Position Summary:
A Community Bank in search of Information Security Officer (ISO). The ideal candidate is responsible for establishing and maintaining the enterprise vision, strategy, and program to ensure information assets and technologies are adequately protected. This role ensures compliance with regulatory requirements, manages cybersecurity risks, and drives security awareness and culture across the organization.
Key Responsibilities:
- Develop, implement, and maintain the bank’s Information Security Program in accordance with regulatory guidelines (e.g., FFIEC, GLBA, GDPR).
- Conduct regular risk assessments and vulnerability scans to identify and mitigate security threats.
- Ensure compliance with cybersecurity regulations and standards (e.g., NIST, ISO/IEC 27001).
- Lead the incident response process including detection, containment, eradication, recovery, and lessons learned.
- Create and manage information security policies, standards, and procedures.
- Monitor network, systems, and applications for security anomalies.
- Develop and deliver employee security awareness training programs.
- Collaborate with IT, compliance, audit, and legal teams to assess and address security risks.
- Coordinate with external auditors and regulators on security audits and examinations.
- Stay informed about evolving cybersecurity threats, vulnerabilities, and best practices.
- Report regularly to senior management and the board on the state of the bank’s cybersecurity posture.
Qualifications:
Education & Certifications:
- Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or related field.
- Professional certifications preferred (e.g., CISSP, CISM, CISA, CRISC, CEH).
Experience:
- 5+ years of experience in information security, preferably within the banking or financial services sector.
- Experience with regulatory compliance in financial institutions.
Skills:
- Strong understanding of cybersecurity frameworks and risk management methodologies.
- Familiarity with banking regulations, including GLBA, FFIEC guidance, and SOX.
- Excellent communication, leadership, and analytical skills.
- Ability to communicate technical information to non-technical stakeholders.
For more information or to apply for this position, reach out to wendy.hicks@gogpac or call 605-403-5157 for a confidential conversation
All qualified applicants will receive consideration without regard to race, age, color, sex (including pregnancy), religion, national origin, disability, sexual orientation, gender identity, marital status, military status, genetic information, or any other status protected by applicable laws or regulations.
GPAC (Growing People and Companies) is an award-winning search firm specializing in placing quality professionals within multiple industries across the United States since 1990. We are extremely competitive, client-focused and realize that our value is in our ability to deliver the right solutions at the right time.
