** Corporate Information Security Officer**

**Job Category****:** Risk/Audit **Requisition Number****:** CORPO02520 Showing 1 location **Job Details**

**Description**

Ameris Bank is a high-performing community bank providing an exceptional customer experience with well trained, empowered employees. At Ameris, we look outside conventional wisdom and processes to find new answers. This means cutting red tape, empowering our people to make decisions at the local level and creating clear paths and easy touchpoints. We represent energy and passion, a steady strength that is bold and assertive, creativity in thinking and problem solving, a scrappy determination and nimble approach to getting things done, a good natured, genuine and approachable way of serving each other and our customers. We look forward to the future, and what this means for you, if you join our team.

Governs the Banks Information Security and Physical Security Programs. Main purpose of this position is to ensure safeguarding of customer personally identifiable information (PII) fulfilling the requirements of the Gramm-Leach-Bliley Act (GLBA), and to meet the requirements of the Bank Protection Act (BPA) to discourage robberies, burglaries, and larcenies against the Bank.

Essential Functions, Duties, and Responsibilities:

Perform duties associated with consumer privacy protection rules mandated by the Gramm-Leach-Bliley Act (GLBA) that impose certain notice requirements and restrictions on the Bank's ability to disclose nonpublic personal information about consumers to affiliates and nonaffiliated third parties, and safeguarding customer information

Ensure that controls are in place to minimize any risks of non-compliance with Gramm-Leach-Bliley Act (GLBA) by working with all the other departments within the Bank and reviewing all other Bank Policies and Procedures for compliance with Gramm-Leach-Bliley Act (GLBA)

Ensure all employees are properly trained on their responsibilities under Gramm-Leach-Bliley Act (GLBA), Information Security Policy and all consumer privacy laws as needed and as required

Prepare and report the Annual Report to the Board of Directors on the effectiveness of Cyber Risk Assessment, Information Security Risk Assessment, and Information Security Program in compliance with laws and regulations

Manage the development, implementation, and maintenance of the Banks information security policy, standards, guidelines and procedures to ensure a strong information security program

Work closely with Information Technology and specific Business Units responsible for user security and access controls to review periodically the privileged levels of access

Stay abreast of new requirements relating to information security

Required Knowledge, Skills and Competencies:

Knowledge of GLBA & FACT Act

Extensive Information Security experience, including provisioning, understanding of system monitors, tools and processes, governance and monitoring KRIs/KPIs

Have at least one of the following certifications; CISSP, CISM, CRISC, CRCM

Industry and Work Experience:

12 years of related work experience

Academic:

Bachelors degree in Computer Science, Management Science, or related technical job experience

Disclaimer:

The above job description is meant to describe the general nature and level of work being performed; it is not intended to be construed as an exhaustive list of all responsibilities, duties, and skills required for the position.

All job requirements are subject to possible modification to reasonably accommodate individuals with disabilities. Some requirements may exclude individuals who pose a direct threat or significant risk to the health and safety of themselves or other employees.

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities

The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractors legal duty to furnish information.

**Qualifications**

**Skills**

**Behaviors**

**:**

**Motivations**

**:**

**Education**

**Experience**

**Licenses & Certifications**

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities

The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractors legal duty to furnish information. 41 CFR 60-1.35(c)