girl looking into her desktop
Back to search results

Core Technologies BISO Exec

Chicago, Illinois;

Job Description:

Global Information Security (GIS) is responsible for protecting bank information systems, confidential and proprietary data, and customer information.  GIS develops the bank’s Information Security strategy and policy, manages the Information Security program, identifies and addresses vulnerabilities and operates a global security operation center that monitors, detects and responds to cybersecurity incidents.
 
Role Description:
The BISO Information Security Executive will work closely with Executives and Leaders across the newly formed Global Technology Core Technologies Vertical.   Key technology and functions will include but not be limited to Global Information Security, Core Technology Infrastructure, Data Management Technology, Enterprise Architecture and Engineering and Employee Experience Technology.   The Executive will lead a team of Information Security professionals to develop a strong understanding of the business in order to have specialized information security risk-based discussions.   This relationship will ensure a focus on the right risk priorities and act as the day-to-day Security Executive providing guidance on Information Security topics, policies, and controls impacting all aspects of our Core Technology Functions.  The BISO Executive is expected to become a member of various Technology Senior Leadership Team(s).

Key Responsibilities:
• Serves as an Information Security subject matter expert and participates in  and lead the development, implementation and maintenance of information security for the line of business (LOB)
• Provides guidance and advocacy regarding the prioritization of LOB investments that impact information security
• Advises Senior LOB management on risk issues related to information security and recommends actions in support of the bank's wider risk management and compliance programs
• Acts as a primary contact to the LOB during information security incidents
• Monitors information security trends internal and external to the bank and keeps LOB leadership informed about information security-related issues and activities with potential impact to the organization

Risk Management:
• Ensures compliance with policies and laws Risk Management Drives GIS/LOB risk deliverables
• Collaborates with risk partners on info security critical priorities
• Participates in senior LOB specific Risk Management & Business Continuity Routines
• Identifies and measures global information security (GIS) controls on most critical business processes or channels
• Drives required risk culture and partnership with peer technology teams and supported LOB

Leadership/Strategy:
• Manages and influences outcomes based on expertise and business knowledge to achieve the right risk based decisions
• Builds strong line of business and partner relationships
• Drives agreement on key GIS priorities for the line of business
• Participates in key operating routines to drive information security risk strategy
• Leads a team to help drive strategic BISO priorities across the line of business

Role Qualifications
• Information Security & Technology professional with 10+ years of experience
• 5 years of risk management experience with proven ability to effectively apply risk principles to challenging business situations
• Strong leadership skills and qualities which enable you to work with peers and various levels of management
• Subject matter expertise in application security, vulnerability testing and development of risk appetite
• Ability to build strong Partner relationships with peer technology groups and supported LOB
• Possess strong / experienced application development and/or application security background; with solid knowledge of SDLC from design, testing, deployment to post-production and the different risk elements associated with each step.
• Has prior experience in Information Security tools, practices and controls including but not limited to Vulnerability Management, Incident Management, Platform Security Testing, Governance Risk and Compliance.
• Ability to partner, drive direction, make and communicate decisions across organizational boundaries
• Ability to influence horizontally and vertically across the organization and with diverse audiences with varying degrees of technical understanding
• Proven executive presentation and communication skills - Ability to communicate complex information in simple terms (oral and written)
• Excellent influencing and problem resolution skills
• Prior experience working with 2nd/3rd line functions as well as external regulators.

Enterprise Job Description:  Responsible for providing information security expertise and strong business acumen to executive-level stakeholders. Executes decision making authority and establishes vision and direction for the organization. Partners with line of business executives, key stakeholders, vendors and/or external parties to inform security risk-based decisions. Ensures teams and partners are executing Secure by Design efforts effectively and efficiently. Typically has over 10 years of relevant experience including managing large teams, perhaps globally.

Job Band:

H3

Shift: 

1st shift (United States of America)

Hours Per Week:

40

Weekly Schedule:

Referral Bonus Amount:

0

Job Description:

Global Information Security (GIS) is responsible for protecting bank information systems, confidential and proprietary data, and customer information.  GIS develops the bank’s Information Security strategy and policy, manages the Information Security program, identifies and addresses vulnerabilities and operates a global security operation center that monitors, detects and responds to cybersecurity incidents.
 
Role Description:
The BISO Information Security Executive will work closely with Executives and Leaders across the newly formed Global Technology Core Technologies Vertical.   Key technology and functions will include but not be limited to Global Information Security, Core Technology Infrastructure, Data Management Technology, Enterprise Architecture and Engineering and Employee Experience Technology.   The Executive will lead a team of Information Security professionals to develop a strong understanding of the business in order to have specialized information security risk-based discussions.   This relationship will ensure a focus on the right risk priorities and act as the day-to-day Security Executive providing guidance on Information Security topics, policies, and controls impacting all aspects of our Core Technology Functions.  The BISO Executive is expected to become a member of various Technology Senior Leadership Team(s).

Key Responsibilities:
• Serves as an Information Security subject matter expert and participates in  and lead the development, implementation and maintenance of information security for the line of business (LOB)
• Provides guidance and advocacy regarding the prioritization of LOB investments that impact information security
• Advises Senior LOB management on risk issues related to information security and recommends actions in support of the bank's wider risk management and compliance programs
• Acts as a primary contact to the LOB during information security incidents
• Monitors information security trends internal and external to the bank and keeps LOB leadership informed about information security-related issues and activities with potential impact to the organization

Risk Management:
• Ensures compliance with policies and laws Risk Management Drives GIS/LOB risk deliverables
• Collaborates with risk partners on info security critical priorities
• Participates in senior LOB specific Risk Management & Business Continuity Routines
• Identifies and measures global information security (GIS) controls on most critical business processes or channels
• Drives required risk culture and partnership with peer technology teams and supported LOB

Leadership/Strategy:
• Manages and influences outcomes based on expertise and business knowledge to achieve the right risk based decisions
• Builds strong line of business and partner relationships
• Drives agreement on key GIS priorities for the line of business
• Participates in key operating routines to drive information security risk strategy
• Leads a team to help drive strategic BISO priorities across the line of business

Role Qualifications
• Information Security & Technology professional with 10+ years of experience
• 5 years of risk management experience with proven ability to effectively apply risk principles to challenging business situations
• Strong leadership skills and qualities which enable you to work with peers and various levels of management
• Subject matter expertise in application security, vulnerability testing and development of risk appetite
• Ability to build strong Partner relationships with peer technology groups and supported LOB
• Possess strong / experienced application development and/or application security background; with solid knowledge of SDLC from design, testing, deployment to post-production and the different risk elements associated with each step.
• Has prior experience in Information Security tools, practices and controls including but not limited to Vulnerability Management, Incident Management, Platform Security Testing, Governance Risk and Compliance.
• Ability to partner, drive direction, make and communicate decisions across organizational boundaries
• Ability to influence horizontally and vertically across the organization and with diverse audiences with varying degrees of technical understanding
• Proven executive presentation and communication skills - Ability to communicate complex information in simple terms (oral and written)
• Excellent influencing and problem resolution skills
• Prior experience working with 2nd/3rd line functions as well as external regulators.

Enterprise Job Description:  Responsible for providing information security expertise and strong business acumen to executive-level stakeholders. Executes decision making authority and establishes vision and direction for the organization. Partners with line of business executives, key stakeholders, vendors and/or external parties to inform security risk-based decisions. Ensures teams and partners are executing Secure by Design efforts effectively and efficiently. Typically has over 10 years of relevant experience including managing large teams, perhaps globally.

Shift:

1st shift (United States of America)

Hours Per Week: 

40

Learn more about this role

Full time

JR-21043026

Band: H3

Manages People: Yes

Travel: No

Manager:

Talent Acquisition Contact:

Michael Maples

Referral Bonus:

0

Colorado job seekers

Colorado pay range:

$175,000 - $285,000 annualized salary, offers to be negotiated based on experience, education and skill set.

Discretionary incentive eligible

This role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.

Benefits

This role is currently benefits eligible. We provide industry-leading benefits, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.