Assistant Vice President – Business Continuity, Cyber Resiliency

Role Overview

• Partner with Cyber, Technology, Infrastructure, Application Owners, Cloud, and third parties to define cyber recovery objectives (RTO/RPO), prioritized service recovery, and dependency mapping.
• Lead adoption of cyber resiliency practices, immutable and air‑gapped backups, clean‑room recovery, secure identity recovery, and restoration validation.
• Ensure cyber crisis response playbooks are fully integrated across Incident Response, Crisis Management, DR, Legal, Compliance, Communications, and Executive leadership.
• Drive regular cyber recovery simulations (table‑top and technical); track corrective actions through closure and report readiness to governance forums
• Lead implementation, and continuous enhancement of enterprise Business Continuity, Disaster Recovery, and Cyber Resiliency frameworks aligned to ISO 22301 and leading resilience standards
• Act as a primary point of contact for client assurance, regulatory reviews, audits, RFPs/RFIs, and resilience capability demonstrations
• Drive organization-wide Business Impact Assessments (BIA), risk assessments, and threat modeling to identify critical services, recovery priorities, and systemic vulnerabilities.
• Identify and remediate Single Points of Failure (SPOFs) across business processes, technology, people, and third‑party dependencies.
• Lead and coordinate large‑scale enterprise crisis response, acting as a core member of the Crisis Management Team during high‑impact events.
• Manage crises including cyber incidents, technology outages, infrastructure failures, civil disturbances, natural disasters, and geopolitical disruptions, ensuring controlled escalation and decision-making
• Oversee development, testing, and execution of Crisis Management Plans, Emergency Response Plans, and Command Center protocols

Requirements

• 8–15 years of overall experience, with hands‑on experience in working closely with Information Security, Cyber Defense, SOC and Incident Response
• Proven experience managing complex, high‑pressure, multi‑stakeholder crisis events, including cyber incidents.
• Strong working knowledge of ISO 22301, BCM lifecycle, cyber recovery models, and integrated crisis response
• Certifications such as ISO 22301, CISSP, CISM,CBCI, MBCI or equivalent strongly preferred.
• Executive‑level communication skills with the ability to operate confidently during crisis situations.

Tech Stack

• Cloud

Benefits

• EXL never requires or asks for fees/payments or credit card or bank details during any phase of the recruitment or hiring process and has not authorized any agencies or partners to collect any fee or payment from prospective candidates. EXL will only extend a job offer after a candidate has gone through a formal interview process with members of EXL’s Human Resources team, as well as our hiring managers.