The Chief Information Security Officer (CISO) will lead Choice Bank’s information security team tasked with protecting the digital assets and data of a growing traditional bank with substantial banking as a service (BaaS) exposure. The CISO provides strategic leadership for the Bank’s information security program and is responsible for information security governance, risk management, and information security program management. The CISO is responsible for oversight of people, processes, technology, and governance of the information security program.
Responsibilities
- Develop an information security strategy that is aligned to organizational priorities and objectives, facilitating buy-in of executive leadership and senior stakeholders
- Create quarterly, annual, and long-term cyber security and cyber risk management goals, articulate strategies, define metrics, and provide necessary updates to executive leadership and the Board of Directors. Update strategy as necessary to leverage new technologies and threat information
- Ensure alignment between business strategy and Information Security Management Program direction
- Provide leadership, direction, and guidance in assessing and evaluating information security risks and monitor compliance with security standards, appropriate policies, and relevant regulatory requirements
- Ensure risk-balanced security measures are integrated into Technology initiatives
- Lead the development and implementation of effective and reasonable policies and practices to secure protected and sensitive data and ensure information security and compliance with relevant legislation and legal interpretation, as well as security frameworks and best practices
- Identify and implement security controls to protect systems, operations, and information using standard frameworks like ISO27001
- Lead Security Incident Response and the ongoing and effective handling and remediation of security incidents.
- Supervise Security Operations Center (SOC) vendor
- Keep well-informed of developing cyber security threats, and proactively create strategies to understand and mitigate potential cyber security problems that might arise from acquisitions or other big business moves
- Lead security assessments and testing processes, including but not limited to penetration testing, vulnerability management, and secure software development
- Schedule periodic security, controls, and compliance audits
- Facilitate and/or conduct regular company-wide security awareness, education, and training
- Manage vulnerability management and remediation or mitigation of vulnerabilities in IT systems
- Review and approve security-related policies, controls, and cyber incident response planning
- Oversee identity and access management, and approve identity and access policies
- Point of contact for communicating bank security posture with external parties, including customers, regulators, and auditors
- Work collaboratively to ensure technology initiatives are on schedule, on budget and meet other tasks assigned by the Chief Technology Officer
Cultural Alignment
Choice is #PeopleFirst, banking second.
People don’t need just another bank. People need to be supported by a team of trusted partners who will get to know them and their business, understand their challenges, discover their dreams, and recognize the success in bringing people and banking together in our communities.
In contributing to our culture, Choice team members are guided by our core values.
- Embrace change and encourage innovation.
- Know when to ask for help and know when to offer help.
- Better the places we live.
- Work hard. Do the right thing. Have a little fun.
Our vision of Diversity at Choice is supported by our #PeopleFirst mission and our core values.
Being #PeopleFirst means that Choice is committed to focusing attention and resources towards creating an environment where everyone feels respected and valued and can do their best work.
Doing the right thing means encouraging employees to share their experiences and ideas, and to bring their whole authentic selves to work. Together, we can build an inclusive culture that seeks out, supports, and celebrates diverse voices. We can use our diversity to
fuel creativity and innovation and bring us closer to our customers and the communities we serve. Be welcome at Choice. We can see you here.