Hillcrestbank
Enterprise Risk - Information Security Manager
Hillcrestbank, Denver, Colorado, United States,
Enterprise Risk - Information Security Manager
Wednesday, July 3, 2024As the Information Security Manager, you will support the Enterprise Risk Director / Chief Information Security Officer in enhancing the Enterprise Risk Framework entailing bank-wide policies and procedures to assist in an enterprise-wide risk management culture. You will assist the business in establishing risk tolerances and appetites to support the organization’s risk model and risk-rating system, enabling the development and execution of risk assessments identifying current and emerging risks linked to the organization’s business strategy and operational risk exposures.Your efforts may include establishing minimum expectations through policies, procedures, frameworks, and monitoring to help ensure compliance. Additionally, you will help ensure monitoring for compliance with banking laws, regulations, and better practices; provide business leadership and guidance to business owners and management; collaborate with other business units on new projects, products, and business integrations to help ensure risk management and regulatory issues are appropriately addressed; and build a great rapport with clients and fellow associates, treating others with respect and consideration regardless of their status or position.All associates are expected to maintain current knowledge and consistent compliance with regulations and bank policies and procedures related to the position, including but not limited to Bank Secrecy Act (BSA) and Office of Foreign Assets Control (OFAC) requirements.Below are the Minimum Requirements for Consideration:Bachelor’s degree in Information Security, Information Systems, or equivalent combination of education and related work experience.5+ years of relevant job experience in a risk-related field, bank regulatory agency, or consulting.2+ years of previous supervisory or management experience.5+ years of relevant job experience showing an understanding of technologies and appropriate risk management oversight.Strong communication, leadership, and interpersonal skills.Working knowledge of common information security management frameworks, such as ISO/IEC 27001 and NIST.Strategic problem-solving and decision-making abilities; adept at working under pressure.Innovative thinking and leadership with a keen ability to influence and motivate cross-functional, interdisciplinary teams.Extensive ability to analyze and interpret the threat landscape for business impact to the Bank and to develop appropriate and pragmatic approaches to manage associated risk.Security certifications: CISSP, CISA, or CISM, required.Desired Skills:
Ideal candidates for this position should possess some or all of the following skills:Advanced degree or certification related to the field.10+ years of relevant job experience in a risk-related field, bank regulatory agency, or consulting.5+ years of previous supervisory or management experience.Experience with RSA Archer Technologies or similar eGRC/ERM software.Strong knowledge of banking laws and regulations, including US State-privacy expectations.Prior CISO or Deputy CISO experience preferred.Working knowledge of data analytics and reporting tools, including FIS’ BIC.Ability to write policies and procedures for risk-related functions.Ability to work with other business unit leaders on committees and projects to address risk issues.Proficient in MS Office applications which include Outlook, Word, Excel, and PowerPoint.In addition to your financial compensation, we also offer a generous benefits package that includes insurance, 401k, an associate stock purchase program, paid time off, and associate banking perks. For more information about the benefits offered, click here.If this is what you believe in, then you’re definitely right for us. Consider making an investment in us, so that we may invest in you and your bright future.Thank you for your application!The Bank is committed to providing qualified applicants and associates reasonable accommodation, when necessary, to enable the individuals to complete the application process and/or perform the essential functions of the job. An applicant and/or associate requiring reasonable accommodation to perform any essential job function should contact Human Resources.The Bank's policy is to provide equal opportunity to all people without regard to race, color, religion, national origin, ancestry, marital status, veteran status, age, disability, pregnancy, genetic information, citizenship status, sex, sexual orientation, gender identity, or any other legally protected category. The Bank is proud to be a drug-free workplace.Selected candidate(s) for hire must complete the following prior to employment: a criminal history report, global screen, drug screen, employment credit report, and if applicable, a driving record. Applicants must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of hire.
#J-18808-Ljbffr
Wednesday, July 3, 2024As the Information Security Manager, you will support the Enterprise Risk Director / Chief Information Security Officer in enhancing the Enterprise Risk Framework entailing bank-wide policies and procedures to assist in an enterprise-wide risk management culture. You will assist the business in establishing risk tolerances and appetites to support the organization’s risk model and risk-rating system, enabling the development and execution of risk assessments identifying current and emerging risks linked to the organization’s business strategy and operational risk exposures.Your efforts may include establishing minimum expectations through policies, procedures, frameworks, and monitoring to help ensure compliance. Additionally, you will help ensure monitoring for compliance with banking laws, regulations, and better practices; provide business leadership and guidance to business owners and management; collaborate with other business units on new projects, products, and business integrations to help ensure risk management and regulatory issues are appropriately addressed; and build a great rapport with clients and fellow associates, treating others with respect and consideration regardless of their status or position.All associates are expected to maintain current knowledge and consistent compliance with regulations and bank policies and procedures related to the position, including but not limited to Bank Secrecy Act (BSA) and Office of Foreign Assets Control (OFAC) requirements.Below are the Minimum Requirements for Consideration:Bachelor’s degree in Information Security, Information Systems, or equivalent combination of education and related work experience.5+ years of relevant job experience in a risk-related field, bank regulatory agency, or consulting.2+ years of previous supervisory or management experience.5+ years of relevant job experience showing an understanding of technologies and appropriate risk management oversight.Strong communication, leadership, and interpersonal skills.Working knowledge of common information security management frameworks, such as ISO/IEC 27001 and NIST.Strategic problem-solving and decision-making abilities; adept at working under pressure.Innovative thinking and leadership with a keen ability to influence and motivate cross-functional, interdisciplinary teams.Extensive ability to analyze and interpret the threat landscape for business impact to the Bank and to develop appropriate and pragmatic approaches to manage associated risk.Security certifications: CISSP, CISA, or CISM, required.Desired Skills:
Ideal candidates for this position should possess some or all of the following skills:Advanced degree or certification related to the field.10+ years of relevant job experience in a risk-related field, bank regulatory agency, or consulting.5+ years of previous supervisory or management experience.Experience with RSA Archer Technologies or similar eGRC/ERM software.Strong knowledge of banking laws and regulations, including US State-privacy expectations.Prior CISO or Deputy CISO experience preferred.Working knowledge of data analytics and reporting tools, including FIS’ BIC.Ability to write policies and procedures for risk-related functions.Ability to work with other business unit leaders on committees and projects to address risk issues.Proficient in MS Office applications which include Outlook, Word, Excel, and PowerPoint.In addition to your financial compensation, we also offer a generous benefits package that includes insurance, 401k, an associate stock purchase program, paid time off, and associate banking perks. For more information about the benefits offered, click here.If this is what you believe in, then you’re definitely right for us. Consider making an investment in us, so that we may invest in you and your bright future.Thank you for your application!The Bank is committed to providing qualified applicants and associates reasonable accommodation, when necessary, to enable the individuals to complete the application process and/or perform the essential functions of the job. An applicant and/or associate requiring reasonable accommodation to perform any essential job function should contact Human Resources.The Bank's policy is to provide equal opportunity to all people without regard to race, color, religion, national origin, ancestry, marital status, veteran status, age, disability, pregnancy, genetic information, citizenship status, sex, sexual orientation, gender identity, or any other legally protected category. The Bank is proud to be a drug-free workplace.Selected candidate(s) for hire must complete the following prior to employment: a criminal history report, global screen, drug screen, employment credit report, and if applicable, a driving record. Applicants must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of hire.
#J-18808-Ljbffr