Vice President Information Security

LHH Recruitment Solutions is looking for a Vice President, Information Security , reporting to the Chief Risk Officer, plays a pivotal role in the organization. This position involves close collaboration with the Risk Management team and other department leaders. As a thought leader and advisor in information and cyber security and risk management, you will establish and monitor our information strategy and program to ensure the protection of all company and member information assets. You will work in a collaborative environment, fostering teamwork and recommending information security investments to mitigate risks, strengthen defenses, and reduce vulnerabilities for both internal and client-facing systems and products. This is a Direct Hire, Full Time position, under a W2 (not open to C2C) . Position is flexible but promoted to be on-site . Employer is not able to support in visa transfer or sponsorship at this time. Key Responsibilities Develop and implement strategies to manage technology risks and provide guidance to technology partners. Create and maintain a framework for assessing cybersecurity risks. Collaborate with operational teams to oversee and challenge technology risk management, including third-party providers. Establish and enforce cybersecurity policies and standards in line with industry and regulatory requirements. Conduct independent reviews and audits of cybersecurity processes and controls. Develop and monitor key risk indicators, dashboards, and reports, and provide regular updates to senior leadership and the board. Oversee the response and recovery measures during cybersecurity incidents. Evaluate third-party vendors to ensure compliance with organizational standards. Support risk training and education initiatives, working with other risk areas to develop and implement content. Stay informed about emerging cybersecurity threats and provide expertise to executive management. Provide security-related support and information to business unit stakeholders. Facilitate regulatory audits and examinations, create risk mitigation plans, and track their completion. Work with business units to conduct IT risk analysis and management, identifying acceptable risk levels and establishing roles and responsibilities for information protection. Communicate security-related concepts effectively to both technical and non-technical staff. Maintain strong working relationships with corporate and business unit stakeholders. Lead teams to foster a culture of trust and innovation. Stay updated on the threat environment and groups that could impact the organization’s security. Ensure compliance with all applicable federal and state laws and banking regulations. Qualifications B.S. Degree in Computer Science, Management Information Systems, or a related field. REQUIRED: Must come from a financial institution with large set of assets (millions), preferred banking. Required: 15 years of experience in information security or a combination of education and relevant experience. Required: 7 years in Technology Risk Management, IT Audit, or similar roles, with experience in designing and managing complex risk programs in a Financial Intuition. Required: experience with compliance standards, privacy laws, and financial regulations. Required to have: Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP). Required: extensive experience in risk assessments, network penetration testing, and vendor risk assessments. Strong understanding of information security regulations and standards (NCUA, GLBA, CCPA, PCI, FFIEC, NIST 800 / ISO 27000). Experience in regulated environments and responding to regulatory inquiries. Proficient in network architecture design, infrastructure technologies, and protocols. Excellent verbal and written communication skills, must be able to speak to stakeholders, executives, and board members. Ability to lead effectively in high-pressure environments. Experience with standard business machines and occasional business travel. Expected Salary Range: $250,000-270,000/year 25% bonus and a Long Term Incentive Benefits Overview: Physical Health: Comprehensive medical, dental, vision, and life insurance benefits. Onsite fitness center at HQ and wellness activity rewards. Financial Health: Competitive pay with bonus opportunities, 401(k) with 5% employer match, product discounts, and tuition reimbursement. Emotional Health: Employee Assistance Program (EAP), PTO, and paid holidays. Personal Development: On-the-job training, career growth opportunities through internal transfers, volunteer work, and flexible work arrangements for specific roles.