Information Security Officer (Hybrid) - NYC, New York

Japanese major bank seeks an Information Security Officer.*This role is for Vice President level candidates.Location: NYC ManhattanSalary: $160K-$200K DOEThe salary will be determined based on your experience after the interview process.Benefits: Health, Dental, PTO,401K, Holiday pay and othersEmployment Type: Full-TimeIndustry: Financial Services*This role is located in New York City and will require a hybrid work schedule of at least 2 days in office per week.Overview:To assist the Head of the Department with the day-to-day management and operation of the department. To assume the role of Information Security Officer and take the lead on overseeing the timely completion of the departments critical risk management projects. To provide direct assistance to the Head of the Department with regards to accomplishing the departments goals and objectives. To manage, guide and mentor other staff members with the preparation and completion of their assigned tasks. To contribute significantly to the overall success of the department in all key risk management and cyber security areas.Directly oversee completion of all critical projects, assist the HOD with implementing desired operational strategies and procedures. Recommend ways to improve efficiency, effectiveness, and productivity. Focus on proactive day-to-day operations. As ISO, assist with overseeing all information and cyber security matters.Your Duties and Responsibilities:Maintain and improve the information risk framework with guidance from HOD, address regulatory requirements, residual information risks specific to NY Branch Operations.Provide Information Security subject-matter-expertise to senior management.Work with IRT and coordinate incident responses to cyber security events.Keep abreast of industry wide information risk issues that could potentially have an impact on Branch Operations.Establish processes for communicating data classification guidelines and its governance.Oversee employee information security awareness training.Assesses and evaluates critical risk management projects:Annual Risk Assessment.Semi-annual Vulnerability Assessments.Special Risk Assessments done for a Particular PurposeTrend analysis of key risk management concepts and principlesAttend the ISSRM and Branch Risk Management related meetings.Performs key information risk governance related tasks as described belowProvides User Access Control Governance.Monitors, analyzes and follows-up on Information Risk events/issues.Reviews information risk and proactively advises as necessary on: IT Projects/Issues Management process, Change Management Process, significant changes to IT procedures, IT Asset Management Report, key IT Vendor Contracts, IT Disaster RecoveryPlan/Process, Record Retention Process, any related audit findings, etc.Establish and maintain Information Risk Key Risk Indicators (KRI).Periodically updates IT resources on Information risk related practices.Manages all information and cyber security policy and procedures manuals.Assist with the management of all matters related to Information Security and Information Risk Management, including directing appropriate Information/Applications Risk Assessments.Your Qualifications:Certification in Information Security (CISSP) required.8 years of Information Security related experience, IT Audit experience, preferred.Knowledge of Information Security principles, terminologies, and technologies required.Knowledge of Information Risk Management framework and principles required.Ability to analyze and design information security monitoring procedures and activities preferred.Detailed Knowledge and expertise in Technology Risk Assessments and Risk Analysis required.Excellent written and verbal communication skills, required.Good computer skills in Microsoft Office Excel and Word required.Strong project management and people management skills. preferred

Salary : $160,000 - $200,000