At Customers Bank, we believe in working hard, working smart, working together to deliver memorable customer experiences and having fun. Our vision, mission, and values guide us along our path to achieve excellence. Passion, attitude, creativity, integrity, alignment, and execution are cornerstones of our behaviors. They define who we are as an organization and as individuals. Everyone is encouraged to have personal development plans. By doing so, our team members are on their way to achieve their highest potential and be successful in their personal and professional lives.
Work Location: Malvern, PA – Hybrid, coming into the office at least 3 days per week with Monday, Tuesday, and Thursday being set office days. Note: If within a 50-mile radius of a Customers Bank location, the expectation is hybrid.
Who is Customers Bank?
Founded in 2009, Customers Bank is a super-community bank with over $22 billion in assets. We believe in dedicated personal service for the businesses, professionals, individuals, and families we work with.
What you’ll do:
The CISO will be responsible for establishing and maintaining the enterprise vision, strategy, and program to ensure information assets and technologies are adequately protected. This role is crucial for managing risk, implementing security measures, and ensuring compliance with various regulations and standards.
Key Responsibilities:
1. Leadership and Strategy:
o Develop and implement a strategic, long-term information security strategy and roadmap to ensure that information assets are adequately protected.
o Lead the information security function across the company to ensure consistent and high-quality information security management in support of the business goals.
o Establish and enforce policies, procedures, and standards to enhance the security posture of the organization.
o Oversee tools and platforms implementations to ensure a high degree of efficacy in both implementation and operation.
2. Risk Management:
o Identify, assess, and prioritize information security risks. Collaborate with stakeholders to mitigate risks to acceptable levels.
o Oversee the development and execution of risk management strategies and plans.
o Perform technology risk assessments on the bank’s information system and business processes, both independently and in collaboration with the Risk Management Group.
3. Security Operations:
o Direct the design and implementation of security systems and controls to protect the organization's information and technology assets.
o Manage and lead incident response activities, ensuring timely resolution and root cause analysis of security incidents.
o Ensure accurate and complete reporting on the information security program for the bank to the Board of Directors and internal committees.
4. Secure Application Development:
o Ensure appropriate frameworks and testing is in place for application security policies and standards, inclusive of access control and identity management, threat modeling, secure coding practices, encryption, data classification and monitoring.
5. Compliance and Governance:
o Ensure compliance with relevant security standards and regulations (e.g., GDPR, PCI-DSS, etc.).
o Develop specific information security guidelines and policies to meet operational and regulatory requirements.
6. Communication and Training:
o Communicate security risks and solutions to executive management, the board of directors, and employees.
o Oversee the security awareness programs to educate employees about information security and their role in protecting the organization's assets.
o Execute tabletop exercises to ensure preparedness for threat responses, communications, and crisis management.
7. Collaboration and Innovation:
o Work closely with the IT department and other stakeholders to ensure seamless integration of security controls into IT infrastructure and operations.
o Stay current with emerging security trends, threats, and technology solutions to ensure the organization maintains a robust security posture.
What do you need?
* Bachelor's degree in Computer Science, Information Security, or a related field. Advanced degree preferred.
* Minimum of 10 years of experience in information security and IT roles, with at least 5 years in a senior leadership position.
* Knowledgeable with industry specific banking regulations and guidelines (FFIEC), SEC requirements, data privacy regulations (e.g. GLBA and CCPA), and industry standards as well as experience running regulatory remediation programs as the primary interface with Regulators.
* Professional security management certification (e.g., CISSP, CISM, CISA) is highly desirable.
* Demonstrated ability to develop and execute an information security strategy and roadmap.
* Strong knowledge of regulatory requirements and information security management frameworks.
* Proven experience in managing security operations, incident response, crisis management, and risk management.
* Exceptional leadership, communication, and interpersonal skills.
* Ability to interact with and influence all levels of the organization, including executive management and the board of directors.
* High level of integrity, trust, and a strong commitment to the organization's mission and values.
Customers Bank is an equal opportunity employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.
We also provide “reasonable accommodations”, upon request, to qualified individuals with disabilities, in accordance with the Americans with Disabilities Act and applicable state and local laws.
Diversity Statement:
At Customers Bank, we believe in working smart, working together, and having fun while delivering innovative solutions and memorable experiences for our customers. We are committed to the continual advancement of a culture which reflects the value we place on diversity, equity, and inclusion. We honor the diverse experiences, perspectives, and identities of our team members, and we recognize that it is their passion, creativity, and integrity that drives our success. Step into your future with us! Let’s take on tomorrow.
#J-18808-Ljbffr