Sunflower Bank, N.A.
Overview
Sunflower Bank, N.A. is seeking a highly motivated Chief Information Security Officer (CISO) to lead IT Risk and Governance. Location: Santa Fe, NM. Hybrid options available. Responsibilities
Establish and maintain the enterprise vision, strategy, and program to ensure information assets, technologies, and data are protected. Define and administer the strategies and policies associated with Information Security and IT Compliance. Ensure the adequacy of security measures to protect the company’s information systems to meet business needs and regulatory requirements. Provide oversight of the team performing Information Security Functions including log monitoring, threat analysis, vulnerability management, impact analysis, and remediation planning. Develop training and awareness to support information security and IT risk objectives at various levels throughout the company. Collaborate with IT Management to implement appropriate IT controls, processes, procedures, systems, and security technologies. Work with Enterprise Risk Management to align IT Risk and Governance with the overall risk program. Participate in tactical groups, committees, and teams to integrate IT Risk and Governance benefits into business objectives. Stay current on new IT risk practices, technologies, and regulatory changes and anticipate organizational changes. Support IT Response, Business Continuity, and Disaster Recovery processes for enterprise continuity; may fulfill responsibilities related to Emergency Management and Crisis Management. Perform periodic evaluations of data protection and GLBA compliance controls. Define policy related to physical security controls across the company. Uphold Fair and Responsible Banking practices and the Code of Ethics and Conduct guidelines. Understand and participate in the Bank’s Community Reinvestment Act program. Perform other duties as assigned. Education / Experience
Bachelor’s Degree preferred. 10 years of experience in a combination of risk management, information security, and IT jobs in a banking environment. Demonstrated supervisory experience, including managing professional leads and groups. CISA, CISSP, CISM, CRISC certifications or equivalent experience and willingness to obtain/expand certifications. In-depth understanding of Information Security, Business Continuity Planning, Disaster Recovery Planning, IT Regulatory Requirements, Risk Assessments, Access Management, Change/Configuration Management, Governance, Problem/Incident Management, Awareness and Training Programs. Working knowledge of IT Frameworks such as NIST, CIS, COBIT and ITIL. Knowledge of physical security controls and procedures. Strong verbal/written communication skills and ability to interface with internal clients, operations teams, IT, internal audit, regulators, and leadership. Self-starter with ability to manage multiple tasks/projects with attention to detail. Analytical problem-solving skills and the ability to assess non-compliance risks. Ability to motivate and manage employees to deliver quality results. Flexibility to work varied hours. Compensation & Benefits
Salary: Pay is dependent on knowledge, skills, abilities, experience, and location. 401(k) Plan with 6% Match Health/Dental/Vision Insurance Company-paid Life Insurance Tuition Reimbursement Fitness Reimbursement Paid Time Off Volunteer Leave Paid Holidays Plus many more employee perks & incentives About Sunflower Bank
Sunflower Bank, N.A. is an equal opportunity employer. Open until filled; early application encouraged. This vacancy may be used to fill similar positions within 90 days. California residents: privacy rights and data collection notices apply where applicable.
#J-18808-Ljbffr
Sunflower Bank, N.A. is seeking a highly motivated Chief Information Security Officer (CISO) to lead IT Risk and Governance. Location: Santa Fe, NM. Hybrid options available. Responsibilities
Establish and maintain the enterprise vision, strategy, and program to ensure information assets, technologies, and data are protected. Define and administer the strategies and policies associated with Information Security and IT Compliance. Ensure the adequacy of security measures to protect the company’s information systems to meet business needs and regulatory requirements. Provide oversight of the team performing Information Security Functions including log monitoring, threat analysis, vulnerability management, impact analysis, and remediation planning. Develop training and awareness to support information security and IT risk objectives at various levels throughout the company. Collaborate with IT Management to implement appropriate IT controls, processes, procedures, systems, and security technologies. Work with Enterprise Risk Management to align IT Risk and Governance with the overall risk program. Participate in tactical groups, committees, and teams to integrate IT Risk and Governance benefits into business objectives. Stay current on new IT risk practices, technologies, and regulatory changes and anticipate organizational changes. Support IT Response, Business Continuity, and Disaster Recovery processes for enterprise continuity; may fulfill responsibilities related to Emergency Management and Crisis Management. Perform periodic evaluations of data protection and GLBA compliance controls. Define policy related to physical security controls across the company. Uphold Fair and Responsible Banking practices and the Code of Ethics and Conduct guidelines. Understand and participate in the Bank’s Community Reinvestment Act program. Perform other duties as assigned. Education / Experience
Bachelor’s Degree preferred. 10 years of experience in a combination of risk management, information security, and IT jobs in a banking environment. Demonstrated supervisory experience, including managing professional leads and groups. CISA, CISSP, CISM, CRISC certifications or equivalent experience and willingness to obtain/expand certifications. In-depth understanding of Information Security, Business Continuity Planning, Disaster Recovery Planning, IT Regulatory Requirements, Risk Assessments, Access Management, Change/Configuration Management, Governance, Problem/Incident Management, Awareness and Training Programs. Working knowledge of IT Frameworks such as NIST, CIS, COBIT and ITIL. Knowledge of physical security controls and procedures. Strong verbal/written communication skills and ability to interface with internal clients, operations teams, IT, internal audit, regulators, and leadership. Self-starter with ability to manage multiple tasks/projects with attention to detail. Analytical problem-solving skills and the ability to assess non-compliance risks. Ability to motivate and manage employees to deliver quality results. Flexibility to work varied hours. Compensation & Benefits
Salary: Pay is dependent on knowledge, skills, abilities, experience, and location. 401(k) Plan with 6% Match Health/Dental/Vision Insurance Company-paid Life Insurance Tuition Reimbursement Fitness Reimbursement Paid Time Off Volunteer Leave Paid Holidays Plus many more employee perks & incentives About Sunflower Bank
Sunflower Bank, N.A. is an equal opportunity employer. Open until filled; early application encouraged. This vacancy may be used to fill similar positions within 90 days. California residents: privacy rights and data collection notices apply where applicable.
#J-18808-Ljbffr