Job Description
Japanese major bank seeks an Information Security Officer.
*This role is for Vice President level candidates.
Location: NYC ï¼Manhattanï¼
Salary: $160K-$200K DOE
ï¼The salary will be determined based on your experience after the interview process.
Benefits: Health, Dental, PTO,401K, Holiday pay and others
Employment Type: Full-Time
Industry: Financial Services
*This role is located in New York City and will require a hybrid work schedule of at least 2 days in office per week.
Overview:
To assist the Head of the Department with the day-to-day management and operation of the department. To assume the role of Information Security Officer and take the lead on overseeing the timely completion of the departmentâs critical risk management projects. To provide direct assistance to the Head of the Department with regards to accomplishing the departmentâs goals and objectives. To manage, guide and mentor other staff members with the preparation and completion of their assigned tasks. To contribute significantly to the overall success of the department in all key risk management and cyber security areas.
Directly oversee completion of all critical projects, assist the HOD with implementing desired operational strategies and procedures. Recommend ways to improve efficiency, effectiveness, and productivity. Focus on proactive day-to-day operations. As ISO, assist with overseeing all information and cyber security matters.
Your Duties and Responsibilities:
âMaintain and improve the information risk framework with guidance from HOD, address regulatory requirements, residual information risks specific to NY Branch Operations.
âProvide Information Security subject-matter-expertise to senior management.
âWork with IRT and coordinate incident responses to cyber security events.
âKeep abreast of industry wide information risk issues that could potentially have an impact on Branch Operations.
âEstablish processes for communicating data classification guidelines and its governance.
âOversee employee information security awareness training.
âAssesses and evaluates critical risk management projects:
âAnnual Risk Assessment.
âSemi-annual Vulnerability Assessments.
âSpecial Risk Assessments done for a Particular Purpose
âTrend analysis of key risk management concepts and principles
âAttend the ISSRM and Branch Risk Management related meetings.
âPerforms key information risk governance related tasks as described below
ã¼Provides User Access Control Governance.
ã¼Monitors, analyzes and follows-up on Information Risk events/issues.
ã¼Reviews information risk and proactively advises as necessary on: IT Projects/Issues Management process, Change Management Process, significant changes to IT procedures, IT Asset Management Report, key IT Vendor Contracts, IT Disaster RecoveryãPlan/Process, Record Retention Process, any related audit findings, etc.
ã¼Establish and maintain Information Risk Key Risk Indicators (KRI).
ã¼Periodically updates IT resources on Information risk related practices.
ã¼Manages all information and cyber security policy and procedures manuals.
ã¼Assist with the management of all matters related to Information Security and Information Risk Management, including directing appropriate Information/Applications Risk Assessments.
Your Qualifications:
âCertification in Information Security (CISSP) required.
â8+ years of Information Security related experience, IT Audit experience, preferred.
âKnowledge of Information Security principles, terminologies, and technologies required.
âKnowledge of Information Risk Management framework and principles required.
âAbility to analyze and design information security monitoring procedures and activities preferred.
âDetailed Knowledge and expertise in Technology Risk Assessments and Risk Analysis required.
âExcellent written and verbal communication skills, required.
âGood computer skills in Microsoft Office Excel and Word required.
âStrong project management and people management skills. preferred
Job Tags
Full time, Work at office, 2 days per week,