Thrivent
Chief Information Security & Privacy Officer - Thrivent Bank In Formation
Thrivent, Hartford, Connecticut, us, 06112
DUTIES & RESPONSIBILITIES
Develop, implement, and monitor a strategic, comprehensive enterprise information security and IT risk management program
Work directly with the business units to facilitate risk assessment and risk management processes including the information security and cybersecurity risk assessments
Develop and enhance an information security management framework
Understand and interact with related disciplines through committees to ensure the consistent application of policies and standards across all technology projects, systems, and services
Provide leadership to the enterprise's information security organization
Partner with business stakeholders across the company to raise awareness of risk management concerns
Assist with the overall business technology planning, providing a current knowledge and future vision of technology and systems
Develop and maintain information security and privacy policies and procedures in accordance with industry standards and applicable laws and regulations.
Work with cross-functional teams to ensure the privacy and security of all data collected, stored, or transmitted by the organization.
Manage and investigate security incidents and privacy breaches to ensure compliance and identify areas for improvement. Coordinate breach response activities.
Execute GLBA risk assessment annually
Stay up to date with industry best practices and changes in laws and regulations related to information security, cybersecurity, disaster recovery and privacy.
QUALIFICATIONS & SKILLS Required
Degree in business administration or a technology-related field required.
Professional security management certification such as Certified Information Systems Security Auditor (CISSP), Certified Information Security Auditor (CISA), Certified Information Systems Manager (CISM) or Certified in Risk and Information Systems Control (CRISC), Certification in privacy management or compliance preferred
Minimum of eight to twelve years of experience in a combination of risk management, information security and IT jobs
Knowledge of common information security management frameworks, such as ISO/IEC 27001, and NIST.
Excellent written and verbal communication skills and high level of personal integrity
Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams
Experience in Cybersecurity risk principles and frameworks
Specific experience in Agile (scaled) software development or other best in class development practices.
Experience with Cloud computing/Elastic computing across virtualized environments.
Experience with PCI DDS
Strong analytical and problem-solving skills
Pay Transparency Thrivent’s long-term growth depends on attracting, rewarding, and retaining people who are committed to helping others thrive with purpose. We accomplish this by offering a wide variety of market competitive compensation programs to attract, reward, and retain top talent. The applicable salary or hourly wage range for this full‑time role is $132,814.00 - $179,690.00 per year, which factors in various geographic regions. The base pay actually offered will be determined by a variety of factors including, but not limited to, location, relevant experience, skills, and knowledge, business needs, market demand, and other factors Thrivent deems important. Thrivent is unique in our commitment to helping people to be wise with money and live balanced and generous lives. That extends to our benefits. The following benefits may be offered: various bonuses (including, for example, annual or long‑term incentives); medical, dental, and vision insurance; health savings account; flexible spending account; 401k; pension; life and accidental death and dismemberment insurance; disability insurance; supplemental protection insurance; 20 days of Paid Time Off each year; Sick and Safe Time; 10 paid company holidays; Volunteer Time Off; paid parental leave; EAP; well‑being benefits, and other employee benefits. Eligibility for receipt of these benefits is subject to the applicable plan/policy documents. Thrivent’s plans/policies are subject to change at any time at Thrivent’s discretion.
Thrivent provides Equal Employment Opportunity (EEO) without regard to race, religion, color, sex, gender identity, sexual orientation, pregnancy, national origin, age, disability, marital status, citizenship status, military or veteran status, genetic information, or any other status protected by applicable local, state, or federal law. This policy applies to all employees and job applicants.
Thrivent is committed to providing reasonable accommodation to individuals with disabilities. If you need a reasonable accommodation, please let us know by sending an email to human.resources@thrivent.com or call 800-847-4836 and request Human Resources.
#J-18808-Ljbffr
Develop, implement, and monitor a strategic, comprehensive enterprise information security and IT risk management program
Work directly with the business units to facilitate risk assessment and risk management processes including the information security and cybersecurity risk assessments
Develop and enhance an information security management framework
Understand and interact with related disciplines through committees to ensure the consistent application of policies and standards across all technology projects, systems, and services
Provide leadership to the enterprise's information security organization
Partner with business stakeholders across the company to raise awareness of risk management concerns
Assist with the overall business technology planning, providing a current knowledge and future vision of technology and systems
Develop and maintain information security and privacy policies and procedures in accordance with industry standards and applicable laws and regulations.
Work with cross-functional teams to ensure the privacy and security of all data collected, stored, or transmitted by the organization.
Manage and investigate security incidents and privacy breaches to ensure compliance and identify areas for improvement. Coordinate breach response activities.
Execute GLBA risk assessment annually
Stay up to date with industry best practices and changes in laws and regulations related to information security, cybersecurity, disaster recovery and privacy.
QUALIFICATIONS & SKILLS Required
Degree in business administration or a technology-related field required.
Professional security management certification such as Certified Information Systems Security Auditor (CISSP), Certified Information Security Auditor (CISA), Certified Information Systems Manager (CISM) or Certified in Risk and Information Systems Control (CRISC), Certification in privacy management or compliance preferred
Minimum of eight to twelve years of experience in a combination of risk management, information security and IT jobs
Knowledge of common information security management frameworks, such as ISO/IEC 27001, and NIST.
Excellent written and verbal communication skills and high level of personal integrity
Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams
Experience in Cybersecurity risk principles and frameworks
Specific experience in Agile (scaled) software development or other best in class development practices.
Experience with Cloud computing/Elastic computing across virtualized environments.
Experience with PCI DDS
Strong analytical and problem-solving skills
Pay Transparency Thrivent’s long-term growth depends on attracting, rewarding, and retaining people who are committed to helping others thrive with purpose. We accomplish this by offering a wide variety of market competitive compensation programs to attract, reward, and retain top talent. The applicable salary or hourly wage range for this full‑time role is $132,814.00 - $179,690.00 per year, which factors in various geographic regions. The base pay actually offered will be determined by a variety of factors including, but not limited to, location, relevant experience, skills, and knowledge, business needs, market demand, and other factors Thrivent deems important. Thrivent is unique in our commitment to helping people to be wise with money and live balanced and generous lives. That extends to our benefits. The following benefits may be offered: various bonuses (including, for example, annual or long‑term incentives); medical, dental, and vision insurance; health savings account; flexible spending account; 401k; pension; life and accidental death and dismemberment insurance; disability insurance; supplemental protection insurance; 20 days of Paid Time Off each year; Sick and Safe Time; 10 paid company holidays; Volunteer Time Off; paid parental leave; EAP; well‑being benefits, and other employee benefits. Eligibility for receipt of these benefits is subject to the applicable plan/policy documents. Thrivent’s plans/policies are subject to change at any time at Thrivent’s discretion.
Thrivent provides Equal Employment Opportunity (EEO) without regard to race, religion, color, sex, gender identity, sexual orientation, pregnancy, national origin, age, disability, marital status, citizenship status, military or veteran status, genetic information, or any other status protected by applicable local, state, or federal law. This policy applies to all employees and job applicants.
Thrivent is committed to providing reasonable accommodation to individuals with disabilities. If you need a reasonable accommodation, please let us know by sending an email to human.resources@thrivent.com or call 800-847-4836 and request Human Resources.
#J-18808-Ljbffr