AVP - Information Security Assurance (Hybrid)

SWBC is seeking a talented individual to support the CISO directly in two primary areas: operations management, and information security assurance. This individual will oversee information security team communications, planning, process improvement, and leadership team execution to deliver key projects and initiatives across the company. In addition, the will also support the Company's contractor and supplier management lifecycle as a key member of the review and approval team. A successful individual will possess strong leadership qualities and is a detail-oriented, continuous improvement minded, organized, analytical, and critical thinker. In addition, the AVP is an experienced security practitioner with deep knowledge of vendor, supplier, supply chain, and acquisition risk and controls.

Why you'll love this role:

In this position, you will use your hard-earned leadership and information security skills, business acumen, and technical knowledge. You will work with some of the top information security, technology, and business professionals in the financial services industry. As part of an agile and innovative team, you will work closely with leaders and interact with the industry's top partners. You will support acquisition and implementation processes for cutting-edge FINTECH and business technology that use cloud technology, robotic processing, machine learning, and more. Beyond amazing career opportunities and singular experiences, you will have the opportunity to help lead and mentor a team that is diverse in all aspects; passionate about collaboration; leverages amazing technology and automation; laughs often; and celebrates our success as a team. Our leaders recognize that empowerment, autonomy, work-life balance, professional development, continuous improvement, and a commitment to shared values are key enablers of our success. We work hard, strive to improve each day, take care of each other, and deliver positive outcomes daily.

Essential duties include the following:

• Develops and assembles team goals for approval and measures and reports progress to the CISO.
• Responsible for the day-to-day management of the information security business operations, including management of budget, vendors, staffing, planning, operating procedures, and projects.
• Supports the CISO in setting the overall strategy of the team and in day-to-day operations and monitors for and identifies priorities that require the CISO's focus.
• Coordinators executive-level decision-making and project execution, ensuring the security team has the necessary resources, capacity, and direction to meet its objectives.
• Owns and continuously improves the team's operating cadence (e.g., team meetings, quarterly reviews, presentations, team planning, training, performance monitoring, budget execution, vendor management) to maximize the team's operational efficiency and effectiveness.
• Leads risk-informed security reviews of technology products and services to support business operations and identifies security controls to lower risk to an acceptable level.
• Acts as CISO's delegate to approve security reviews of technology products and services within the contract and supplier review process.
• Ensures required security controls are implemented, tested, and documented prior to full acceptance of the product or service and full transition to production status.
• Supports audits and assessments to demonstrate compliance with applicable laws, rules, standards, and contractual obligations.
• Works with the team leaders to determine critical project milestones and the resources required to achieve those milestones and that there is clear ownership and follow-through on deliverables.
• Develops and coordinates internal and external communications with stakeholders and presents publication-ready communications to the CISO for final approval and execution.
• Leads team stand-up meetings to understand and manage work-in-progress and emerging requirements by owning the planning, tracking, agenda, and notes. Transforms discussions and thoughts from meetings into action items and measurable deliverables.
• Manages and owns the execution of projects that require cross-team collaboration and delivery while maintaining visibility of the team's workload, performance, and delivery.
• Develops and manages methods to streamline and enhance existing processes and programs by adopting leading practices and automation to improve efficiency and delivery.
• Evaluates processes to identify improvement opportunities and coordinates resources to drive positive change and deliver outcomes that are critical to the success of the business.
• Implements and monitors performance indicators and metrics that help evaluate the performance and delivery of information security services to the Company.

Serious candidates will possess the minimum qualifications:

• Bachelor's degree in Cybersecurity, CS, or MIS or equivalent with focus on cybersecurity, business law, management, and procurement.
• 10+ years of professional management experience.
• 5+ years of experience in security risk management or similar capacity.
• Demonstrated ability to use structured problem solving, process engineering, outcome-oriented execution to drive key initiatives in support of and on behalf of the diverse projects and teams
• Meticulous attention to detail to produce executive level communications with high analytical capability and rigor.
• Exceptional leadership, mentorship, and motivational skills.
• Demonstrated drive for results through a history of achievements and strategy.
• History of driving multiple, concurrent complex projects requiring timely delivery, strong communication, and coordination with multiple stakeholders.
• Strong orientation to team culture and cross-functionality.
• Comprehensive knowledge of process improvement and business process engineering.
• Outstanding communication and presentation development skills.
• Ability to multitask and understand how to prioritize tasks based on importance vs. immediacy.
• Ability to work with a diverse range of stakeholders across various functional disciplines to understand their respective challenges and motivations.
• Comfortable working in time-sensitive and rapidly evolving situations.
• Mature judgment and discretion in keeping sensitive information confidential.
• Pro-active and solution-oriented mindset; Problem solver and self-starter (critical thinking is key)
• Excellent organization and attention to detail.
• Incredible communication skills clarity, timeliness, and follow-through.
• Ability to work independently and prioritize multiple objectives simultaneously.
• Advanced understanding of MS PowerPoint, Excel, and Word (or equivalent) to develop executive presentations and documents.
• CISSP, CISM, CCSP, or CCSK required.
• PMP, Lean Six Sigma, SCRUM certifications are highly desired.
• Must be willing to obtain the CCSP or CCSK and Lean Six Sigma certifications within 6 months of hire.

SWBC offers*:

• Competitive overall compensation package
• Work/Life balance
• Employee engagement activities and recognition awards
• Years of Service awards
• Career enhancement and growth opportunities
• Emerging Professionals and Mentor Program
• Continuing education and career certifications
• Variety of healthcare coverage options
• Traditional and Roth 401(k) retirement plans
• Lucrative Wellness Program

*Based upon employee eligibility

Additional Information:

SWBC is a Substance-Free Workplace and requires pre-employment drug testing.

Please note, SWBC does not hire tobacco users as allowed by law.

To learn more about SWBC, visit our website at www.SWBC.com. If interested, please click the appropriate apply button.