At Shire, we are proud and grateful to employ military veterans and thank them for their contributions to our company and our country. See where your military experience can play a role at Shire by using our military skills translator job search tool below:
Position : Information Security Manager
Requisition ID: : 1534
PURPOSE OF JOB:
The Information Security & IT Governance Manager is an advocate for the credit union’s total information security needs and is responsible for the development and delivery of a comprehensive information security strategy to optimize the security posture of the credit union. The Information Security & IT Governance Manager leads the development and implementation of a security program that leverages collaborations and credit union-wide resources, facilitates information security governance, advises senior leadership on security direction and resource investments, and designs appropriate policies to manage information security risk.
The Information Security & IT Governance Manager provides oversight of all security assessments, regulatory examinations, and audit related items for the IT department. These items include the Corporate Information Security Program, the Security Incident Response Plan, Business Continuity Plan, and Member Information Risk Assessments. All audit findings and security vulnerabilities will be tracked by the Information Security & IT Governance Manager to ensure timely remediation as well as regulatory compliance. The Information Security & IT Governance Manager will also oversee all audits, examination and security related preparation activities for the enterprise related to IT systems, in addition to managing daily activities of the IT Security team.
ESSENTIAL DUTIES:
Information Security Program Maintenance and Oversight
Information Security Standard maintenance
Acceptable Use of Company IT equipment and Security
Ongoing updates
New hire orientation signoff
Annual Staff/Board signoff
Incident Response Standard maintenance, testing and tracking
Information Security Risk management and oversight
Security systems management and oversight
Oversight of IT Security Testing
Schedule and coordination of annual and periodic testing of the Vulnerability and Risk assessment testing.
Monitoring and reporting of security findings.
Oversee social engineering testing (phishing) and training, reporting of subsequent findings to the Managers.
Risk Management and Incident Response
Keep abreast of security incidents and act as primary control point during significant information security incidents. Convene the Security Incident Response Team (SIRT) as needed, or requested, in addressing and investigating security incidences that arise.
Convene Security Steering Committee as appropriate and provide leadership for breach response and notification actions for the credit union.
Develop, implement and administer technical security standards, as well as a suite of security services and tools to address and mitigate security risk.
Provide leadership, direction and guidance in assessing and evaluating information security risks and monitor compliance with security standards and appropriate policies.
Examine impacts of new technologies on the credit union’s overall information security.
Establish processes to review implementation of new technologies to ensure security compliance.
BCP Management, Maintenance and Oversight
Manage ongoing updates of the BCP to remain current with changing business needs
Oversight of continuity efforts in IT between Las Vegas and Downey
Inclusion of new branch/Annex offices
Updated emergency call trees
Redacted version for CU Vendor Due Diligence (Participation Support)
Ensure ongoing awareness training update and conducted
Executive and Board training program
Recovery team training program
Management team training program
Frontline staff training program
Oversee quarterly IT failover testing
Oversee Annual Corporate Disaster Scenario testing (with documentation)
Coordinate with State-wide disaster recovery testing
Internal/External Audit and Regulatory Exam oversight
Ensure proper annual user reviews are being completed on all systems
Ensure that all regulatory documents are being prepared and delivered before the scheduled audits.
Ensure all audit findings are completed timely according to the Management response and regulatory needs.
EDUCATION/EXPERIENCE:
Bachelor's degree (B.A./B.S.) from four-year college or university; or five years related experience and/or training; or equivalent combination of education and experience
The pay range for this position is listed above. Our pay ranges are designed to allow for candidates with various levels of experience and skill to be considered, and to allow room for growth to be achieved in a role over time. Generally, new hire salary offers fall within the minimum to midpoint of a pay range for many candidates. Any offer extended to a candidate will be based upon their individual combination of experience, knowledge, skills, and education as well as internal equity.
Financial Partners Credit Union is an equal opportunity employer and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.
$107,930 - $161,896