Information Security Risk Manager

My client, a growing community bank, is looking for an Information Security Risk Manager to hit the ground running. In this role, you will develop and maintain the bank's Information Security Risk Monitoring and Management Program. You will also ensure compliance with GLBA standards, oversee business Continuity and Fraud Risk Programs, and collaborate with IT and Operational Risk teams to mitigate security threats.

Responsibilities:

• Coordinate security assessments, penetration testing, and audits while implementing risk controls and cybersecurity awareness training.
• Lead fraud risk prevention efforts, develop key risk indicators, and maintain identity theft prevention measures
• Supports regulatory compliance, incident response, and business continuity planning through training, risk assessments, and policy updates.
• Supervises security and fraud risk personnel to ensure proactive risk management and operational resiliency.

Skills & Required Experience:

• Must have your Secuirty , CISSP, CISA, or CISM.
• 5 years in information security, fraud prevention, or IT risk management, preferably in banking or a regulated industry.
• Expertise in risk assessments, incident response, vulnerability management, and security audits.
• Strong knowledge of GLBA, Reg P, Reg E, UCC, and other banking security regulations.
• Experience with SIEM, DLP, IDS, penetration testing, and risk management tools (e.g., Splunk, Qualys, Archer).
• Ability to identify fraud risks, implement mitigating controls, and manage identity theft prevention programs.
• Ability to work cross-functionally with various departments.