Andrews Federal Credit Union is seeking an inspiring, transformational leader of security to secure and safeguard our ability to serve our global members and communities. This leader will be responsible for evolving and driving our security strategy across corporate systems, networks, branches, third party SaaS applications to and safely serve our members around the world.
The leader will partner with senior leadership across Andrews Federal to gain alignment and drive forward a strategy and operating model for the Security program. This will involve identifying and acquiring the key personnel people, processes, and technologies best suited to improve the credit union’s security posture.
ESSENTIAL DUTIES
- Collaborate with the CIO and partner with executives and their direct leadership teams to build robust Security roadmaps and plans.
- Build and inspire a highly skilled and diverse Security team.
- Champion security practices and major security & compliance initiatives.
- Work closely with Enterprise Risk Management to create quarterly, annual and long-term security and risk management goals, articulate strategies, define metrics, and provide necessary updates to executive leadership.
- Partner with business unit leadership for the development, planning, and execution of major security initiatives.
- Develop and maintain an asset prioritization program according an asset’s risk and business impact.
- Constantly updates the cybersecurity and information security strategies to address new threats.
- Maintain a multi-year cybersecurity and information security roadmap with key performance indicators focused on reducing risk.
- Ensure the development and implementation of an ongoing employee and member security awareness program.
- Updates credit union security policies and identifies area where new polices are needed
- Directs development and execution of an enterprise-wide Incident Response Plan.
- Overseas and prepares the security budget.
- Stay abreast of latest security news and trends to guide the mitigation of threats.
- Other duties as assigned.
REQUIRED EXPERIENCE
- BS in Computer Science, Information Technology, Engineering, or related field
- 10+ years of security experience with 3+ years of senior leadership experience at the executive level including experience as VP of Security or CISO; strong preference given to experience in high growth companies.
- Demonstrated ability in a combination of risk management, information security, and engineering roles.
- Ability to identify, attract, hire, develop, and retain the best security professionals needed to staff a world class organization and ensure they have the vision, plan, support, and culture in place to deliver impact.
- Domain expert on the threat landscape and innovative security strategies and products
- “Hands-on” operating style and approach but a view towards the future and willingness to invest in people development and in developing an organization that will support a large company.
- Proven experience as a business-focused, change-driven, credible leader in a fast-growing business
- Expertise in understanding sophisticated technology & applying it in a practical way to build solutions
PHYSICAL REQUIREMENTS
Requires the ability to sit at a desk and computer for extended periods of time and must be able to lift 25 pounds.