VP of IT Security & Risk

Liberty FCU, a full-service credit union, is currently seeking a VP of IT Security & Risk.  The successful candidate must have strong technical and analytical skills in developing and implementing a comprehensive data security program.  This position is responsible for the configuration, maintenance, and testing of various network security devices, appliances, and software tools.  Ensuring the secure operation of servers, network connections, and applications is essential.  Reporting to the CIO, this position is always working toward a balance of system functionality and secured data.  Additionally, this role will function as the credit union's Information Security Officer.  The successful candidate must be available to work on evenings and weekends when necessary.  If interested, please proceed by clicking Apply.

Duties and Responsibilities include but are not limited to: 

• Provides management, leadership, and strategic direction for the information management function, as well as direction and support for daily operational activities of the team
• Works with stakeholders to define IT security requirements and helps identify, recommend, develop, implement, and support efficient and effective IT solutions and services
• Manages the continuous review, evaluation, and rollout of security tools and security administration tools
• Consults with and offers strategic direction to related functions (such as physical security/facilities, risk management, human resources, legal and compliance, etc.) and members of management throughout the organization on information security matters, including routine security activities and emerging security risks and control technologies
• Provides suitable information security awareness, training, and educational activities
• Assists with the preparation and implementation of necessary information security policies, standards, procedures, and guidelines
• Leads the design and operation of related compliance monitoring and improvement activities to ensure compliance with internal security policies and applicable laws and regulations
• Coordinates with third-party security vendors to self-assess the credit union's security posture and determine appropriate remediation actions
• Leads information security risk assessments and controls selection activities
• Manages the handling and resolution of IT security issues and complaints
• Manage a team of IT security analysts by prioritizing tasks, assigning work, and monitoring the quantity and quality of their work
• Manages, configures, and maintains network security devices and appliances
• Performs "hands-on" staff duties as required to meet required IT service levels

Education/Licensure/Certification/Registration Requirements:

• Bachelor's degree in Information Technology or a related field required.  Master's Degree preferred.  A combination of education, training, and experience may be considered in lieu of a degree.
• CompTIA-Security required.  CEH or CHFI required.  CISSP or ECSA preferred.

Work Experience:

• 5 years of experience providing security administration services in a mission-critical environment required
• Extensive technical knowledge of network and application security tools and systems
• Strong organizational and interpersonal skills
• Strong troubleshooting abilities to identify the source of problems and think critically regarding possible solutions 
• Proven leadership abilities, including the ability to share knowledge, resolve conflict, and create consensus
• Logical, clear, and concise written and verbal communication skills
• Must display initiative, the ability to work independently, and be able to use extensive independent judgement
• Must display the highest level of critical thinking to weigh alternatives and present solutions consistent with the business strategy
• Ability to communicate and enforce policies
• Strong understanding and working knowledge of IP Networking, web technologies, network security tools, and standard practices
• In-depth knowledge of IDS/IPS, firewalls, VPN, SIEM, EDR, SOAR, DLP, data encryption, email security, and multi-factor authentication systems
• Experience developing and instituting network security and incident response operational policies and procedures at an enterprise level
• Experience with security audits and remedial action
• Understanding of advanced security protocols and standards, including a demonstrated ability to perform complex analysis, including producing metrics
• Knowledge of information security frameworks and industry regulations (Gramm-Leach Bliley, PCI, NIST, ISO, CIS, MIRTE)
• An ability to learn new technologies and adopt new information security tools

Benefits and Compensation:

• Paid Holidays
• Paid Time Off (Vacation, Sick and Personal Days)
• Medical, Dental and Vision Insurance
• 401(k) retirement program with matching funds
• Employer paid Group Term Life Insurance, Short Term and Long-Term Disability Insurance
• Tuition Reimbursement Program

Liberty FCU is an Equal Opportunity Employer, Minority/Female/Disability/Protected Veteran.