against commitments.

Education and Preferred Qualifications

• 15+ years in cybersecurity, technology risk, or security operations; 8+ years leading large programs/portfolios and service delivery at scale.
• Proven experience defining enterprise cyber strategy and driving execution through measurable outcomes.
• Deep familiarity with control and regulatory frameworks (NIST CSF, ISO 27001, FFIEC, OCC, GDPR) and enterprise risk management.
• Hands‑on expertise with security operations processes (incident management, threat detection/response, vulnerability management, identity governance) and ITSM.
• Advanced fluency with metrics and visualization tools (e.g., Tableau or PowerBI dashboards for control health, SLA adherence, MTTR) and executive reporting.
• Exceptional leadership, communication, and stakeholder management skills; ability to influence senior executives and cross‑functional teams.

Salary Range:

$170,000 - $282,500 Annual

The range quoted above applies to the role in the primary location specified. If the candidate would ultimately work outside of the primary location above, the applicable range could differ.

Employees are eligible to participate in State Street’s comprehensive benefits program, which includes: our retirement savings plan (401K) with company match; insurance coverage including basic life, medical, dental, vision, long-term disability, and other optional additional coverages; paid-time off including vacation, sick leave, short term disability, and family care responsibilities; access to our Employee Assistance Program; incentive compensation including eligibility for annual performance-based awards (excluding certain sales roles subject to sales incentive plans); and, eligibility for certain tax advantaged savings plans.

For a full overview, visit https://hrportal.ehr.com/statestreet/Home.

About State Street

Across the globe, institutional investors rely on us to help them manage risk, respond to challenges, and drive performance and profitability. We keep our clients at the heart of everything we do, and smart, engaged employees are essential to our continued success.

We are committed to fostering an environment where every employee feels valued and empowered to reach their full potential. As an essential partner in our shared success, you’ll benefit from inclusive development opportunities, flexible work-life support, paid volunteer days, and vibrant employee networks that keep you connected to what matters most. Join us in shaping the future.

As an Equal Opportunity Employer, we consider all qualified applicants for all positions without regard to race, creed, color, religion, national origin, ancestry, ethnicity, age, disability, genetic information, sex, sexual orientation, gender identity or expression, citizenship, marital status, domestic partnership or civil union status, familial status, military and veteran status, and other characteristics protected by applicable law.

Discover more information on jobs at StateStreet.com/careers

Read our CEO Statement

Job Application Disclosure:

It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.