Job Description

Director Cyber Security

If you would enjoy working in a dynamic environment and are looking for an opportunity to become part of a stellar team of professionals dedicated to service, we invite you to apply online today. This position offers a flexible hybrid work arrangement, allowing employees to balance in-office collaboration with the benefits of remote work. We provide the necessary tools and technology to ensure seamless productivity, whether you're working from home or the office.

The Director Cyber Security fosters a culture of continuous improvement and sets the course for technology success at the Credit Union. Provides oversight along with strategic and tactical leadership for the security and reliability of enterprise technology, as well as driving efficient and effective processes to evolve simple operations. Manages and oversees the Cyber Security Standards and Practices including self-audits, along with internal and external audits, and regulatory exams. Provides awareness and guidance to the Incident Management Team. Directs network and cyber security operations related to identity and access management, security patching, vulnerability management, risk mitigation strategies, and security research and response. Ensures all Access Management controls are defined and followed for employee access to Credit Union technology systems. Identifies and addresses accidental or intentional exposure, destruction, disclosure, modification, or interruption of data or information that may cause serious financial and/or information risks. Oversees monitoring of network infrastructure devices as well as the connectivity and flow of data internally or between internal and external environments. Responsible for the protection of the Credit Union's assets and information which are processed by or stored in Credit Union computerized information systems. Performs and evaluates cyber risk and promotes cyber security awareness within the organization. Builds strong and productive relationships with all business leaders, ensuring that Enterprise Technology is positioned as a business enabler and trusted partner. Establishes and maintains a formal governance, methodology and framework for effective delivery of enterprise technology across the Credit Union. Accountable for continuously evolving the enterprise technology support and delivery capabilities and execution. Accountable for the day-to-day security of the hosted technology systems, applications, network and devices. Accountable for the ongoing support, release management, transition, integration, and conversion efforts to align strategy, business, and technology. Accountable for ensuring that delivery of technology security changes tied to departmental or Enterprise Strategic Portfolio projects are within budget, business outcome-driven, agile, and leverage enterprise change management practices to ensure sustainable success. Accountable for ensuring recognized industry standards, processes, practices, and templates are defined and followed. Creates cyber security roadmap and facilitates cross-functional coordination to drive change on time and within budget. Collaborates with leaders and stakeholders from the business units to ensure proper coordination and execution of activities related to the delivery of cyber security practices. Engages with and conducts service reviews with management and stakeholders to validate and assess service delivery, execute change, and reprioritize to meet business needs as required. Has direct management responsibility for team of engineers, administrators, and analyst. In-person work will fluctuate with demand. At times, work may require in-person presence. The Director Cyber Security reports to the Vice President, Technology & Cyber Security Operations and has direct management duties of multiple team members.

The essential duties and responsibilities of this position include the following. Other duties may be assigned. (Remote Capable Yes/No/Partial)

• Work collaboratively across the organization, sharing knowledge and building trust, demonstrating leadership through effective mentoring, and team building.
• Must value and support difference in others, contributing to an inclusive work environment. Demonstrate the ability and willingness to communicate effectively with people of diverse backgrounds and experience to create a collaborative, collegial, and caring environment.
• Provide oversight and guidance on continuity of operations.
• Provide consistent and effective dashboards, reviews, scorecards, reports, and presentations for periodic executive communications.
• Identify, track, and help resolve dependencies and conflicts, and ensures timely escalation of, systemic risks and issues.
• Perform regular health checks and organizational maturity assessments and lead reviews of cyber security technology functionality and services to support such.
• Partner with senior management to define the cyber security roadmap and ensures alignment with overall corporate strategy.
• Engage with and conducts portfolio reviews with PMO leadership to validate and assess project portfolio, execute change, and reprioritize to meet business needs as required.
• Provide escalation on all relationships between staff and all enterprise technology solutions and services.
• Work with all staff to better understand technologies available to improve experience and productivity.
• Work with other leaders to establish agreed upon change definitions and timelines.

Solutions Strategy (Yes)

• Assist in the alignment of strategy, business, and technology to ensure a holistic enterprise architecture is business outcome-driven.
• Research and explore innovative ways to better leverage technology.
• Capacity and Budget Planning for enterprise strategic projects and departmental projects.
• Create and update departmental plans and goals.
• Create and update budget plan.
• Create and update staff development and succession plans.
• Create and update cyber security roadmap.

Solutions Development (Yes)

• Develop efficient and repeatable processes to execute technology conversions related to mergers or acquisitions.
• Develop efficient and repeatable processes to administer, monitor, and support asset inventory and overall security hygiene of hosted and integrated technology systems.
• Develop efficient and repeatable processes to govern vulnerability management and risk assessments.
• Develop efficient and repeatable processed to deliver, administer, monitor, and support change controls.
• Develop efficient and repeatable processes to deliver, administer, monitor, and support identity and access management.
• Develop efficient and repeatable processes to deliver, administer and support Technology Recovery Plans.
• Develop efficient and repeatable processes to lead the transition of new technology solutions from design to development to delivery to support and advance the Credit Union's day-to-day operations and Strategic Plan.
• Develop capabilities to ensures all enterprise strategic project efforts are prioritized and successfully executed to advance the Strategic Plan.
• Develop and coordinates resource capacity balance between daily operations and enterprise strategic project execution.

Solutions Delivery (Yes)

• Deliver simple, secure, and reliable technology across the enterprise.
• Deliver operational levels of 99% for all hosted enterprise technology networks and cyber security systems.
• Deliver 24/7 support for integrated technology systems hosted by service providers.
• Deliver successful operations for identity and access management.
• Deliver daily operations for security incident and event monitoring and response.
• Deliver successful operations necessary to maintain holistic Safety and Soundness.
• Deliver routine and planned administrative changes to technology systems.
• Deliver successful completion of agreed upon enterprise strategic project deliverables.
• Deliver successful release management communication, validation, and execution.
• Deliver implementation and integration of new technology systems or integrations.
• Deliver all services requests, changes, and issues along with the actions taken through logged ticket(s).
• Deliver well written and concise communication to the organization quickly and efficiently.
• Deliver processes to eliminate complexity and ambiguity to ensure clarity and establish goals and expectations for engagement.

Solutions Management (Partial)

• Define, plan, execute and manage budget for successful cyber security delivery.
• Always adhere and uphold Information Security Standards and Practices.
• Define, plan, execute and manage cyber security and networking change controls to include keeping up with application releases, security changes, OS levels, and physical infrastructure capacity.
• Ensure technology systems are available, functional, and operational.
• Partner with Risk Management on security related audits and examinations.
• Govern and manage network and security layers, devices, and systems.
• Govern and manage access records, inventory, and documentation for all users.
• Govern and manage Information Security Standards & Practices and User Guidelines.
• Partner with Risk Management on security related training and awareness.
• Govern and manage security incident response, reporting and mitigation including written and actual response to vulnerability/risk assessments and penetration testing.
• Mitigate of all vulnerabilities and risks and ensure status is updated weekly.
• Govern and manage network infrastructure to align with business continuity and technology recovery plans.
• Mitigate all networking disruptions. As needed, this may include dispatching to remote locations.
• Ensure enterprise technology recovery plans and business continuity operational plans adhere to information security standards and practices and do not present a weakness in the overall security posture when tested or executed.
• Manage and align available resources, processes, and technologies to meet service levels and delivery of enterprise strategic

Job Tags

Similar Jobs