Chief Information Security Officer

Overview

Sunflower Bank, N.A. is looking for a highly motivated individual to fill the position of a full-time Chief Information Security Officer at our Denver, CO location.

Hybrid options available.

Location : Denver, CO

The Chief Information Security Officer (CISO) leads the Information Technology (IT) Risk and Governance functions of the company and is responsible for defining and executing the cybersecurity strategy for the organization to manage risk, protect client data and company resources. The IT Risk and Governance team manages areas including Information Security, Business Continuity Management, Change Management, Data Privacy, and supports regulatory compliance and IT policies, procedures and documentation. The CISO will work with business and IT leaders to provide and maintain solutions which meet business and technical requirements by applying new and existing security technologies and solutions to solve business needs. The CISO reports to the Bank's Chief Risk Officer and may oversee physical security as part of IT risk and governance accountability.

Primary Responsibilities

• Establish and maintain the enterprise vision, strategy, and program to ensure information assets, technologies, and data are protected.
• Define and administer the strategies and policies associated with Information Security and IT Compliance.
• Ensure the adequacy of security measures to protect the company's information systems to meet business needs and satisfy regulatory requirements and guidelines.
• Provide oversight of the team performing Information Security Functions including log monitoring, threat analysis, vulnerability management, impact analysis, and recommend action or remediation plans.
• Develop training and awareness to support information security and IT Risk objectives at various levels throughout the company.
• Work closely with IT Management to ensure implementation of appropriate IT controls, processes, procedures, systems, and security technologies.
• Work closely with Enterprise Risk Management to align IT Risk and Governance with the overall company risk program.
• Participate in tactical groups, committees, teams, and other meetings as needed to facilitate the integration and recognition of IT Risk and Governance Benefits into business objectives.
• Stay current on new developments in IT risk practices, technologies, and regulatory changes and anticipate organizational modifications.
• May be required to fulfill responsibilities specific to Response and Recovery in support of established Emergency Management, Emergency Response, Business Recovery, and Crisis Management functions.
• Responsible for supporting IT Response, Business Continuity, and Disaster Recovery processes as they pertain to the continuity of operations for the enterprise.
• Responsible for performing periodic evaluations or assessments to ensure controls specific to data protection and GLBA compliance are effective and efficient.
• Responsible for creating and defining policy related to the physical security controls implemented across the company.
• Perform the job in accordance with applicable industry laws and regulations as well as the policies and procedures established by the company.
• Uphold Fair and Responsible Banking practices and Code of Ethics and Conduct guidelines.
• Understand and participate in the Bank's Community Reinvestment Act program.
• Perform other duties as assigned.

Education / Experience

Benefits

EOE / AA : Minorities / Females / Disabled / Vets

Open until filled; early application encouraged. This vacancy announcement may be used to fill similar positions within 90 days.

If you are a California resident, you may be entitled to certain rights regarding your personal information, which is information that identifies, relates to, or could reasonably be linked with a particular California resident or household. Additional information about our data collection practices and location specific notices is available in our privacy policy.

J-18808-Ljbffr