View Job
This job posting is no longer active on ChicagoJobs.com and therefore cannot accept online applications.
This posting cannot receive an online application from your ChicagoJobs.com account. To apply, follow the employer's instructions within their job description.
First American Bank
Location: Elk Grove Village, IL 60007 Document ID: A8386-01B8 Posted on: 2014-11-1211/12/2014 Job Type: RegularJob Schedule:Full-time
2014-12-12
Information Security Officer
This new position at the Bank will be responsible for planning, implementing and maintaining the Bank's Information Security Program to ensure the confidentiality, integrity, and availability of information managed by the Bank. In addition, this position performs ongoing risk assessments, evaluation of appropriate security controls, security awareness, project and product development consultation, incident response program management and proactive compliance with industry regulations related to information security.
DUTIES & RESPONSIBILITIES:
Develop effective information security policies and standards, monitor compliance and work with management to ensure policies and standards are implemented effectively.
Ensure that organizational goals and objectives are supported by an information security program.
Develop and maintain information security risk assessments designed to evaluate inherent risks, controls, and residual risks.
Directly manage or oversee the information security reporting processes and prepare the Annual Information Security Report to the Board.
Directly manage or oversee the testing and monitoring of security controls, systems and procedures to assess adequacy and effectiveness.
Consult with IT and other business units during project and product development efforts to ensure that appropriate security controls are considered during and integrated with vendor selection and process development efforts.
Coordinate incident response planning and reporting for information security activities. Ensure linkage with BCP and Disaster Recovery plans.
Oversee the Compliance Department's maintenance of the Vendor Management Program.
Ensure access to all information systems is controlled, both internally and externally, commensurate with the level of potential risk.
Ensure all employees receive mandatory training in information security awareness and information security policies, guidelines and procedures.
Oversee the training process, including related educational materials and presentations, and ensure the understanding of their obligations and responsibilities within the objectives of the information security policy and program.
Direct involvement in regulatory IT examinations.
Chair and/or coordinate the activities of the Information Security Committee.
Report directly to the Board and IT Oversight Committee on matters concerning information security.
Monitor and keep informed about regulation, technology trends, industry standards and best practices related to information security risks, controls and technologies.
QUALIFICATIONS:
Bachelor's Degree in Computer Science, Management Information Systems, Business or related discipline.
Minimum 5-10 years Information Security or Cybercrime related experience required.
Information Security experience preferably in a banking environment.
Demonstrated understanding of current technology and regulatory trends affecting financial institution information security programs. Knowledge of laws, regulations and compliance frameworks such as GLBA, ISO, NIST, COBIT, SOX, HIPAA, and PCI DSS.
Excellent written and oral communications skills and the ability to create and present technical information to line of business leadership.
Strong analytical and problem-solving abilities.
Professional certifications such as Certified Information System Security Professional (CISSP), Certified Information Security Manager (CISM) or Certified Information Systems Auditor (CISA) preferred.
Membership and participation in one or more professional groups, such as ISACA, ISSA, required upon employment (membership will be sponsored by Bank).
Regular local travel to various Bank branch and department locations is required. Occasional non-local travel as needed.
7:30 a.m. to 5:00 p.m. Monday through Friday. Occasional weekends and after-hours as workload dictates.
First American Bank is an Equal Opportunity Employer (Minorities/Females/Disabled/Veterans).
DUTIES & RESPONSIBILITIES:
Develop effective information security policies and standards, monitor compliance and work with management to ensure policies and standards are implemented effectively.
Ensure that organizational goals and objectives are supported by an information security program.
Develop and maintain information security risk assessments designed to evaluate inherent risks, controls, and residual risks.
Directly manage or oversee the information security reporting processes and prepare the Annual Information Security Report to the Board.
Directly manage or oversee the testing and monitoring of security controls, systems and procedures to assess adequacy and effectiveness.
Consult with IT and other business units during project and product development efforts to ensure that appropriate security controls are considered during and integrated with vendor selection and process development efforts.
Coordinate incident response planning and reporting for information security activities. Ensure linkage with BCP and Disaster Recovery plans.
Oversee the Compliance Department's maintenance of the Vendor Management Program.
Ensure access to all information systems is controlled, both internally and externally, commensurate with the level of potential risk.
Ensure all employees receive mandatory training in information security awareness and information security policies, guidelines and procedures.
Oversee the training process, including related educational materials and presentations, and ensure the understanding of their obligations and responsibilities within the objectives of the information security policy and program.
Direct involvement in regulatory IT examinations.
Chair and/or coordinate the activities of the Information Security Committee.
Report directly to the Board and IT Oversight Committee on matters concerning information security.
Monitor and keep informed about regulation, technology trends, industry standards and best practices related to information security risks, controls and technologies.
QUALIFICATIONS:
Bachelor's Degree in Computer Science, Management Information Systems, Business or related discipline.
Minimum 5-10 years Information Security or Cybercrime related experience required.
Information Security experience preferably in a banking environment.
Demonstrated understanding of current technology and regulatory trends affecting financial institution information security programs. Knowledge of laws, regulations and compliance frameworks such as GLBA, ISO, NIST, COBIT, SOX, HIPAA, and PCI DSS.
Excellent written and oral communications skills and the ability to create and present technical information to line of business leadership.
Strong analytical and problem-solving abilities.
Professional certifications such as Certified Information System Security Professional (CISSP), Certified Information Security Manager (CISM) or Certified Information Systems Auditor (CISA) preferred.
Membership and participation in one or more professional groups, such as ISACA, ISSA, required upon employment (membership will be sponsored by Bank).
Regular local travel to various Bank branch and department locations is required. Occasional non-local travel as needed.
7:30 a.m. to 5:00 p.m. Monday through Friday. Occasional weekends and after-hours as workload dictates.
First American Bank is an Equal Opportunity Employer (Minorities/Females/Disabled/Veterans).
 |
|
|
|
|
|
|
|
|
|
|
|
Show Printable Job
© 2011