Vacancy expired!
Job Description YOUR LIFE'S MISSION: POSSIBLE You have goals, dreams, hobbies and things you're passionate about.
What's Important to You Is Important to UsWe're looking for people who not only want to do meaningful, challenging work, keep their skills sharp and move ahead, but who also take time for the things that matter to them-friends, family and passions. And we're looking for team members who are passionate about our mission-making a difference in military members' and their families' lives. Together, we can make it happen.Don't take our word for it.- FORTUNE 100 Best Companies to Work For®
- Computerworld® Best Places to Work in IT
- FORTUNE® Best Workplaces for Millennials
- Forbes® America's Best Employers
IND123 Basic Purpose To develop, implement, and oversee Navy Federal's enterprise Information Security Governance Program to assure the protection of member and enterprise information and assets. Develop long and short term goals and operational strategies to meet growing enterprise services by overseeing the resources, systems, and internal/external relationships to manage the enterprise Information Security Governance Program. Serve as subject matter expert regarding branch functions, systems, policies and procedures. Support executive management in developing and executing strategic plans. Act as VP in the incumbent's absence.Responsibilities:• Oversee branch strategy, establish priorities and set goals; evaluate and implement standards to assure alignment with department/organizational objectives• Assure compliance with federal, state and local laws bearing on unauthorized access to member information and information security • Serve as Information Security Governance liaison with the Office of General Counsel, Compliance, Internal Audit, Information Services, Human Resources, and other business units and management teams• Establish objectives, standards and strategies for the organization regarding the implementation of Information Security Governance• Establish and monitor performance metrics, determine gaps in performance for improvements and recommend/implement changes to improve operations• Direct and review risk assessment summaries, including required regulatory risk assessments, that affect or pertain to the use of or access to member or employee confidential information• Identify and determine acceptable risk tolerance levels to establish information classification standards• Present executive management with analytical findings, recommendations and proposed policy changes to manage, mitigate, and avoid risk• Direct communication and information sharing with internal business units• Review internal business units initiatives to determine risk analysis opportunities and provide guidance for information classification and protection, and vendor management oversight• Perform supervisory/managerial responsibilities o Set direction to ensure goals and objectives align with corporate and division strategy o Select management and other key personnel; oversee talent development/succession planning o Collaborate with leadership/executive colleagues to develop/execute corporate initiatives and/or department strategy o Oversee the preparation and execution of department/division AFP o Manage merit pay in accordance with specified objectives and guidelines• Perform other duties as assignedQualifications and Education Requirements:• Bachelor's degree in Information Systems, Computer Science, Engineering, or related field, or the equivalent combination of education, training and experience• Working knowledge of NCUA and FFIEC regulations, GLBA, PCI and other information security requirements and frameworks• Working knowledge of at least one industry-leading risk management framework (e.g. OCTAVE, COBIT etc.)• Experience in leading an enterprise Information Security Governance Program• Experience in risk mitigation, strategic planning, and management of personnel• Experience with information security concepts, principles, technologies, and methods, and translating best practices in information security to operations in a risk management framework• Advanced knowledge of information technology systems, processes, and application development • Advanced organizational, planning and time management skills• Advanced research, analytical, and problem solving skills• Advanced skill developing and implementing programs in a leadership role• Advanced skill building effective relationships with all levels of staff, management, stakeholders, and vendors, through rapport, trust, diplomacy and tact• Significant experience working with internal audit and external examiners• Significant experience collaborating across organizational boundaries and building partnerships across functions• Experience in vendor management and oversight• Effective skill to influence, negotiate and persuade to reach agreeable exchange and positive outcomes• Advanced skill exercising initiative and using good judgment to make sound decisions• Advanced verbal, written, interpersonal, and presentation skills to communicate clearly and concisely technical and non-technical information to all levels of managementDesired Qualifications and Education Requirements:• Master's degree in Information Systems, Computer Science, Engineering, or related field• Professional certification in the information security sector (CRISC, CISM, CISSP, CISA)Hours: Monday - Friday, 8:00am - 4:30pmLocation: 820 Follin Lane, Vienna, VA 22180Due to COVID-19 and social distancing, this position will be temporarily working from home with plans to return to campus at the desired location listed once Navy Federal is back to normal operations. The specific logistics for returning to campus will be determined at a future date by individual leadership Equal Employment Opportunity Navy Federal values, celebrates, and enacts diversity in the workplace. Navy Federal takes affirmative action to employ and advance in employment qualified individuals with disabilities, disabled veterans, Armed Forces service medal veterans, recently separated veterans, and other protected veterans. EOE/AA/M/F/Veteran/DisabilityDisclaimerNavy Federal reserves the right to fill this role at a higher/lower grade level based on business need. An assessment may be required to compete for this position.Bank Secrecy ActRemains cognizant of and adheres to Navy Federal policies and procedures, and regulations pertaining to the Bank Secrecy Act. Vacancy expired!
