Senior Corporate Security Manager - Governance, Ri
Job Opportunity at bizjobz LLC

Posted on Nov 13    855-BIZ-JOBZ (249-5629)

Location: Santa Maria, CA
Job Type: Full Time
Job ID: W4146408

The Company:

Our Client is part of a leading global financial services provider serving more than 10 million customers worldwide. Headquartered in The Netherlands, the parent firm operates in 48 countries, providing clients in every market with industry expertise, extensive experience, innovative resources - and deep local market and sector knowledge.  They have been in business for more than 110 years and have posted strong, consistent growth over the past century.   They are one of the world's largest banks with total assets of over $900 billion. It has been rated one of the world's safest banks by Global Finance magazine.  Our Client’s employees enjoy great benefits, great career advancement opportunities, a great community and a great culture
The Position:

Our Client has an exciting opportunity for a Corporate Security Manager - Governance, Risk, & Compliance located in their Santa Maria Operations Center. 
This position will be responsible for:
  • Management of all aspects of the Bank’s security in assigned areas, including but not limited to information systems security, operational security risk programs, compliance programs, and risk review.
  • Designs , develops, operates and manages comprehensive security architectures, strategies, policies and programs to assess, prioritize, and mitigate business risk with technology controls.
  • Acts as Deputy to the Corporate Security Director and can assume delegated responsibilities such as resolving security incidents, communication to our Client’s senior management and formulating and implementing strategic direction of the department.
  • Protecting our Client, customers and employees by mitigating and identifying technology threats.
  • Provides expertise for security technical and non-technical solutions; review and provide guidance enabling business system delivery in a manner that adheres to information security policy.
  • Oversight and management of standards related to user access to information resources and management of logical access risks.
  • Develops and enforces an integrated Technology Risk and Control Framework across the enterprise leveraging local regulations and aligning with Regional and Global initiatives.
  • Ensuring compliance with multiple federal and non-federal regulations and standards including, but not limited to FFIEC, GLBA, PCI-DSS, SOX etc.
  • Liaise with Internal Audit, Corporate Compliance, Office of General Counsel and Risk Management to remediate new and outstanding issues and track security-related issues in the electronic GRC system.
  • Provide leadership, guidance and direction over the company’s security incident management program.
  • Coordinate with IT, Legal, Human Resources, and other appropriate business units to gather risk level and compliance details, assess impact, and coordinate risk mitigation. Therefore, the candidate must have the ability to influence others across a matrix organizational structure.
  • Monitors regulatory developments and industry best practices and responds to such, as appropriate, to ensure the program’s effectiveness.
  • Understands implications of work; makes recommendations for solutions; and is responsible for the efficient implementation of revised processes in a timely manner.
The successful candidate will possess the following:
  • Bachelor's degree in Business Administration, Information Technology or related field required
  • 8-10 years related loss prevention, law enforcement, computer operations, network management, and/or security and compliance experience required depending upon area of assignment, highly preferred in a financial services/OCC regulated bank environment; OR equivalent combination of education and experience.
  • 10-15 years total combined experience.
  • Must be a US Citizen or possess a Green Card.
  • Previous management experience required.
  • Applicable Security Industry certification required, with requirement of completion within 1 year if not currently certified.
  • Preferred certifications:  CISSP, CISM, CRISC.
  • Must have a solid understanding and working experience in the secure design, configuration, and use of information technology, including network infrastructure components such as firewalls, switches, and router configuration.
  • Experience using vulnerability assessment tools and security monitoring tools required.
TwitterLinkedIn is owned, operated, and copyrighted by Career Marketplace (© 2002-2018, All Rights Reserved)