Technology and Information Security Risk Specialist

Company Description

For more than 70 years, IDB Bank has made it our mission to be the best bank for our clients by putting their needs first, and the success we’ve enjoyed fundamentally comes down to our people. Here at IDB, you’ll work side by side with some of the most talented professionals in the industry who share a strong sense of teamwork and a passion for providing exceptional service down to the smallest detail. We offer a comprehensive benefits package that includes generous paid time off and the ability to participate in our medical coverage and 401(k) plan on your very first day with us. We are also committed to diversity and inclusion, and to providing all of our team members with an equal opportunity to succeed and make meaningful contributions within a work environment that is respectful, welcoming and inclusive.

Job Description

Technology infrastructure and cyber security are primary areas of focus for IDB Bank. In the second line of defense, this position reports to the Head of Operational Risk. This position is stationed in New York City supporting the Bank’s technology Infrastructure vision and cyber security programs serving our domestic and international locations.

The purpose of this 2nd line position is to lead various technology and information/cyber security risk activities to enhance the overall risk posture of the Bank

A strong technical background coupled with managerial experience will enable cooperative conversations with technical and senior technology audiences while building confidence with business stakeholders and Bank’s leadership when identifying risks and proposing respective remediation plans.

Key Responsibilities:

• Perform detailed technology infrastructure and cyber risk analysis on processes, risks, and controls and provide an effective second line challenge.
• Perform full range of technology infrastructure and cyber security risk assessments including risk identification, assessment, reporting and oversight of remediation planning and execution.
• Develop, implement, enhance, and manage second line risk framework for technology and cyber security, using standard frameworks.
• Coordinate and interface with internal and external auditors.
• Identify and report technology infrastructure and/or cyber risks related to significant projects and/or new vendors.
• Develop training courses, provide Bank wide security awareness communications, and conduct training sessions as required.
• Build and maintain relationship with multiple stakeholders, including technology infrastructure, cyber, application development, and enterprise risk teams.
• Partner with Head Office and first line teams (CISO and IT Ops Risk) to implement and execute the risk plans.  
• Build, manage and report Key Risk Indicators and Key Performance Indicators.  
• Build, implement, and conduct phishing campaigns.
• Prepare and present materials related to technology infrastructure and cyber security risk to the Enterprise and Risk committees.

Qualifications

• 10+ years of solid experience in technology infrastructure and cyber security tools, processes, risks, and controls.
• Solid technical understanding of technology risk and cybersecurity risk at various technology layers, including cloud, application, database, O/S, network, infrastructure, etc.
• Bachelor’s degree in computer science or related technical discipline or equivalent work experience.
• Security certifications required such as CISSP, CISM, CISA, CRISC, CEH, or equivalent.
• First and/or second line experience.
• Experience in managing technical teams.
• Experience configuring GRC tools.
• Strong verbal and written communicating skills.
• Ability to multi-task, meet deadlines with minimal supervision, and positively influence others.
• Demonstrated experience in leading, managing, tracking and reporting technology and security related projects.
• Strong understanding of industry frameworks such as NIST CSF, NIST 800-53, NYDFS500, and FFIEC.

Compensation:

The expected annual salary for this position is between $160,000 - $190,000 at the start of employment. A salary offer is determined on an individualized basis, taking into consideration factors such as an individual’s skills and experience. In addition to base salary, our total rewards package also includes eligibility for an annual bonus, medical, pharmacy, dental, and vision plans, life and disability insurance, employee wellness program, retirement and savings plans with employer contributions, generous holiday and paid time off schedules, parental leave, and tuition reimbursement.

Additional Information

The Bank will make reasonable accommodations to the following employees to allow them to perform the essential functions of their position, except where doing so would result in undue hardship to the Bank:

• Those with a known mental or physical disability.
• Pregnant individuals and/or individuals with pregnancy or childbirth-related medical conditions.
• Victims of domestic violence, sex offenses or stalking.
• Employees with religious observance and practice obligations.

Any employee who believes he or she needs an accommodation for any of the above reasons should contact their supervisor or a member of Human Resources to request such an accommodation. In each case, the Bank will engage in a good faith written or oral dialogue concerning the individual’s accommodation needs; potential accommodations that may address the individual’s accommodation needs, including alternatives to a requested accommodation; and the difficulties that such potential accommodations may pose for the employer.

The Bank retains the ultimate discretion to choose the appropriate reasonable accommodation. Upon reaching a final determination at the conclusion of the cooperative dialogue, the Bank will provide the requesting individual with a written final determination identifying any accommodation granted or denied. In addition, the Bank will maintain any information regarding the employee’s request and status in the strictest confidence, except as requested by the employee, as required on a need-to-know basis or as otherwise required by law.

Disclaimer

The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not to be construed as an exhaustive list of all responsibilities, duties, and skills required of personnel so classified. All personnel may be required to perform duties outside of their normal responsibilities from time to time, as needed.

All your information will be kept confidential according to EEO guidelines.

IDB BANK, INCLUDING ITS SUBSIDIARIES AND DIVISIONS, PROVIDES EQUAL EMPLOYMENT OPPORTUNITIES TO ALL EMPLOYEES AND APPLICANTS FOR EMPLOYMENT WITHOUT REGARD TO RACE, COLOR, RELIGION, SEX, SEXUAL ORIENTATION, NATIONAL ORIGIN, AGE, DISABILITY, GENETIC STATUS, CITIZENSHIP STATUS, MARITAL STATUS, MILITARY OR VETERAN STATUS, CURRENT UNEMPLOYMENT OR ANY OTHER LEGALLY PROTECTED CATEGORY IN ACCORDANCE WITH APPLICABLE FEDERAL, STATE AND LOCAL LAW. NOTHING IN THIS SITE CONSTITUTES A PROMISE OR OFFER OF EMPLOYMENT.

IDB BANK, INCLUDING ITS SUBSIDIARIES AND DIVISIONS, PROVIDES EQUAL EMPLOYMENT OPPORTUNITIES TO ALL EMPLOYEES AND APPLICANTS FOR EMPLOYMENT WITHOUT REGARD TO RACE, COLOR, RELIGION, SEX, SEXUAL ORIENTATION, NATIONAL ORIGIN, AGE, DISABILITY, GENETIC STATUS, CITIZENSHIP STATUS, MARITAL STATUS, MILITARY OR VETERAN STATUS, CURRENT UNEMPLOYMENT OR ANY OTHER LEGALLY PROTECTED CATEGORY IN ACCORDANCE WITH APPLICABLE FEDERAL, STATE AND LOCAL LAW. NOTHING IN THIS SITE CONSTITUTES A PROMISE OR OFFER OF EMPLOYMENT.