This position is based out of our Westlake, OH office and is eligible for a hybrid schedule.
JOB OVERVIEW
The Chief Information Security Officer (CISO) oversees the safekeeping of all Equity Trust Company (ETC) and its affiliates technology assets across all systems, applications, and locations. The CISO leads the Company’s strategy, engineering and measurement of Information Security, IT infrastructure, and IT operations functions. This role is the top-level security technical expert for incident response, vulnerability management, analysis, threat hunting, event management, and recovery.
The CISO applies industry security standards, best infrastructure and application security practices, and threat assessment frameworks to build and communicate enterprise information security strategies. The role also leads infrastructure engineers, setting direction for the organizations server, storage, network, and cloud systems.
RESPONSIBILITIES & DUTIES
- Report security concerns and updates to leadership including the Executive Committee and Board of Directors.
- Develop and implement security and infrastructure strategies, standards, and best practices improving the overall security and risk posture of the company.
- Ensure stable, available, and secure infrastructure.
- Lead incident response, investigations, and security breach management with legal support.
- Monitor network traffic, identify threats, and report on risks and vulnerabilities.
- Coordinate security assessments, penetration testing, and system monitoring (including after-hours).
- Oversee and manage security vendors, tools, and daily IT operations.
- Drive reporting visibility for security, infrastructure, and risk management.
- Collaborate with developers, engineers, and auditors to ensure security in projects and compliance with standards.
- Collaborate with internal and external auditors to provide necessary data and information.
- Lead and mentor the security team, staying current on security threats and technologies.
- Lead incident response and problem-solving efforts.
- Maintain and test the company's Disaster Recovery and Business Continuity Plans.
- Ensure the stability and availability of essential infrastructure for business operations.
- Perform other duties as assigned.
QUALIFICATIONS
- Bachelor's degree in Computer Science, Computer Engineering, Information Technology Management or related field.
- MBA or advanced degree in a related field, Computer Engineering is preferred.
- Demonstrated ability to build strong technological vendor partnerships and relationships to ensure best performance and financial return.
- Experience building business value with online trading/banking applications, business analysis, microservices, data warehouse, blockchain and/or project requirement estimations.
- Minimum 15 years of experience in various technology roles and a minimum of 10 years of experience managing technical teams.
- Experience as a CISO, CTO, Sr. Director or VP of Infrastructure or equivalent position aligning technology and resources with new line of business opportunities.
- Experience with IAAS AWS and Azure.
- Experience in the financial services or a related industry is preferred with a focus on dealing with financial service regulators.
- Experience with integration of technology platforms through mergers and acquisitions.
PROFESSIONAL CERTIFICATIONS
- Certified Information Systems Security Professional (CISSP) preferred.
- Certified Information Security Manager (CISM) preferred.
- Certified Ethical Hacker (CEH) preferred.
- Certified Information Systems Auditor (CISA) preferred.
TECHNICAL SKILLS
To be successful in this role, you should have experience with and an understanding of the following:
- Strong Understanding of Cybersecurity Frameworks: Familiarity with NIST, ISO 27001, COBIT, and other relevant standards.
- Knowledge of Security Tools and Technologies: Experience with firewalls, intrusion detection/prevention systems, SIEM (Security Information and Event Management) tools, etc.
- Risk Management: Ability to assess and manage risks, including threat analysis, vulnerability assessment, and risk mitigation strategies.
- Incident Response and Management: Skills in handling security incidents, forensic analysis, and implementing effective recovery strategies.
CULTURAL COMPETENCIES
In addition to our core company competencies of Cultivates Innovation, Nimble Learning, Action Oriented, Collaborates, and Being Resilient, a successful candidate in this role should exhibit the following behavioral competencies:
- Global Perspective
- Builds Effective Teams
- Resourcefulness
- Instills Trust
PHYSICAL DEMANDS/WORK ENVIRONMENT
This job operates in a professional office environment and routinely uses standard office equipment. While performing the duties of this job, the associate is regularly required to speak and hear. The associate is frequently required to sit for extended periods of time, as well as stand, walk, use hands and fingers, and reach with hands and arms. This job requires the ability to lift files, open filing cabinets, and bend or stand on a stool as necessary.
DISCLAIMER/ASSOCIATE ACKNOWLEDGEMENT
The above statements describe the general nature and level of work only. They are not an exhaustive list of all required responsibilities, duties, and skills. Other duties may be added, or this description amended at any time.
Equity Trust Company is an equal opportunity at-will employer and does not discriminate against any employee or applicant for employment because of age, race, religion, color, disability, sex, sexual orientation, or national origin. If you have a disability that requires accommodation or a paper application, please contact us at careers@trustetc.com.
#J-18808-Ljbffr