|
The Bank of Richmondville - Career Opportunity - Join Our Team
Chief Information Officer - IT Manager
Reports to: Board of Directors/CEO Works with: Information Technology Department, Compliance Officer, Emergency Management Team, Incident Response Team and Security Officer
Salary Range: Starting $80k - $125 annually, dependent on prior experience.
General Description: The Chief Information Security Officer oversees the implementation of the banks information security program. Accordingly, this individual is responsible for coordinating information security efforts across business departments, ensuring that policies and procedures are appropriate and consistent with daily practices. The CISO also provides regular reports on the status of the Information Security Program to the Board of Directors. Coordinates security matters with Compliance Officer and Physical Security Officer, and ensures that sufficient training is provided to all Bank users.
Specific Duties and Responsibilities: Policy Creates and maintains all I.T./I.S. Policies and Procedures Serves as an internal information security advisor to the bank Coordinates the development of the security policies and procedures that support compliance Advises the bank with current information about information security technologies and related regulatory issues Training and Awareness Oversees the Information Security Training to Bank Users Provides Cybersecurity Awareness Training to Board Members Administer proper information security clearance in accordance with established Bank Information Security Policies and Procedures
Compliance and Enforcement Performs Annual Information Security Risk Assessment (based on FFIEC, GLBA 501(b), COBIT, NIST) Responsible for the NY-DFS Cybersecurity Regulations (23 NYCRR 500) Program Responsible for the FFIEC Cybersecurity Assessment Tool (CAT) PCI Policy and Self-Assessment Oversees Fed Line Advantage Security Controls Microsoft Audit Enforces compliance with the security program in a balanced and consistent manner across the bank in conjunction with the Security Officer Responsible for Customer Security Center (Bank website) Monitors compliance with information security policies and procedures, referring problems to the appropriate department manager Monitors the internal control systems to ensure that appropriate access levels are maintained Coordinates information security with physical security SBC Coordinator (Supervisory Business Center Coordinator) Review Reports of Examination (ROEs) of Banks vendors conducts/posted by the FDIC (Fdic Connect Portal) Report relevant results to Management and Board of Directors Incident Response Develops and implements an Incident Reporting System to address bank security incidents (breaches), responds to alleged policy violation, or complaints from external and internal parties Reviews all system-related security plans throughout the bank's network, acting as a liaison to Information Systems Prepares and coordinates the incident response plan and procedures Disaster Recovery Responsible for Bank-wide Disaster Recovery and Business Continuity Periodical Testing of Critical I.T. infrastructures (Electrical Power, Windows, Firewalls, Core and Fed Line) Assures Critical Vendors perform DR-BCP Oversees the testing of the Pandemic Flu Plan Testing
Vendor Management Performs Vendor Due Diligence Reviews SOC, SSAE or equivalent Reports Evaluates Cybersecurity Insurance
I.T. Strategic Plan Negotiates and Executes I.T. Service Contracts Maintains Licenses Inventory Oversees Hardware Inventory
. I.T. Audit/Regulatory I.T. Exams Responsible for Annual Cybersecurity and I.T. Audit Responsible for FDIC I.T. Exam (InTREX) Responsible for NY-DFS I.T. Exam
Monitoring Firewall Reports User Access (Core & Windows) Network Scan Reports Software Updates AV Scan Report
I.T. Production (back up for Network Admin/Tech Support) General troubleshooting (Active Directory, Firewalls, Core, Workstations, etc.)
Meeting Participations Weekly Management meetings Monthly I.T. Department meetings Quarterly I.T. Steering Committee meetings (Chair)
recblid urtmp4v9rtfqmkuxykxu7ee9oglo7u

|