Sunflower Financial Inc.
Chief Information Security Officer
Sunflower Financial Inc., Spokane, Washington, United States, 99254
Overview
Chief Information Security Officer Location:
Spokane, WA Hybrid options available. MUST HAVE:
10 years of experience in a combination of risk management, information security, and IT jobs in a banking environment. MUST HAVE:
In-depth understanding of Information Security, Business Continuity Planning, Disaster Recovery Planning, IT Regulatory Requirements, Risk Assessments, Access Management, Change/Configuration Management, Governance, Problem/Incident Management, Awareness and Training Programs. MUST HAVE:
CISA, CISSP, CISM, CRISC certifications or equivalent experience and willingness to obtain and expand certifications. MUST HAVE:
Demonstrated supervisory experience; including managing professional leads and groups. Salary:
$200k-$245k depending on knowledge, skills, abilities, experience, and location. Employer:
Sunflower Bank, N.A. is looking for a highly motivated individual to fill the position of a full-time Chief Information Security Officer at our Spokane, WA location. Primary Responsibilities
Establish and maintain the enterprise vision, strategy, and program to ensure information assets, technologies, and data are protected. Define and administer the strategies and polices associated with Information Security and IT Compliance. Ensure the adequacy of security measures to protect the companys information systems to meet business needs and satisfy regulatory requirements and guidelines. Provide oversight of the team performing Information Security Functions including log monitoring, threat analysis, vulnerability management, impact analysis, and recommended action or remediation plans. Develop training and awareness to support information security and IT Risk objectives at various levels throughout the company. Work closely with IT Management to ensure implementation of appropriate IT controls, processes, procedures, systems, and security technologies. Work closely with Enterprise Risk Management to align IT Risk and Governance with the overall company risk program. Participate in tactical groups, committees, teams, and other meetings as needed to facilitate the integration and recognition of IT Risk and Governance Benefits into business company objectives. Stay current on new developments in IT risk practices, technologies, and regulatory changes and anticipate organizational modifications. May be required to fulfill responsibilities specific to Response and Recovery in support of established Emergency Management, Emergency Response, Business Recovery, and Crisis Management functions. Responsible for supporting IT Response, Business Continuity, and Disaster Recovery processes as they pertain to the continuity of operations for the enterprise. Responsible for performing periodic evaluations or assessments to ensure controls specific to data protection and GLBA compliance are effective and efficient. Responsible for creating and defining policy related to the physical security controls implemented across the company. Perform the job in accordance with applicable industry laws and regulations as well as the policies and procedures established by the company. Responsible for upholding Fair and Responsible Banking practices and Code of Ethics and Conduct guidelines. Understand and participate in the Banks Community Reinvestment Act program. Perform other duties as assigned. Education / Experience
Bachelors Degree preferred. 10 years of experience in a combination of risk management, information security, and IT jobs in a banking environment. Demonstrated supervisory experience; including managing professional leads and groups. CISA, CISSP, CISM, CRISC certifications or equivalent experience and willingness to obtain and expand certifications. In-depth understanding of Information Security, Business Continuity Planning, Disaster Recovery Planning, IT Regulatory Requirements, Risk Assessments, Access Management, Change/Configuration Management, Governance, Problem/Incident Management, Awareness and Training Programs. Working knowledge of IT Frameworks such as NIST, CIS, COBIT and ITIL. Knowledge and/or experience with physical security controls and procedures. Strong verbal/written communication skills and ability to interface with internal stakeholders, regulators, and senior management. Self-starter who can manage multiple tasks/projects with attention to detail. Analytical problem-solving skills and risk assessment capabilities. Ability to motivate and manage employees to produce quality results. Must be able to work flexible hours. Benefits
Sunflower Bank Benefits include: 401(k) Plan with 6% Match, Health/Dental/Vision Insurance, Company-paid Life Insurance, Tuition Reimbursement, Fitness Reimbursement, Paid Time Off, Volunteer Leave, Paid Holidays, and more. Application
If you qualify, apply online at www.sunflowerbank.com/careers. EOE/AA: Minorities/Females/Disabled/Vets Open until filled; early application encouraged. This vacancy announcement may be used to fill similar positions within 90 days. #J-18808-Ljbffr
Chief Information Security Officer Location:
Spokane, WA Hybrid options available. MUST HAVE:
10 years of experience in a combination of risk management, information security, and IT jobs in a banking environment. MUST HAVE:
In-depth understanding of Information Security, Business Continuity Planning, Disaster Recovery Planning, IT Regulatory Requirements, Risk Assessments, Access Management, Change/Configuration Management, Governance, Problem/Incident Management, Awareness and Training Programs. MUST HAVE:
CISA, CISSP, CISM, CRISC certifications or equivalent experience and willingness to obtain and expand certifications. MUST HAVE:
Demonstrated supervisory experience; including managing professional leads and groups. Salary:
$200k-$245k depending on knowledge, skills, abilities, experience, and location. Employer:
Sunflower Bank, N.A. is looking for a highly motivated individual to fill the position of a full-time Chief Information Security Officer at our Spokane, WA location. Primary Responsibilities
Establish and maintain the enterprise vision, strategy, and program to ensure information assets, technologies, and data are protected. Define and administer the strategies and polices associated with Information Security and IT Compliance. Ensure the adequacy of security measures to protect the companys information systems to meet business needs and satisfy regulatory requirements and guidelines. Provide oversight of the team performing Information Security Functions including log monitoring, threat analysis, vulnerability management, impact analysis, and recommended action or remediation plans. Develop training and awareness to support information security and IT Risk objectives at various levels throughout the company. Work closely with IT Management to ensure implementation of appropriate IT controls, processes, procedures, systems, and security technologies. Work closely with Enterprise Risk Management to align IT Risk and Governance with the overall company risk program. Participate in tactical groups, committees, teams, and other meetings as needed to facilitate the integration and recognition of IT Risk and Governance Benefits into business company objectives. Stay current on new developments in IT risk practices, technologies, and regulatory changes and anticipate organizational modifications. May be required to fulfill responsibilities specific to Response and Recovery in support of established Emergency Management, Emergency Response, Business Recovery, and Crisis Management functions. Responsible for supporting IT Response, Business Continuity, and Disaster Recovery processes as they pertain to the continuity of operations for the enterprise. Responsible for performing periodic evaluations or assessments to ensure controls specific to data protection and GLBA compliance are effective and efficient. Responsible for creating and defining policy related to the physical security controls implemented across the company. Perform the job in accordance with applicable industry laws and regulations as well as the policies and procedures established by the company. Responsible for upholding Fair and Responsible Banking practices and Code of Ethics and Conduct guidelines. Understand and participate in the Banks Community Reinvestment Act program. Perform other duties as assigned. Education / Experience
Bachelors Degree preferred. 10 years of experience in a combination of risk management, information security, and IT jobs in a banking environment. Demonstrated supervisory experience; including managing professional leads and groups. CISA, CISSP, CISM, CRISC certifications or equivalent experience and willingness to obtain and expand certifications. In-depth understanding of Information Security, Business Continuity Planning, Disaster Recovery Planning, IT Regulatory Requirements, Risk Assessments, Access Management, Change/Configuration Management, Governance, Problem/Incident Management, Awareness and Training Programs. Working knowledge of IT Frameworks such as NIST, CIS, COBIT and ITIL. Knowledge and/or experience with physical security controls and procedures. Strong verbal/written communication skills and ability to interface with internal stakeholders, regulators, and senior management. Self-starter who can manage multiple tasks/projects with attention to detail. Analytical problem-solving skills and risk assessment capabilities. Ability to motivate and manage employees to produce quality results. Must be able to work flexible hours. Benefits
Sunflower Bank Benefits include: 401(k) Plan with 6% Match, Health/Dental/Vision Insurance, Company-paid Life Insurance, Tuition Reimbursement, Fitness Reimbursement, Paid Time Off, Volunteer Leave, Paid Holidays, and more. Application
If you qualify, apply online at www.sunflowerbank.com/careers. EOE/AA: Minorities/Females/Disabled/Vets Open until filled; early application encouraged. This vacancy announcement may be used to fill similar positions within 90 days. #J-18808-Ljbffr