Enterprise Risk - Information Security Manager

It starts with our culture ...

Common sense has never been common.

If it were, the world would be a different place. Things would run smoothly and on time. People would do what they say and say what they do. Everything would be fair, without all the small talk. And banks would only sell you what you need. When a banker looked at a client, they wouldn't just see a number, they'd see a dad or a mom or a graduate or a business owner. Our Bankers understand the complexities of people's lives and offer simple solutions.

That's the basics of Relationships. Fairness. Simplicity. When you choose our Company, you have an opportunity to make an impact beyond the walls of our buildings.

We have a long-standing commitment to Equity, Diversity and Inclusion. Through our banking relationships, investing, grants, and volunteerism, NBH Bank promotes the growth, revitalization and sustainability of the communities we serve. We believe that these are important elements in building and sustaining a successful organization and a positive, results-driven culture. We strive for all of our associates to feel welcome and empowered at work.

As the Information Security Manager, you will support the Enterprise Risk Director / Chief Information Security Officer in enhancing the Enterprise Risk Framework entailing bank-wide policies and procedures to assist in an enterprise-wide risk management culture. Assist the business in establishing risk tolerances and appetites to support the organization's risk model and risk-rating system and enable the development and execution of risk assessments identifying current and emerging risks linked to the organization's business strategy and operational risk exposures. Your efforts may include establishing minimum expectations through policies, procedures, frameworks, and monitoring to help ensure compliance. Additionally, you will help ensure monitoring for compliance with banking laws, regulations, and better practices; provide business leadership and guidance to business owners and management ;; collaborate work with other business units on new projects, products, and business integrations to help ensure risk management and regulatory issues are appropriately addressed; and build a great rapport with clients and fellow associates, and treat others with respect and consideration regardless of their status or position.

All associates are expected to maintain current knowledge and consistent compliance with regulations and bank policies and procedures related to the position, including but not limited to Bank Secrecy Act (BSA) and Office of Foreign Assets Control (OFAC) requirements.

Below are the Minimum Requirements for Consideration:

• Bachelor's degree in Information Security, Information Systems, or equivalent combination of education and related work experience.


• 5+ years of relevant job experience in risk-related field, bank regulatory agency or consulting.


• 2+ years of previous supervisory or management experience.


• 5+ years of relevant job experience showing an understanding of technologies and appropriate risk management oversight.


• Strong communication, leadership, and interpersonal skills.


• Working knowledge of knowledge of common information security management frameworks, such as ISO/IEC 27001, and NIST.


• Strategic problem solving and decision-making abilities; adept at working under pressure.


• Innovative thinking and leadership with a keen ability to influence and motivate cross-functional, interdisciplinary teams.


• Extensive ability to analyze and interpret the threat landscape for business impact to the Bank and to develop appropriate and pragmatic approaches to manage associated risk.


• Security certifications: CISSP, CISA or CISM, required.

Desired Skills: Ideal candidates for this position should possess some or all of the following skills:

• Advanced degree or certification related to field.


• 10+ years of relevant job experience in risk-related field, bank regulatory agency or consulting.


• 5+ years of previous supervisory or management experience.


• Experience with RSA Archer Technologies or similar eGRC/ERM software.

• Strong knowledge of banking laws and regulations, including US State-privacy expectations.

• Prior CISO or Deputy CISO experience preferred.

• Working knowledge of data analytics and reporting tools, including FIS' BIC


• Ability to write policies and procedures for risk related functions.


• Ability to work with other business unit leaders on committees and on projects to address risk issues.


• Proficient in MS Office applications which include Outlook, Word, Excel, and PowerPoint.

Work Environment:

We are a culture that believes that people are our greatest asset and are at the heart of everything we do. We take pride in bringing clarity and simplicity to our associates (employees) and clients. Our decisions are made efficiently, fairly, and locally. Our success is directly tied to the communities we serve. It is equally important for us to look through the lens of our applicants and associates to identify their individual needs. As such, we want to share the following:

• We are committed to our core value of meritocracy and supporting our associates in growing within their role

• Office setting with traditional hours.


• Must be able to work at a rapid pace for long periods of time (typically no longer than 8 hours).


• When completing certain tasks, an associate may need to be able to grasp, push, pull, lift, bend, raise and hold hands and arms overhead.


• Must be able to work overtime to the extent necessary.


• Must be able to travel as needed, typically no more than 25% of the time.

Benefits:

In addition to your financial compensation, we also offer a generous benefits package that includes insurance, 401k, an associate stock purchase program, paid time off, associate banking perks. For more information about the benefits offered click here.

If this is what you believe in, then you're definitely right for us. Consider making an investment in us, so that we may invest in you and your bright future.

Thank you for your application!
The Bank is committed to providing qualified applicants and associates reasonable accommodation, when necessary, to enable the individuals to complete the application process and/or perform the essential functions of the job. An applicant and/or associate requiring reasonable accommodation to perform any essential job function, should contact Human Resources.

The Bank's policy is to provide equal opportunity to all people without regard to race, color, religion, national origin, ancestry, marital status, veteran status, age, disability, pregnancy, genetic information, citizenship status, sex, sexual orientation, gender identity or any other legally protected category. The Bank is proud to be a drug-free workplace.

Selected candidate(s) for hire must complete the following prior to employment: a criminal history report, global screen, drug screen, employment credit report and if applicable, a driving record. Applicants must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of hire.