Chief Information Security Officer - Virtual

Full time | Select Cyber | United States

Posted On 05/02/2019

Job Opening ID ZR_48_JOB

City Addison

State/Province Texas

75001

Select Cyber has been asked to identify a highly skilled and strategic Information Security leader. The CISO will be a member of the CIO cybersecurity leadership team, working closely with senior business leaders across the organization. In this role you will provide (locally or remotely in a virtual mode) long-range strategy, detailed information securityoversight and strategic leadership for this major financial organization. The CISO will lead the development and implementation of a comprehensive information security program, oversee information security Governance, Risk and Compliance as well as critical business priorities.

REQUIREMENTS:

• Establish a comprehensive, bank-wide information security strategy to ensure the availability, integrity, and confidentiality of critical information assets.
  
• Manage policies, standards, and processes designed to protect information assets.
  
• Work directly with business units to facilitate IT risk assessment and risk management processes, and work with stakeholders throughout the enterprise on identifying acceptable levels of residual risk.
  
• Establish procedures to address security incidents and partners with executive leadership to investigate and resolve security breaches.
  
• Stay up-to-date on regulatory changes, emerging threats and evolving technologies and implements appropriate control mechanisms and security architecture based on risks within Bank’s environment.
  
• Chair a cross-functional committee that drives enterprise information and technology security and risk strategies.
  
• Work within and support the enterprise Vendor Management Program to support selection, negotiation, contract management for service level agreements with outside suppliers as required.
  
• Maintains a risk-based framework to mitigate and monitor third party risk.
  
• Actively participate in enterprise-wide Business Continuity Planning (BCP) including the establishment and validation of procedures to restore business critical services in the event of a disaster, (i.e. IT Disaster Recovery (DR).
  
• Oversees the approval, training, and dissemination of security policies and practices.
  
• Define and facilitate the information security risk assessment process, including the reporting and oversight of treatment efforts to address findings.
  
• Liaises with internal and regulatory auditors on cyber security subject matter.
  
• Define, identify and classifies critical information assets, performs risk analysis regarding those assets to recommend and participate in implementing cost effective security solutions.
  

• Minimum of twelve (10) years of IT security experience, with at least four (4) being in a senior leadership role.
  
• Financial Services/Banking/Brokerage industry experience required.
  
• Strong understanding of strategic business imperatives and be able to articulate risk in the context of business objectives; he or she will have a deep working knowledge of relevant compliance, regulatory frameworks (e.g., ISO, SOX, ITIL, COBIT) and Payment Card Industry (PCI) Data Security Standard (DSS).
  
• Superior theoretical and practical expertise in enterprise and information systems security.
  
• Professional security management certification as a Certified Information Systems Security Professional (CISSP). Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials are recommended.
  
• Energy, enthusiasm and the ability to multi-task in a fast-paced, dynamic environment.
  
• Bachelors or Master’s degree (or equivalent) requited in computer science, management information systems, business administration (or a related discipline).
  
• Ability to travel to all locations as well as ability to travel overnight, as needed for meetings, projects, seminars, etc.