Type:
Full Time Salaried with Bonus and Benefits
Requirement ID:
Location:
Hybrid Role-NYC Office Location When in Office
Apply To:
diane.katz@primesoftinc.com
/
diane.katz@primesoftinc.com
/
561-573-1581
Type:
Full Time Salaried with Bonus and Benefits
Location:
Hybrid Role-NYC Office Location When in Office
Requirement ID:
Setup:
Apply to:
diane.katz@primesoftinc.com
,
diane.katz@primesoftinc.com
,
561-573-1581
Responsible for designing and implementing the Bank’s information security program while protecting the business from cyber security threats. Protect the Bank’s digital assets; manage cybersecurity; identify and report incidents. Communicate about the methods used to gain unauthorized access and design training programs to address security awareness.
· Develop anenterprise information security program
· Design a critical response process for cyber security incidents
· Identify, report and control incidents
· Manage and train security staff
· Continuously monitor threats
· Ensure that disaster recovery and business continuity plans are in place and tested
· Approve and administer identity access policies
· Maintain a current understanding of the IT threat landscape for the industry
· Ensure Bank compliance with the changing laws and applicable regulations
· Schedule periodic security tests, including internal and external penetration testing and phishing
· Schedule table-top exercises for Crisis Team and senior management
· Review and approve security policies, procedures and controls
· Manage, employees,contractors and vendors involved in IT security
· Provide training and mentoring to security team members and Bank staff
· Brief the executive team on status and risks, overall strategy and necessary budget
· Communicate bestpractices and risks to the Bank
· Perform a risk assessment of the Bank’s vulnerabilities in the cybersecurity landscape and develop the Bank’s risk appetite for information Security
· Develop key risk indicators and dashboard metrics reporting to both the management team and the Board of Directors.
1. Master’s degree or equivalent experience
2. Minimum of ten (10) years of experience, at least five (5) years focusedon managing information security in a complex, matrixed environments
3. Extensive experience in regulated industries, especially financial services; banking experience is preferred
4. Proven ability to create and maintain enterprise-level information security programs
5. Motivated individual with strong analytical, problem solving and rootcause analysis skills
6. Ability to work on multiple, time-critical projects simultaneously
7. Knowledge of international and local data privacy laws
8.Working knowledge of information security engineering concepts and principles
9.Familiarity with DFS 500 and similar regulations
10. Experience working with external regulators including NY DFS and FDIC
11. Excellent verbal and written communications, including presentation ofcomplex data in easily understood ways
12. Ability to confidently interact at multiple levels in the organizationand lead cross-departmental team projects
13. Experience presenting to senior levels including Board of Directors
14. CISSP, CISA or CISM designations preferred
.png){kind=small}