Information Security Role
About the Position
This is an exciting opportunity to leverage your expertise and passion in information security to excel. The selected candidate will work directly with the Information Security Officer as a member of the bank's information security team.
The successful individual will collaborate with various teams, including Risk Management, Information Technology, Third-Party Risk Management, Enterprise Risk Management, Bank Compliance, Audit, HR, and Bank Operations personnel, to maintain the bank's information security program and report on information security compliance.
Key Responsibilities
* In support of the ISO, respond to and work with internal and external auditors and regulators to maintain the information security program.
* Perform assigned technical and administrative information security activities, such as:
o Manage user access review process.
o Perform vulnerability scans and configuration reviews.
o Monitor, analyze, and respond to suspicious information security events.
o Assist with tracking remediation of testing and assessment findings.
o Perform information security application administration functions for assigned technologies.
* Support the ISO in the maintenance and implementation of information security documentation.
* Participate in information security and third-party risk management activities.
* Participate in information security program assessments and audits.
* Participate in business continuity, disaster recovery, and incident response exercises.
* Analyze and prepare response plans to internal and external assessments and audit tests conducted by internal teams and independent third parties.
* Provide recommendations for information security improvements to the ISO.
* Stay current with information security trends and industry research.
* Other duties as assigned.
Required Skills and Qualifications
Education
* Bachelor's degree in information systems, cybersecurity, or similar.
* Certified Information System Security Professional (CISSP) or significant progress towards this or a similar recognized professional certification.
Experience
* 3-7 years' hands-on experience with information security governance, risk management, or operations.
* Deep knowledge of industry-recognized information security standards.
* Experience working with external regulators and auditors in a heavily regulated industry preferred.
* Experience working with one or more automated GRC platforms a plus.
Knowledge and Skills
* Knowledge of applicable banking compliance regulations.
* Strong interpersonal skills and customer service crucial.
* Skilled in assessing technical system controls.
* Knowledge of system security vulnerabilities and remediation techniques.
* Expert in Microsoft Office.
* Ability to work with managed security service providers, vendors, and partners.
* Able to meet deadlines and resolve problems in a timely manner.
* Must remain well-versed in security trends and threats in the banking industry.
* Organized, detailed-oriented professional committed to accuracy and quality.
Benefits
* 12 paid holidays.
* Generous paid time off.
* 4% match on our 401(k).
* Medical, dental, and vision benefits.
* 100% company-paid life, AD&D insurance, short and long-term disability.
Travel
* Up to 10 percent.
This position is typically performed in a regular office work environment. Activities will require bending, reaching, analyzing information, spending considerable time in front of a computer screen, and may require lifting up to 50 lbs.
The incumbent will be expected to be able to work Monday through Friday and work will mainly be performed at the Maitland location; occasional evening and weekend work will be required.