This job is closed
We regret to inform you that the job you were interested in has been closed. Although this specific position is no longer available, we encourage you to continue exploring other opportunities on our job board.
AVP Information Security
$167,566 - $251,349/Yr
Tower Federal Credit Union - Laurel, MD
posted 2 months ago
Full-time - Senior
Laurel, MD
Credit Intermediation and Related Activities
About the position
The AVP Information Security at Tower Federal Credit Union is a critical leadership role responsible for safeguarding the organization's assets, member data, and information systems. This position involves developing and implementing an information security strategy that aligns with industry standards and regulatory requirements while overseeing a team of security professionals to ensure a robust security posture through policy development, risk management, and incident response.
Responsibilities
- Develop and drive the information security strategy, policies, standards, and procedures to ensure effective data protection and compliance with regulatory standards.
- Collaborate with senior leadership to align information security goals with organizational objectives.
- Mentor, coach, and manage a team of information security professionals to build a high-performance security team.
- Lead the technology and security risk management program, identifying, assessing, and mitigating information security risks.
- Ensure compliance with applicable legal, regulatory, and internal security standards including NCUA, FFIEC, and other relevant financial regulations.
- Develop, implement, and maintain an information security risk assessment program to ensure security controls are appropriate and effective.
- Oversee the day-to-day security operations, including monitoring, threat detection, and incident response.
- Implement advanced detection and prevention technologies, including SIEM, EDR, IPS/IDS, and other security tools.
- Manage internal vulnerability management and third-party security assessment programs, ensuring timely remediation of findings.
- Lead the incident response program, ensuring rapid containment, investigation, and recovery from security incidents.
- Conduct regular incident response exercises, including tabletop and live simulations, to improve team readiness and response capabilities.
- Develop and authorizes the implementation of necessary security policies, standards, procedures, and guidelines based on industry best practices that comply with federal and state laws and industry regulations.
- Conduct security awareness training programs to promote a security-aware culture throughout the organization.
- Provide regular reports and security metrics to the Information Security Governance Committee (ISGC), IT Steering Committee (ITSC), and Technology Advisory Group (TAG).
- Partner with ITS and business units to integrate security requirements into all phases of project development and system implementation.
- Develop and manage the department and project budgets, ensuring resource allocation aligns with strategic security goals and organizational priorities.
Requirements
- Bachelor's degree in Information Security, Computer Science or a related field with seven years relevant work experience desired, or at least 10 years directly applicable relevant leadership and work experience without a degree.
- Professional-level industry certification (i.e. CISSP, CISM, etc.) desired.
- Minimum of 10 years of experience in information security, with at least 5 years of supervisory or leadership experience.
- Strong understanding of security frameworks (i.e. CIS, NIST, etc.) and regulatory requirements applicable to credit unions and financial institutions.
- Extensive experience with security technologies, such as firewalls, IDS/IPS, SIEM, data protection and endpoint security tools.
- Demonstrated ability to lead and develop a team of security professionals.
Nice-to-haves
- Credit union or financial services experience preferred.
Benefits
- $0 out-of-pocket premium cost for Employee Only PPO
- Low premiums for all other PPO coverage levels
