Full-Time VP, Information Security Specialist (Req#1477)
Job Description
Can be remote but must live in the following states: CT, FL, ME, MA, NH, NY (No NYC), RI, SC, VT
This position is responsible for developing and collaborating across divisions to implement Eastern Bank’s Information Security program. The primary goal of program is to protect the confidentiality, integrity and availability of information resources while aligning to business goals and objectives.
Responsibilities include, but are not limited to the following:
- Working with organizational stakeholders, assist the development of an information security strategy, and monitor progress against it. Ensure organization wide compliance with policies, standards, guidelines and controls.
- Maintain Information Security policies and key controls, ensuring adherence to policy framework by engaging cross-functional organizational stakeholders in periodic policy review and changes.
- Monitor external information security risk landscape for changes, analyze impacts to information security strategy of changes and ensure that security practices and programs adequately address changing dynamics.
- Assess the impact to the organization of Emerging Threats and work with key stakeholders to develop appropriate short-, medium- and long-term strategies to address.
- Create and deliver a Bank wide information security education and awareness program, ensuring that broad-based enterprise awareness objectives as well localized business needs are met.
- Provide consulting and advisory services to both business and technology groups, as needed.
Education and Experience:
- 7-10 years in a senior Information Security risk management role.
- Appropriate Industry certifications preferred: CISSP, CISA, or CISM.
- Financial institution and experience with Federal regulations and Industry standards preferred.
- Risk Management – Knowledge of processes, tools and techniques for assessing and controlling an organization’s exposure to Information and Security risks.
- Conflict Management – Understanding of how to anticipate, recognize, and deal effectively with existing or potential conflicts at the individual, group, or situation level; ability to apply this understanding appropriately to diverse situations.
- Confidentiality – Knowledge of practices and policies governing disclosure of information about the organization, its business activities, and employees; ability to apply this knowledge appropriately to diverse situations.
- Familiarity with IT Industry technology for financial organizations – Knowledge and understanding of marketplace experience, developments and trends related to the Information Technology (IT) function.
Skills/Knowledge:
- Interpersonal Relationships – Knowledge of the techniques and the ability to work with a variety of individuals and groups in a constructive and collaborative manner.
- Problem Solving – Knowledge of approaches, tools, techniques for recognizing, anticipating, and resolving organizational, operational or process problems; ability to apply this knowledge appropriately to diverse situations.
- Decision Making and Critical Thinking – Understanding of the issues related to the decision-making process; ability to analyze situations fully and accurately and reach productive decisions.
- Influencing – Knowledge of effective influencing tactics and strategies; ability to impact decisions within and outside own organization.
- Leadership – Ability to work with a group to set its objectives and agenda, generate allegiance to those objectives, and guide and motivate their achievement.
- Planning: Tactical, Strategic – Ability to contribute to operational (short term), tactical (1-2 years) and strategic (3-5 years) planning in support of the overall business plan.
- IT Standards, Procedures, Policies – Knowledge of the organization’s technology practices, standards and procedures.
- Information Security Management – Knowledge of processes, tools, techniques and practices for assuring adherence to standards associated with accessing, altering and protecting organizational data.
- Information Security Technologies – Knowledge of technologies and technology-based solutions dealing with information security issues
How to Apply
Copy the link below to your web browser and click “Apply Now” :
183 total views, 0 today