Chief Information Security Officer


Full Time Salaried with Bonus and Benefits

Requirement ID:


Hybrid Role-NYC Office Location When in Office

Apply To:





Full Time Salaried with Bonus and Benefits


Hybrid Role-NYC Office Location When in Office

Requirement ID:


Apply to:




Apply Now

Purpose of Position

Responsible for designing and implementing the Bank’s information security program while protecting the business from cyber security threats. Protect the Bank’s digital assets; manage cybersecurity; identify and report incidents. Communicate about the methods used to gain unauthorized access and design training programs to address security awareness.

Essential Job Functions

·        Develop anenterprise information security program

·        Design a critical response process for cyber security incidents

·        Identify, report and control incidents

·        Manage and train security staff

·        Continuously monitor threats

·        Ensure that disaster recovery and business continuity plans are in place and tested

·        Approve and administer identity access policies

·        Maintain a current understanding of the IT threat landscape for the industry

·        Ensure Bank compliance with the changing laws and applicable regulations

·        Schedule periodic security tests, including internal and external penetration testing and phishing

·        Schedule table-top exercises for Crisis Team and senior management

·        Review and approve security policies, procedures and controls

  • Ensure that they are kept current and are communicated to  staff/consultants
  • Ensure staff/vendor compliance with the Bank’s security policies  and procedures

·        Manage, employees,contractors and vendors involved in IT security

·        Provide training and mentoring to security team members and Bank staff

·        Brief the executive team on status and risks, overall strategy and necessary budget

·        Communicate bestpractices and risks to the Bank

·        Perform a risk assessment of the Bank’s vulnerabilities in the cybersecurity landscape and develop the Bank’s risk appetite for information Security

·        Develop key risk indicators and dashboard metrics reporting to both the management team and the Board of Directors.

Knowledge, Skills and Experience Requirements

Apply Now

1.  Master’s degree or equivalent experience

2. Minimum of ten (10) years of experience, at least five (5) years focusedon managing information security in a complex, matrixed environments

3. Extensive experience in regulated industries, especially financial services; banking experience is preferred

4. Proven ability to create and maintain enterprise-level information security programs

5. Motivated individual with strong analytical, problem solving and rootcause analysis skills

6. Ability to work on multiple, time-critical projects simultaneously

7. Knowledge of international and local data privacy laws

8.Working knowledge of information security engineering concepts and principles

9.Familiarity with DFS 500 and similar regulations

10. Experience working with external regulators including NY DFS and FDIC

11. Excellent verbal and written communications, including presentation ofcomplex data in easily understood ways

12. Ability to confidently interact at multiple levels in the organizationand lead cross-departmental team projects

13. Experience presenting to senior levels including Board of Directors

14. CISSP, CISA or CISM designations preferred

Apply for this job

Reconciliation and Control Administrator

See job description


Select file
Thank you! Your submission has been received. We will get back to you soon.
Oops! Something went wrong while submitting the form.