NBH Bank
Enterprise Risk - Information Security Manager
NBH Bank, Denver, Colorado, United States,
Enterprise Risk - Information Security Manager
Wednesday, July 3, 2024As the Information Security Manager, you will support the Enterprise Risk Director / Chief Information Security Officer in enhancing the Enterprise Risk Framework entailing bank-wide policies and procedures to assist in an enterprise-wide risk management culture. Your responsibilities will include:Assisting the business in establishing risk tolerances and appetites to support the organization’s risk model and risk-rating system.Enabling the development and execution of risk assessments identifying current and emerging risks linked to the organization’s business strategy and operational risk exposures.Establishing minimum expectations through policies, procedures, frameworks, and monitoring to help ensure compliance.Ensuring monitoring for compliance with banking laws, regulations, and better practices.Providing business leadership and guidance to business owners and management.Collaborating with other business units on new projects, products, and business integrations to help ensure risk management and regulatory issues are appropriately addressed.Building great rapport with clients and fellow associates, treating others with respect and consideration regardless of their status or position.All associates are expected to maintain current knowledge and consistent compliance with regulations and bank policies and procedures related to the position, including but not limited to Bank Secrecy Act (BSA) and Office of Foreign Assets Control (OFAC) requirements.Minimum Requirements for Consideration:Bachelor’s degree in Information Security, Information Systems, or equivalent combination of education and related work experience.5+ years of relevant job experience in risk-related field, bank regulatory agency or consulting.2+ years of previous supervisory or management experience.Strong communication, leadership, and interpersonal skills.Working knowledge of common information security management frameworks, such as ISO/IEC 27001, and NIST.Strategic problem solving and decision-making abilities; adept at working under pressure.Security certifications: CISSP, CISA or CISM, required.Desired Skills:Advanced degree or certification related to the field.10+ years of relevant job experience in risk-related field, bank regulatory agency or consulting.Experience with RSA Archer Technologies or similar eGRC/ERM software.Strong knowledge of banking laws and regulations, including US State-privacy expectations.Prior CISO or Deputy CISO experience preferred.Ability to write policies and procedures for risk-related functions.Proficient in MS Office applications including Outlook, Word, Excel, and PowerPoint.We are committed to our core value of meritocracy and supporting our associates in growing within their role. The office setting has traditional hours, and associates must be able to work at a rapid pace for long periods of time (typically no longer than 8 hours). When completing certain tasks, an associate may need to be able to grasp, push, pull, lift, bend, raise and hold hands and arms overhead. Travel may be required, typically no more than 25% of the time.In addition to your financial compensation, we also offer a generous benefits package that includes insurance, 401k, an associate stock purchase program, paid time off, and associate banking perks. For more information about the benefits offered, click here.If this aligns with your beliefs, consider making an investment in us, so we may invest in you and your bright future.Thank you for your application! The Bank is committed to providing qualified applicants and associates reasonable accommodation, when necessary, to enable individuals to complete the application process and/or perform the essential functions of the job. An applicant and/or associate requiring reasonable accommodation should contact Human Resources.The Bank's policy is to provide equal opportunity to all people without regard to any legally protected category. The Bank is proud to be a drug-free workplace.
#J-18808-Ljbffr
Wednesday, July 3, 2024As the Information Security Manager, you will support the Enterprise Risk Director / Chief Information Security Officer in enhancing the Enterprise Risk Framework entailing bank-wide policies and procedures to assist in an enterprise-wide risk management culture. Your responsibilities will include:Assisting the business in establishing risk tolerances and appetites to support the organization’s risk model and risk-rating system.Enabling the development and execution of risk assessments identifying current and emerging risks linked to the organization’s business strategy and operational risk exposures.Establishing minimum expectations through policies, procedures, frameworks, and monitoring to help ensure compliance.Ensuring monitoring for compliance with banking laws, regulations, and better practices.Providing business leadership and guidance to business owners and management.Collaborating with other business units on new projects, products, and business integrations to help ensure risk management and regulatory issues are appropriately addressed.Building great rapport with clients and fellow associates, treating others with respect and consideration regardless of their status or position.All associates are expected to maintain current knowledge and consistent compliance with regulations and bank policies and procedures related to the position, including but not limited to Bank Secrecy Act (BSA) and Office of Foreign Assets Control (OFAC) requirements.Minimum Requirements for Consideration:Bachelor’s degree in Information Security, Information Systems, or equivalent combination of education and related work experience.5+ years of relevant job experience in risk-related field, bank regulatory agency or consulting.2+ years of previous supervisory or management experience.Strong communication, leadership, and interpersonal skills.Working knowledge of common information security management frameworks, such as ISO/IEC 27001, and NIST.Strategic problem solving and decision-making abilities; adept at working under pressure.Security certifications: CISSP, CISA or CISM, required.Desired Skills:Advanced degree or certification related to the field.10+ years of relevant job experience in risk-related field, bank regulatory agency or consulting.Experience with RSA Archer Technologies or similar eGRC/ERM software.Strong knowledge of banking laws and regulations, including US State-privacy expectations.Prior CISO or Deputy CISO experience preferred.Ability to write policies and procedures for risk-related functions.Proficient in MS Office applications including Outlook, Word, Excel, and PowerPoint.We are committed to our core value of meritocracy and supporting our associates in growing within their role. The office setting has traditional hours, and associates must be able to work at a rapid pace for long periods of time (typically no longer than 8 hours). When completing certain tasks, an associate may need to be able to grasp, push, pull, lift, bend, raise and hold hands and arms overhead. Travel may be required, typically no more than 25% of the time.In addition to your financial compensation, we also offer a generous benefits package that includes insurance, 401k, an associate stock purchase program, paid time off, and associate banking perks. For more information about the benefits offered, click here.If this aligns with your beliefs, consider making an investment in us, so we may invest in you and your bright future.Thank you for your application! The Bank is committed to providing qualified applicants and associates reasonable accommodation, when necessary, to enable individuals to complete the application process and/or perform the essential functions of the job. An applicant and/or associate requiring reasonable accommodation should contact Human Resources.The Bank's policy is to provide equal opportunity to all people without regard to any legally protected category. The Bank is proud to be a drug-free workplace.
#J-18808-Ljbffr