HiringCafe
Posted 2w ago

Chief Information Security Officer

@ Security First Bank
View All Jobs
Rapid City, South Dakota, United States
OnsiteFull Time
Responsibilities:lead security, coordinate ISP, develop training
Requirements Summary:Bachelor’s degree; 10-15 years IT/banking experience; strong leadership and security management skills.
Save
Mark Applied
Hide Job
Report & Hide
Job Description

Join our information technology team! Apply today. Grow with us at Security First Bank and find your future in banking. We treat you right.



We are looking for friendly smiling faces to join our information technology team. To be considered, please complete and sign the online application form. If you haven’t received a link to sign the application, please check your inbox for an email containing a clickable link to create a password and access your account.



For additional information or paper application accommodation, please stop by 1919 Hope Court, Suite100, Rapid City, SD or call 605-718-8060.



Role:



The Chief Information Security Officer is responsible for all aspects of Information Security, including security strategy, security policies, security initiatives, education in security awareness and development of security initiatives.



Essential Functions & Responsibilities:




  • Responsible for the organization’s Information Security programs and policies, including Cybersecurity (develop roadmap based on FFIEC assessment), threat and vulnerability management, employee awareness and training, and Physical Security Program.  

  • Coordinate the maintenance of the Information Security Program (ISP). 

  • Preparation of those regular reports required by the program. 

  • Develop and coordinate training of banks employees for ISP

  • Develop and implement an ongoing testing program for the ISP, testing procedures and policy.   

  • Maintain a Vendor Management Due Diligence Program that includes tracking of service contracts and annual reviews of Significant Vendors.  

  • Maintain a Business Continuity, Disaster Recovery, and Pandemic Preparedness program for the bank.  In conjunction with the IT/Network Manager develop and conduct annual testing and training exercises.  

  • Maintain the bank’s Incident Response Plan, including training of bank employees.  

  • Interact with management to set policies and procedures for governance, security, and risk framework for Information Technology platforms and data protection.  

  • Research and monitor regulatory changes and stay abreast of effective industry best practices.  

  • Develop Global IT General Controls: accountable for IT change management, provisioning and access control as well as interfacing with internal/external auditors and regulators (on all IT matters).

  • Develop and maintain an Information Security Strategic Plan (1 to 3 years) and assist in budgeting and execution based on strategy and determine Information Security outsourcing needs.  

  • Conduct independent testing and vulnerability scans to IT applications to identify possible threats and weaknesses.  Report findings and monitor management’s responses and timeliness of corrective actions.  

  • Develop and implement an ongoing Risk Assessment program targeting information security and privacy matters.  

  • Monitor the Bank’s compliance with the Bank Protection Act.  Establish and implement guidelines for the Bank’s Physical Security Program in partnership with the Security Officer.  

  • Conduct quarterly Information Security risk assessments for presentation the IT Steering Committee as well as the Board Risk Committee.  

  • Participate in bank’s management issues through standing and ad hoc committees.

  • Performs other job-related duties as assigned.



Performance Management: 




  • Ensure compliance in all processes with established bank policies and procedures.

  • Maintain department budget that is well documented and consistent with the strategic plan of the bank.

  • Stay informed of current trends affecting the financial services industry and contribute to implementing action plans to position the bank for the future.

  • Establish and maintain an effective relationship with user departments, senior management and vendors.

  • Develop recommendations for cost efficiencies and enhancements to products, pricing and processes by monitoring trends in technical and financial industry operations.