VP, Information Security

2 days ago

Raleigh, United States Local Government Federal Credit Union Full time
Job DescriptionJob Description
Description:

CIVIC CULTURE

Our organizations believe we can all do well by doing good. We value the contributions of diverse minds and prioritize the success and well-being of our employees. We also believe every person in our organization plays a role in supporting a healthy environment and helping to achieve our goal of prosperity for all. To this end, we recruit bright, energetic, and talented people to be members of our team. In return, we offer a dynamic workplace that presents opportunities for professional advancement and individual growth. We strive to always display integrity, self-awareness, courage, and respect for one another while continuing to seek opportunities to learn. We really believe that when our employees succeed, our community wins.


ABOUT THE POSITION

The VP, Information Security and Risk Governance will build, implement, and execute the Credit Union's Information Security Program. This role will be responsible for identifying, evaluating, and monitoring the overall security risk profile across the organization by assessing the effectiveness of information security controls and processes. This person will be defining and aligning information security governance and risk strategies for the Information Security Committee and ensuring exposures to cyber risks are identified and managed at an acceptable level. The VP, Information Security and Risk Governance will serve as the Information Security Officer for the organization, driving it to achieve its cyber security objectives through the proactive evaluation and enhancement of the organization's Information Security Program, activities and controls that prevent or mitigate the impact of compliance risk.


NORMAL DAY-TO-DAY WORK

  1. Collaborate with Legal, Risk, Compliance and key business leaders to identify information management and protection laws and regulations; implement actions to ensure compliance.
  2. Identify information security regulatory, legislative, and industry specific compliance requirements.
  3. Establish annual and long-term goals for the proper maintenance and security of information across the organization, defining risk and governance strategies, metrics, and reporting mechanisms.
  4. Develop strategies and action plans to drive security maturity improvement in areas where controls do not adequately mitigate risks.
  5. Develop executive and board-level communications as it relates to the organization's cybersecurity posture.
  6. Develop, document, and assess measures, metrics, and internal controls related to the maturity of the organization's information security program.
  7. Lead the development and implementation of effective and reasonable policies and practices to secure sensitive data and ensure security and compliance with contracts, regulatory requirements, and industry standards.
  8. Develop and manage the organization's cybersecurity risk management strategy, framework and approach.
  9. Integrate cyber security risk reporting and aggregate reporting into the organization's overall enterprise risk framework.
  10. Develop and maintain a Security Risk Management Framework (SRMF) per industry standards and applicability (e.g. NIST CSF), to include but not limited to, performing an annual Security Risk Assessment.
  11. Recommend programs to enhance the overall maturity of the organization's Information Security Program and tracking of its progress.
  12. Evaluate existing information security risk monitoring metrics and tools, develop metrics and insights where appropriate, and seek to enhance the maturity of information security analytics.
  13. Monitor compliance controls and catalog risk assessments utilized by the organization as it pertains to security risk, and then evaluate those assessments for best practices and gaps.
  14. Display integrity, self-awareness, courage, and respect for staff while ensuring learning agility and flexibility communicating and delegating effectively. Work effectively, collaboratively, and creatively in a team-oriented environment both internally and externally.
  15. Take ownership for actions, decisions, and results; openly accept feedback and demonstrate both the willingness and ability to improve.

JOB QUALIFICATIONS

Here are a few skills you MUST have to be qualified for this position.

  1. Minimum 10-12 years of progressive IT, networking, server administration, auditing, investigations, strategic risk management, and/or business/management consulting.
  2. Minimum 4-6 years of experience managing cross-functional, multi-business unit projects reflective of management or leadership role.
  3. Bachelor's degree in Information Security, Information Systems, Information Technology or Computer Science.
  4. Experience building and/or growing an IT Security practice with direct hands-on technology skillsets.
  5. Ability to function in a Consumer business office environment and utilize standard office equipment including but not limited to: PC, copier, telephone, etc.
  6. Ability to lift a minimum of 25 lbs. (file boxes, computer).
  7. Travel required on occasion.

Here are a few qualities we'd LIKE for you to have to make you more suited for this position.

  1. Certified Information Systems Security Professional (CISSP) or equivalent certification.


If you have questions about this position description, please feel welcome to ask. You can reach our HR Department at:

Civic Human Resources

3600 Wake Forest Road, Raleigh, NC 27609

careers@civicfcu.org

Requirements:




PI2e02567e1d27-25405-35880327

  • VP, Information Security

    1 month ago

    Raleigh, United States Local Government Federal Credit Union Full time

    Job DescriptionJob DescriptionDescription:CIVIC CULTUREOur organizations believe we can all do well by doing good. We value the contributions of diverse minds and prioritize the success and well-being of our employees. We also believe every person in our organization plays a role in supporting a healthy environment and helping to achieve our goal of...

  • VP, Information Security

    4 weeks ago

    Raleigh, United States Local Government Federal Credit Union Full time

    Job DescriptionJob DescriptionDescription:CIVIC CULTUREOur organizations believe we can all do well by doing good. We value the contributions of diverse minds and prioritize the success and well-being of our employees. We also believe every person in our organization plays a role in supporting a healthy environment and helping to achieve our goal of...

  • VP Administrative Assistant

    22 hours ago

    Raleigh, United States Shaw University Full time

    Reporting to the VP of assigned area/department, the Administrative Assistant will provide a high level of active administrative support. The Administrative Assistant relieves the VP of administrative type functions in order to increase the time the VP has available for primary level responsibilities. May handle a wide variety of situations and conflicts...

  • Information Security Director

    2 hours ago

    Raleigh, North Carolina, United States First Citizens Bank Full time

    Job Summary:This is a leadership position responsible for managing Information Security resources, processes, and actions within First Citizens Bank. The successful candidate will partner with peers and senior leadership to identify strategies that improve information security and align with enterprise goals.Key Responsibilities:Develop and implement...

  • Director of Information Security

    2 weeks ago

    Raleigh, United States Raleigh-Durham International Airport (RDU) Full time

    About Us: Welcome aboard the Raleigh-Durham Airport Authority team, where our work environment resembles a well-oiled aviation crew. As operators of the Raleigh-Durham International Airport, we connect central and eastern North Carolina to people and places that matter the most, serving 14.5 million passengers in 2023 and supporting over 85,000 local and...

  • Information Security Operations Analyst II

    2 months ago

    Raleigh, United States James River Management Company Full time

    Information Security Operations Analyst II (Information Technology) Raleigh, NC, USA * Richmond, VA, USA * Virtual Req #132Monday, August 12, 2024Come grow with James River Insurance! James River Insurance is an excess and surplus lines segment of James River Group Holdings, Ltd. and operates on an approved non-admitted basis in 50 states and Washington,...

  • Information Security Operations Analyst II

    2 months ago

    Raleigh, United States JR Group Full time

    Come grow with James River Insurance! James River Insurance is an excess and surplus lines segment of James River Group Holdings, Ltd. and operates on an approved non-admitted basis in 50 states and Washington, DC. Since 2003, James River has provided thousands of commercial property and casualty customers with innovative and creative solutions for...

  • Principal Information Security Manager

    1 month ago

    raleigh, United States FUJIFILM Diosynth Biotechnologies Full time

    About UsWe are a trusted CDMO partner for life. At FUJIFILM Diosynth Biotechnologies (FDB), we encourage you to discover what inspires you every day, to follow your passion and your power – what we call Genki. The work we do has the potential to transform people’s lives and to impact where it matters most.Each day is an opportunity to push the boundaries...

  • Principal Information Security Manager

    1 month ago

    raleigh, United States FUJIFILM Diosynth Biotechnologies Full time

    About UsWe are a trusted CDMO partner for life. At FUJIFILM Diosynth Biotechnologies (FDB), we encourage you to discover what inspires you every day, to follow your passion and your power – what we call Genki. The work we do has the potential to transform people’s lives and to impact where it matters most.Each day is an opportunity to push the boundaries...

  • Principal Information Security Manager

    1 month ago

    Raleigh, United States FUJIFILM Diosynth Biotechnologies Full time

    About UsWe are a trusted CDMO partner for life. At FUJIFILM Diosynth Biotechnologies (FDB), we encourage you to discover what inspires you every day, to follow your passion and your power – what we call Genki. The work we do has the potential to transform people’s lives and to impact where it matters most.Each day is an opportunity to push the boundaries...

  • Business Information Security Office Lead

    6 months ago

    Raleigh, United States Envestnet | Yodlee Full time

    The Business Information Security Office Lead (BISOL) is responsible for the security of business information, such as computer networks and data. The individual in this role will collaborate with executive leadership on a risk management program, advise on security best practices, oversee security training, and investigate security incidents. The BISOL...

  • Security Specialist

    2 months ago

    Raleigh, United States Security Industry Specialists, Inc. Full time $19

    About this position:                                                         Department: RetailLocation (City/State): Raleigh, NCEmployment Type: PT/FlexAbout us: Security Industry Specialists, Inc. (SIS) provides security solutions to some of the most recognized companies and brands in the world. We deliver services that...

  • Security Specialist

    2 months ago

    Raleigh, United States Security Industry Specialists Full time

    About this position: •Department: Retail •Location (City/State): Raleigh, NC •Employment Type: PT/Flex About us: Security Industry Specialists, Inc. (SIS) provides security solutions to some of the most recognized companies and brands in the world. We deliver services that consistently exceed those of our peers. We accomplish this through innovation,...

  • Security Specialist

    3 weeks ago

    Raleigh, United States Security Industry Specialists Full time

    About this position: •Department: Retail •Location (City/State): Raleigh, NC •Employment Type: PT/Flex About us: Security Industry Specialists, Inc. (SIS) provides security solutions to some of the most recognized companies and brands in the world. We deliver services that consistently exceed those of our peers. We accomplish this through innovation,...

  • VP of Product

    3 days ago

    Raleigh, United States Fortify Full time

    Fortify is an integrated payments and finance platform located in Raleigh, NC, catering to Equipment OEM's, B2B SaaS companies, and their clients. We are seeking a VP of Product & Engineering who wants to “own” a product and drive its development holistically, through significant collaboration with the CEO.  Must be a hands on software engineer who also...

  • VP, Card Operations

    1 month ago

    Raleigh, United States Local Government Federal Credit Union Full time

    Job DescriptionJob DescriptionDescription:CIVIC CULTUREOur organizations believe we can all do well by doing good. We value the contributions of diverse minds and prioritize the success and well-being of our employees. We also believe every person in our organization plays a role in supporting a healthy environment and helping to achieve our goal of...

  • VP, Card Operations

    4 weeks ago

    Raleigh, United States Local Government Federal Credit Union Full time

    Job DescriptionJob DescriptionDescription:CIVIC CULTUREOur organizations believe we can all do well by doing good. We value the contributions of diverse minds and prioritize the success and well-being of our employees. We also believe every person in our organization plays a role in supporting a healthy environment and helping to achieve our goal of...

  • VP, Card Operations

    2 days ago

    Raleigh, United States Local Government Federal Credit Union Full time

    Job DescriptionJob DescriptionDescription:CIVIC CULTUREOur organizations believe we can all do well by doing good. We value the contributions of diverse minds and prioritize the success and well-being of our employees. We also believe every person in our organization plays a role in supporting a healthy environment and helping to achieve our goal of...

  • VP, Global Regulatory

    1 month ago

    raleigh, United States Bandwidth Inc. Full time

    Who We Are:Bandwidth delivers world-class messaging, voice, and emergency service connectivity for the world’s biggest brands. We are the APIs and global network behind the platforms that the Global 2000’s use to power their internal communications, contact center platforms, apps, and software. We transform interactions for top-tier orgs—and we do it...

  • VP, Global Regulatory

    2 months ago

    raleigh, United States Bandwidth Inc. Full time

    Who We Are:Bandwidth delivers world-class messaging, voice, and emergency service connectivity for the world’s biggest brands. We are the APIs and global network behind the platforms that the Global 2000’s use to power their internal communications, contact center platforms, apps, and software. We transform interactions for top-tier orgs—and we do it...