VP, Information Security

Job Title

VP, Information Security

Banesco USA is seeking a VP, Information Security for our Information Security Business Unit.

Primary Job Duties

Information and Cyber Security

• Assists in real-time analysis of the organizations security posture to include wireless, firewall, web application, UTM, and SIEM.
• Experience in cloud security governance, risk management, and compliance readiness.
• Data protection and privacy.
• Experience with information/cyber security program maturity assessment (based on ISO 27005, NIST 800-53, NIST-CSF).
• Assist with configuration of the SIEM logging and alerting appliance.
• Research security trends, new methods and techniques used in unauthorized access of data in order to preemptively eliminate the possibility of system breach.
• Assists in the research and recommendations of projects involving Information Security, including but not limited to cybersecurity analysis and cybersecurity risk assessments.
• Determines system vulnerabilities and residual risk based on analysis of technical artifacts, interviews, and evaluation of current system state based on reports provided through various sources.
• Performs analyses to validate established security requirements and to recommend additional security requirements and safeguards.
  
  
  

Third Party Risk Management

• Third-party risk management.
• Assist in the identification and evaluation or risks associated with new and existing third-party relationships, contracting, solutions, projects, and/or engagement with the Bank.
• Assist with monitoring and re-assessment of third-party metrics.
• Third-party compliance screening assessment validations.
  
  
  

Business Continuity Plan

• Perform Business Impact Analysis and Risk Assessments
• Maintain Business Continuity Plan current.
• Acts as part of the Business Continuity Response Team
• Define and execute on tabletop exercises and contingency test.
  
  
  

Incident Response Planning

• Incident response management.
• Acts as a member of the Computer Security Incident Response Team in identifying and responding to security incidents.
• Develop and test incident response playbooks.
  
  
  

Additional duties

• Creating/updating security processes, policies, standards, and procedures.
• Supports processes, analysis, coordination, security certification test, security documentation, as well as investigations, software research, hardware introduction and release, emerging technology research inspections, and periodic audits.
• Maintains customer confidence and protects operations by keeping information confidential and secure.
• Contributes to recommendations on processes and methodologies to assess cybersecurity risk on information technology.
• Communication skills (bridging between technical and executives)
• Works closely with the Information Technology Department to evaluate effectiveness of controls as well as proposed mitigations.
• Remains current in cyber security training through education courses and seminars.
• Responsible for completing annual training programs assigned.
• Performs other functions and /or duties as assigned.
• Security Awareness and Training.
  
  
  

Job Requirements

• Education: Bachelor’s Degree in Management Information Systems or equivalent work experience.
• Experience: Five (5) years of experience in the Banking industry, preferable in the Information Security unit.
• Proficient and advanced computer skills including but not limited to proficiency in Microsoft Office (Word, Excel, Power Point, etc.)
• Must be bilingual in both English and Spanish. Ability to fluently speak, understand, read and write both languages.
• Strong verbal and written communication skills, ability to communicate at all levels of the organization.
• Strong attention to detail and accuracy.
• Knowledge of the bank’s system and processing activities.
• Experience in Management of both physical and logical information security systems.
• Strong analytical skills in order to detect and identify weaknesses in the bank’s systems and the ability to identify the root cause of the weakness.
• Strong technical skills (application and operating system hardening, vulnerability, assessment, security audits, networking, Intrusion detection, firewalls, etc.
• Strong presentation skills to various levels of the organization.
• Strong knowledge of Banking Regulations compliance, and bank security rules and regulations.
• Ability to multi-task, with strong organization, time-management and prioritizing skills.
• Strong customer service skills, ensuring satisfaction of both internal and external customers.
• Ability to work and complete task producing high quality results within a fast-paced environment.
• Experience in project management a plus.
  
  
  

Benefits

• Competitive Salary.
• PTO
• Hybrid Work Model (remote and on-site work)
• Tuition Reimbursement.
• Paid Parental Leave
• Medical, Dental, Vision
• 401k
• Life Insurance
• Supplemental Insurances
• Short-Term & Long-Term Disability
  
  
  

About Us

Banesco USA is part of Banesco International, a worldwide group of financial institutions with a presence in 14 countries.

As a corporation in continuous evolution, we promote the ongoing professional and personal development of our employees, by embracing challenges and adapting to the changing environment of today’s world. We aim to develop integral human beings, committed to making a difference at the workplace and out in the world.

Our actions are rooted in our Values: Reliability, Responsibility, Quality, and Innovation. We believe that we all have the same ability to transform our daily tasks into significant contributions, and therefore, Leave Our Mark.

At Banesco USA, one of our most valued assets is our enthusiastic team, which strives every day to create a world-class organization in an ever-changing world. Together, our team has made us a market leader and we invite you to join us.