Information Security Officer

Company: Avidia Bank
Location: Westborough
Posted on: August 5, 2022

Job Description:

Avidia BankEqual Employment Opportunity/M/F/disability/protected veteran statusDescription:
Position Overview:The Information Security Officer will work to meet the bank's information security strategic goals. The Information Security Officer is responsible for planning, directing and coordinating the bank's information security policies, setting procedures and guidelines to ensure that all information systems are secure and safeguarded throughout the bank and are in compliance with privacy and information security laws and regulations applicable to financial institutions. Primary Responsibilities:Perform any functions necessary, within scope of authority and expertise, to provide the highest level of service and responsiveness to customers: Responsible for development and execution of the bank's strategic plan related to information security. Works closely with the information technology group to align strategic goals.Maintain and review Information Security policies and procedures.Update the Information Security Program based on regulatory changes and feedback from management.Lead and develop other information security staff members within the Information Security department.Review security logs/reports to identify trends, investigate anomalies.Maintain a bank-wide data loss prevention program to protect customer and bank confidential information.Coordinate the regular review of employee access rights to verify alignment with job responsibilities.Analyze vulnerability scans of internal and external devices to identify vulnerabilities and provide guidance to Information Technology for remedial actions.Collaborating with Information Technology, analyzes the integrity of changes made to the Bank's network through the Patch Management program, Change Management Program, user access changes, and system modification forms.Develop information security training for employees and Board of Directors.Coordinate the Bank's responses to potential cybersecurity breaches, data breaches, and financial crime responses.Completes or participates in the preparation of risk assessments that are performed for new critical technologies, applications, or devices that are implemented, revised, and/or installed.Collaborate with Information Technology to select appropriate technology vendors that support regulatory and best practice requirements.Provide guidance on projects, new implementations, or upgrades in compliance with the Bank's Information Security Program.Coordinate the Bank's Business Continuity Program meetings and testing, working closely with business lines to ensure business impact analyses are comprehensive. Support audits by internal audit and regulators. Coordinates management's responses to information security related audit or examination findings and maintains the Bank's acceptable risk matrix.Oversee the Bank's Incident Response Policy and Planning.Determines acceptable risk levels for the Information Security and ensures the IT environments are adequately protected from potential risks and threats.Participate in development and implementation of the appropriate and effective controls to mitigate identified threats and risks.Other Responsibilities:Perform related and unrelated duties as may be required.

Requirements:
Bachelor's degree in computer science, information systems or equivalent work experience is required.Industry standard certification in information security, such as CISSP, CISM, CRISC, or acquisition in one year.Five years of experience supporting security architectures and applying security best practices across enterprise infrastructure.Must possess excellent analytical, organizational and documentation skills.Must be a persuasive leader who can serve as an effective member of the management team and who is able to communicate security-related concepts to a broad range of technical and non-technical staff. Practical experience with vulnerability scanning and auditing tools.Knowledge of DevOps application security.Experience with cloud security best practices.Avidia Bank is an Equal Opportunity Employer/Veterans/DisabledMember FDIC/DIFPM21PI187639329

Keywords: Avidia Bank, Worcester , Information Security Officer, Other , Westborough, Massachusetts