Chief Information Security Officer

Provide oversight and establish the framework for enterprise-wide Information Security best practices, and regulatory and compliance requirements that impact confidentiality, integrity, availability, or privacy for the enterprise. Proactively work with the Chief Risk Officer to assure security programs and technical controls are in compliance with policies, applicable laws and regulations, risk appetite, and effectively protect information systems.

• Oversee Information Security compliance effectiveness, sustainability and resiliency of the Bank, driving change and improvement by convening, informing, supporting, influencing and mentoring; ensuring all operations are effectively integrated to achieve best possible outcomes; develop and implement strategies to accommodate current and future organizational plans, programs, and needs
• Establish policies and standards that direct security functions relative to information technology systems, networks, applications, voice and data communications, computing services, identity and access management, and data security within the enterprise
• Perform horizon scanning and recommend best practices based on the evolving threat landscape to protect PII/NPPI and intellectual property and ensure compliance with regulatory and legal compliance requirements
• Assure security programs and technical controls comply with policies, applicable laws and regulations and effectively protect information and information systems
• Communicate complex information, security, technology, and regulatory risks in common business terms to empower the business to make educated and informed risk treatment and control decisions
• Oversee actions of information security monitoring, independent third party and regulatory audits; make necessary preparations for such audits or exams; coordinate responses to external auditors and regulatory examiners; ensure deficiencies identified from such audits and examinations are corrected timely and accurately
• Direct the activities of the Bank's Information Security staff and act as the liaison with regulatory agencies, internal and external advisors, and other internal control groups on related issues

Requirements:

• Bachelor's degree in cybersecurity, computer science, information assurance, or management information systems, plus actively maintaining two or more of the following certifications: Certified Chief Information Security Officer (CCISO), Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC), Certified Information Systems Auditor (CISA), or other equivalent certifications
• 10+ years of experience in Information and Cyber Security, with 4+ in a Senior leadership role; recent experience in a highly regulated industry; demonstrate experience across multiple practice areas including information security, incident response, breach management, security operations, security architecture and engineering, cloud security, vulnerability management, offensive security, identity and access management, data security, data privacy, application security, endpoint security, risk management, security awareness, business continuity, third party risk management, contract management, regulatory compliance (GLBA, HIPAA, HITECH, PCI), physical security, forensics and eDiscovery
• Preferred Experience - Financial Services/Banking industry, recent experience governing/securing/advising emerging technologies/artificial intelligence

Skills:

• Strong proficiency in the use of Microsoft Excel and Word; basic keyboarding and calculator skills; must be able to perform advanced math and carry out complex written instructions
• Travel to a variety of locations to perform work and/or attend meeting as required
• Lifting in an office setting may be required up to 30lbs.

ANBTX strongly encourages candidates that are fluent in English and Spanish to apply. Jobs that specifically require candidates to be bilingual will be posted as a requirement.