Job Information
Amalgamated Bank Chief Information Security Officer in New York, New York
Amalgamated Bank seeks a dedicated Chief Information Security Officer to be r esponsible for designing and implementing the Bank’s Information Security program while protecting the business from cyber security threats. This is a hybrid role reporting to our NYC headquarters.
Essential Job Functions:
Develop and maintain an Enterprise Information Security Program
Design a critical response process for Cyber Security incidents
Identify, report and control Cyber Security incidents
Manage and train Information Security staff and develop and deliver Information Security training to the Bank’s employees
Continuously monitor threats to the Bank’s operating environment
Approve and administer identity access policies
Maintain a current understanding of the IT and Cyber Security threat landscape for the industry
Ensure Bank compliance with relevant Information Security laws and applicable regulations
Lead, and assess the results of periodic security tests, including internal and external penetration testing and phishing
Schedule table-top exercises for Crisis Team and senior management and report findings to management, including implementation of recommendations
Review and approve Information Security policies, procedures and controls
Ensure that they are kept current and are communicated to staff/consultants
Ensure staff/vendor compliance with the Bank’s security policies and procedures
Manage a team of employees, contractors and vendors involved in Information Security
Brief the Executive Team on status and risks, overall strategy and necessary budget
Communicate best practices and risks to the Bank
Perform a risk assessment of the Bank’s vulnerabilities in the Cybersecurity landscape and develop the Bank’s risk appetite for Information Security
Develop Key Risk Indicators (KRIs) and dashboard metrics reporting to both the Management Team and the Board of Directors
Establish strong working relationships with the Heads of IT and business lines
Develop and present quarterly reports to the Board of Directors.
Knowledge, Skills and Experience Requirements:
Master’s degree or equivalent experience
Minimum of ten (10) years of experience, at least five (5) years focused on managing information security in a complex, matrixed environment
Extensive experience in regulated industries, especially financial services; banking experience is preferred
Proven ability to create and maintain enterprise-level information security programs
Motivated individual with strong analytical, problem solving and root cause analysis skills
Ability to work on multiple, time-critical projects simultaneously
Knowledge of Data Privacy Laws
Working knowledge of information security engineering concepts and principles
Familiarity with DFS 500 and similar regulations
Experience working with external regulators, including NY DFS and FDIC
Excellent verbal and written communications, including presentation of complex data in easily, understood ways
Ability to confidently interact at multiple levels in the organization and lead cross-departmental team projects
Experience presenting to senior levels, including Board of Directors
CISSP, CISA or CISM designations preferred
Our job titles may span more than one career level. The starting base salary for this role is between $240,000.00 – $270,000.00. The actual base pay is dependent upon many factors, such as: training, transferrable skills, work experience, business needs and market demands. The base pay range is subject to change and may be modified in the future.
Amalgamated Bank is an Equal Opportunity and Affirmative Action Employer, Minorities / Females / Individuals with Disability / Veterans . (https://www.eeoc.gov/sites/default/files/migrated_files/employers/poster_screen_reader_optimized.pdf) AmeriCorps, Peace Corps and other national service alumni are encouraged to apply. View our Pay Transparency Statement (https://www.amalgamatedbank.com/sites/default/files/pay-transparency.pdf) . Submission of a resume or any information regarding your qualifications does not constitute a promise or offer of employment. At Amalgamated Bank, we consider an applicant to be someone who has interviewed at least once, in person, with the hiring manager. Amalgamated Bank does not sponsor applicants for work visas.