As The Artisans of Banking, we strive to be B.R.A.V.E. (Build Relationships & Add Value Everyday). We recognize that in order to meet the needs of our communities, we must represent our communities. Our success relies on creating a culture where we have diverse perspectives and a true sense of belonging. This is a journey, and we pledge to do more than simply check the box.
When you join our Premier Members team, your benefits will include:

• Comprehensive medical insurance plan that has HRA, HSA, and FSA options
• Dental and vision insurance
• Generous paid-time-off
• 11 paid holidays
• Annual bonus (based off of annual results/scorecard each year)
• 401(k) plan with a 5% match
• Wellness program
• Tuition assistance
• 1% employee loan discount
• Employee Assistance Program (EAP)
• Life and disability coverage

What sets working for Premier Members apart?

• Career development and pathing opportunities to move into leadership roles or other lines of business within PMCU such as Commercial Lending, Finance, Marketing, Underwriting, Member Solutions, Training, Human Resources, and more.
• Supportive and engaging work environment.
• A wellness and sustainable work culture that puts family, Mother Nature, our community, and your health first.
• A work environment that encourages personal as much as professional growth, teamwork to make the dream work, and treating everyone equally.

PMCU at this time does not offer VISA Sponsorship of any kind.
This is a full-time position working 40 hours a week, hours Monday-Friday 8:00am – 5:00pm.
POSITION SUMMARY:
The Vice President Information Security is responsible for leading the Information Security Program for Premier Members Credit Union (PMCU). This position is responsible for establishing the strategic vision of the Information Security program and executing a roadmap to achieve the goals. This role will report directly to the SVP Information Technology with a dotted line reporting relationship to the Enterprise Risk Dept along with the Supervisory Committee.
The Vice President Information Security will work closely with the Risk and Compliance departments in ensuring PMCU is meeting regulatory requirements and organizational risk tolerance. This position maintains the role of the Information Security Officer responsible for incident response and annual security reporting to the Board of Directors. This position is also responsible for developing all operational tasks within the information security portfolio including security training, vulnerability scanning, remediation, logging, auditing and all other security related functions.
ESSENTIAL FUNCTIONS:

• Establish and implement Information Security Roadmap for PMCU.
• Leads the annual IT Risk assessment, penetration test, vulnerability scans, and social engineering tests, synthesizes results, and implements action plans for issue resolution.
• Educates executive management and the business on cyber risk through reporting and presentations.
• Monitors Information Security industry trends and educates the organization of critical information.
• Develops, plans, and manages the Information Security Program to include policies, procedures, and standards.
• Defines the annual security awareness training, and new hire training to ensure all levels of staff and management are well-educated regarding information security practices.
• Leads the project initiatives to research, validate, and manage Information Security vendors and products to ensure robust detection, prevention, and monitoring tools are in place.
• Audits internal assets and systems to ensure compliance with information security standards.
• Defines the Information Security plan to resolve gaps identified from audits, risk assessments or vulnerability scans.
• Defines the day to day operations for the information security department.
• Responsible for cyber security investigations providing summaries and recommendations to resolve incidents. Works closely with IT, business units, and project teams to ensure that new projects meet or exceed information security standards and requirements.
• Protects information assets by developing security strategies, directing system access control, monitoring, and response.
• Implements regulatory requirements, industry standards, and best practices such as NCUA, FFIEC, GLBA, PCI DSS, NIST 800-53, and ISO 27001 ensuring the Information Security Program is held to the highest standard.
• Advises executive management team on critical security issues and recommends risk reduction solutions.
• Familiarity with secure coding best practices including DevOps and SDLC.
• Develop a team (direct or indirect reports) that is nimble enough to build and execute Information Security solutions to support the Organization’s strategic initiatives.
• Provide strong leadership and direction to direct reports. Recruits and hires talented individuals to join the team and continues to develop them to their full potential.
• Build strong relationships across business groups and with vendors. Develop a detailed understanding of their issues, challenges and opportunities. Ensure transparency and collaboration between key stakeholders.
• Foster a culture of innovation, transparency and accountability.
• Manage operating budget for Information Security roadmap and initiatives.

EDUCATION AND EXPERIENCE

• Bachelor's Degree Computer Science, Network, Cyber Security or relevant field is preferred.
• Advanced Degree/Certifications such as CISSP, CISM, CEH, and CCSP are required.
• Banking/Credit Union experience is preferred.
• Five years to eight years of similar or related experience, including preparatory experience.
• 3 to 5 years of experience with regulatory compliance (i.e. PCI, GLBA, CPA, SOX & NCUA)
• 5 to 7 years of experience with implementing and or managing essential security tools including IDS/IPS, DLP, WAF, EDR, CASB, and Vulnerability Management.
• 5 to 7 years Leadership experience is preferred.
• Broad and thorough knowledge of security practices, applications systems, and tools. Experience with planning, developing, implementing and updating organization’s information security strategies, policies, procedures, standards and processes.

SKILLS/ABILITIES:

• Ability to maintain a high level of confidentiality.
• Working knowledge of financial service institutions and its operations and procedures are preferred.
• Excellent management skills and the ability to prioritize multiple initiatives and projects.
• Ability to establish strategic direction for the department and provide the roadmap of initiatives and priorities in support of that vision.
• Experience with Cloud solutions such as AWS, GCS, or Azure.
• Ability to operate at all levels of the organization, and to both motivate and influence others that are often in a more senior position.
• Excellent oral and written communications skills.
• Ability to manage change within the organization.
• Technically proficient in IT infrastructure and Information Security controls and concepts.
• Demonstrate flexibility and the ability to work in a team environment.
• Demonstrated business and technical acumen, including the ability to read, analyze and interpret reports and documentation.
• Strong interpersonal, presentation and negotiating skills.
• Exceptional people and organizational leadership, with a track record of leading high performing teams
• Strategic thinker with strong operational and analytical skills.
• Passion for solving problems that have large impact to the organization and our members.
• Ability to define problems, collect data, establish facts, and draw valid conclusions.
• Works collaboratively with other teams to improve performance, efficiency, effectiveness and growth opportunities throughout the organization

WORKING CONDITIONS

• Standard office conditions
• Low to moderate noise
• Limited lifting up to 50 lbs.

This description has been reviewed to ensure that only essential functions and basic duties have been included. Peripheral tasks, only incidentally related to each position, have been excluded. Essential functions, requirements, skills, and abilities included have been determined to be the minimal standards required to successfully perform the positions. In no instance, however, should the duties, responsibilities, and requirements delineated be interpreted as all-inclusive. Additional functions and requirements may be assigned by supervisors as deemed appropriate.
In accordance with the Americans with Disabilities Act, it is possible that requirements may be modified to reasonably accommodate disabled individuals. However, no accommodations will be made which may pose serious health or safety risks to the employee or others or which impose undue hardships on the organization.
The Credit Union believes that each employee makes a significant contribution to our success. That contribution should not be limited by the assigned responsibilities. Therefore, this job description is designed to outline primary duties, qualifications, and job scope, but not limit the incumbent. It is our expectation that each employee will offer his/her services wherever and whenever necessary to ensure the success of our endeavors.
Job descriptions are not intended as and do not create employment contracts. The organization maintains its status as an at-will employer. Employees can be terminated for any reason not prohibited by law.
This Job Description is not a complete statement of all duties and responsibilities of this position and may change with or without notice.
Final Compensation for this position will be determined by various factors such as relevant work experience, specific skills and competencies, education, certifications, and internal pay equity.
We anticipate this position to close within 30 days of posting. Please submit your application at your earliest convenience to be considered.
You may not check every box, or your experience may look a little different from what we've outlined, but if you think you can bring value to Premier Members Credit Union, we encourage you to apply!
Thank you for your interest in Premier Members Credit Union.