Cybersecurity Manager

ABOUT BCI Bci provides financial services to individuals and corporations. We focus on being a global leader in innovations and personalized client experience and, with more than 10,500 employees, Bci is recognized as one of the best companies in which to work and develop a career. It is the third largest privately owned bank in Chile and it has more than 300 branch offices throughout Chile and representative offices in other countries. Bci is an Equal Opportunity Employer - All qualified applicants will receive consideration without regard to race, color, religion, gender, national origin, age, disability, veteran status, or any other factor determined to be unlawful under applicable law.

Job Summary

Responsible for developing, implementing, and overseeing Bci’s cybersecurity program to protect its IT systems, networks, and data from malicious cyber threats, ensuring compliance with relevant regulations, by implementing and managing security controls, by managing the vulnerability mitigation program, and responding to incidents effectively. The role will also be tasked with the creation of KPIs to evidence compliance with the security program as well as assisting with all audits, Ethical hacking and third party assessments as it relates to the Cyber/Security Program.

DUTIES OF THE POSITION

The duties of the position include, but are not limited to, the following:

• Develop and implement comprehensive cybersecurity policies, procedures, and standards aligned with industry best practices
• Work closely with Infrastructure Manager to implement and maintain security tools like firewalls, intrusion detection/prevention systems (DS/IPS), and endpoint protection solutions.
• Assess current cybersecurity posture and identify potential risks and vulnerabilities.
• Monitor network activity for suspicious behavior and potential threats
• Manage security incident response (SIR), risk management practices and processes to effectively investigate and mitigate risk and cyber incidents
• Ensure adherence to relevant cybersecurity guidelines (e.g., GDPR, HIPAA, PCI DSS)
• Coordinate regular vulnerability assessments and penetration testing to identify weaknesses in systems and applications as well as audits to ensure compliance with industry standards and regulations.
• Prioritize and remediate vulnerabilities in a timely manner.
• Collaborate with IT teams, business leaders, and other stakeholders to integrate security considerations into projects and operations
• Must have a deep understanding of cybersecurity principles, threats, and mitigation techniques as well as network security, cloud security concepts.
• Stay updated on the latest threat landscapes, security technologies, industry security trends and developments, government regulations and compliance requirements.
• Strong analytical skills coupled with excellent communication skills, the independence and ability to manage multiple activities and projects simultaneously, and the ability to interact with all levels of Division staff as well as management of regulated entities.
• Coordinate and oversee examinations of third-party service providers, often jointly with other state and federal regulators.
• Report to the SVP Head of IT on matters representing a significant existing regulatory problem or potential problem with a particular entity and participate in final decisions regarding regulatory action.
• Oversee the monitoring and management of Bci services to ensure optimal performance and security.
• Communicate cybersecurity risks and mitigation to senior management
• Ability to understand, speak (fluently), read and write English and Spanish
• Ability to write routine reports and correspondence
• Ability to multitask and work under pressure
• Effectively speaking before groups of customers or employees
• Assume evolving duties and responsibilities of position
• Work all hours required to fulfill job duties and responsibilities including, weekends, evenings and holidays as needed)
• Travel as required
• Provide coverage for other positions as requested
• Ability to carry and lift boxes and/or other objects that may weigh between 10 and 25 pounds.
• Perform additional duties and responsibilities as assigned by management
  
  

Pre-hire Requirements For This Position

COMPUTER: Knowledge of IBM compatible personal computers; fluency with Microsoft Word, Microsoft Excel, Microsoft PowerPoint and Google Suite. Knowledge of Palo Alto firewalls. F5 firewalls, Cloudflare, SOPHOS, and Mimecast.

Education

Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or a related field.

Certifications/Licenses

Relevant cybersecurity certifications (e.g., CISSP, CompTIA Security , CISA, CISM, OSCP) preferred

Experience

• Knowledge of and experience with cybersecurity tools and frameworks (e.g., FFIEC Cybersecurity Assessment Tool, the National Institute of Standards and Technology Cybersecurity Framework, the Financial Services Sector Coordinating Council Cybersecurity Profile, and the Center for Internet Security Controls).
• Knowledge of information security laws and regulations and interpretations; knowledge of state and federal banking statutes and regulations; and/or IT examination programs and principles of IT risk management.
• Minimum seven years of experience in related field