Talent.com
DIRECTOR OF CYBERSECURITY AND INFORMATION SECURITY
DIRECTOR OF CYBERSECURITY AND INFORMATION SECURITYSandia Area • Albuquerque, NM, United States
DIRECTOR OF CYBERSECURITY AND INFORMATION SECURITY

DIRECTOR OF CYBERSECURITY AND INFORMATION SECURITY

Sandia Area • Albuquerque, NM, United States
13 days ago
Job type
  • Full-time
Job description

Job Details

Job Location

Albuquerque, NM

Position Type

Full Time

Education Level

4 Year Degree

Travel Percentage

Minimal Travel

Job Shift

Day

Job Category

Information Technology

Description

At Sandia Area, every position plays a vital role in fulfilling our mission to deliver high-value banking and lending services that strengthen the financial well-being of our members and community. Each team member is expected to embody our core values of Service, Sustainability, Efficiency, Trust, Stewardship, and Growth, contributing to our vision of empowering lifelong achievement through better banking. While specific responsibilities vary by role, every position carries universal expectations aligned with its level of responsibility and authority across the organization.

As a Director at Sandia Area, you provide strategic oversight for your department, ensuring its initiatives align with organizational goals and values. You are entrusted with fostering cross-departmental collaboration, driving innovation, and modeling the accountability and stewardship necessary to achieve long-term success. Your leadership directly contributes to the credit union's ability to deliver on its mission of empowering members and the community through better banking.

Reporting directly to the Chief Information Officer, the Director of Cybersecurity and Information Security is responsible for developing, implementing, and maturing the Credit Union's cybersecurity program through strategic coordination, governance, and enterprise collaboration. This role leads through influence across IT and business units, aligning cybersecurity priorities with business strategy and risk management goals. The Director partners closely with the Chief Risk Officer to ensure a unified approach to cyber resilience, compliance, and data protection across the organization.

Duties and responsibilities

Leadership & Team Management

  • Lead by example, reinforce, and consistently uphold Sandia Area's Values : Service, Sustainability, Efficiency, Trust, Stewardship, and Growth.
  • Provide strategic leadership to department managers and teams, ensuring alignment with organizational goals and priorities.
  • Build and lead a high-performing team; set performance targets, foster a culture of continuous improvement, encourage innovation, learning, and adapting best practices to optimize performance.
  • Drive collaboration across departments to ensure cohesive strategies and shared accountability.
  • Oversee large-scale projects and initiatives, managing resources effectively and meeting organizational timelines.
  • Develop and align departmental goals with the broader organizational strategy; ensure all members of the team are meeting performance expectations.
  • Directly or indirectly manage staff to enhance professional development and personal growth; provide regular coaching, feedback, and performance evaluations.
  • Optimize resource allocation, including personnel, budget, and other resources, to maximize effectiveness while controlling costs.
  • Oversee the recruitment, interviewing, and hiring process, ensuring candidates align with the credit union's mission, values, and service culture.
  • Oversee the onboarding, training, and development of new hires, fostering a positive and growth-oriented work environment.

Cybersecurity Program Leadership

  • Establish and oversee the Credit Union's Cybersecurity Program framework, integrating standards from NCUA, FFIEC, GLBA, and NIST CSF.
  • Develop and manage a multi-year cybersecurity roadmap and maturity model.
  • Define program goals, metrics, and key risk indicators (KRIs) to measure effectiveness.
  • Coordinate implementation of cybersecurity initiatives across IT departments (Networking, Systems Administration, Applications, Support Desk, and Data Analytics).
  • Recommend updates to policies and procedures as necessary, and where necessary establish new policy procedure.
  • Partner with the Chief Risk Officer to integrate cybersecurity risk into the enterprise risk management (ERM) framework.
  • Lead cybersecurity governance activities and report regularly to executive leadership and the Board.

    • Leadership & Cross-Functional Collaboration

  • Lead through influence by coordinating with IT leadership teams to achieve cybersecurity objectives.
  • Partner with enterprise leaders to embed cybersecurity into strategic projects.
  • Serve as liaison between IT, Risk, Compliance, and Internal Audit for all cybersecurity initiatives.
  • Champion a culture of security awareness and accountability across the organization.
  • Provide cybersecurity awareness training for Sandia Area employees to promote best practices in information security.
  • Collaborate with Internal Audit and Compliance to ensure continuous improvement and audit readiness.

    • Governance, Risk, and Compliance Oversight

  • Maintain oversight of cybersecurity policies, controls, and regulatory compliance activities.
  • Ensure continuous compliance with NCUA Part 748, FFIEC CAT, GLBA, PCI DSS 4.0 and other relevant regulations.
  • Coordinate cybersecurity risk assessments, penetration testing, and control validation.
  • Lead cybersecurity exam readiness and response efforts for regulatory audits.
  • Develop and present cybersecurity risk and performance reports to the Executive Team and Board committees.

    • Security Operations Oversight

  • Oversee security monitoring, detection, and incident response operations in collaboration with IT and managed service providers.
  • Validate the effectiveness of security controls, including firewalls, SIEM, IAM, and endpoint protection systems.
  • Review vulnerability and penetration test results, ensuring remediation aligns with policy and risk tolerance.
  • Coordinate post-incident reviews to identify lessons learned and strengthen controls.

    • Vendor and Third-Party Risk Management

  • Oversee third-party cybersecurity risk management, ensuring due diligence, contract compliance, and ongoing vendor oversight.
  • Collaborate with Procurement, Legal, and Risk Management to manage vendor security reviews.
  • Represent the Credit Union externally with peers, regulators, and industry consortiums.

    • Business Continuity & Resilience Planning

  • Integrate cybersecurity response planning into enterprise Business Continuity and Disaster Recovery (BC / DR) programs.
  • Lead tabletop and simulation exercises to test incident readiness and coordination.
  • Ensure cybersecurity components of BC / DR are updated and tested regularly. Mentor and develop leaders within the department, fostering growth and succession planning.

    • Expectations of all Sandia Area employees

  • Demonstrate a strong commitment to upholding the organization's mission, vision, and values in all interactions and responsibilities.
  • Represent the credit union with professionalism, integrity, and ethical conduct at all times.
  • Maintain a thorough understanding and strict adherence to credit union regulations, compliance requirements, policies, procedures, and operational guidelines.
  • Consistently meet deadlines as assigned while ensuring accuracy, efficiency, and adherence to quality standards.
  • Foster a positive and supportive environment for both members and employees, ensuring interactions align with the credit union's mission and service philosophy.
  • Adhere to all regulatory and compliance policies, upholding the highest standards of security, confidentiality, and ethical financial practices in all interactions.
  • Maintain the confidentiality and security of information, records, and sensitive data, in compliance with credit union policies and regulatory requirements.
  • Adapt to evolving responsibilities, taking on additional duties as assigned to support the success of the organization.
  • Demonstrate a commitment to continuous learning, professional development, and staying informed on industry trends and best practices.
  • Willing to undergo background and credit checks as required by federal and state regulations.
  • Understand and comply with all policies, procedures, and legal guidelines, including adherence to the Bank Secrecy Act (BSA), Office of Foreign Assets Control (OFAC), and other applicable financial regulations.

    • Qualifications

    Knowledge, Skills, and Abilities (KSAs)

  • Deep understanding of information security governance and risk management frameworks (NIST CSF, ISO 27001, FFIEC CAT, CIS Controls).
  • Proven ability to design, implement, and mature an enterprise cybersecurity program.
  • Strong knowledge of financial sector regulations including NCUA, FFIEC, GLBA, and PCI DSS.
  • Demonstrated experience in cybersecurity risk quantification, budgeting, and performance measurement.
  • Ability to communicate complex technical and risk issues clearly to executives and the Board.
  • Experience leading cross-functional initiatives through influence and collaboration.
  • Strong project management, organizational, and strategic planning skills.
  • Excellent written, verbal, and presentation communication abilities.
  • Awareness of data privacy and emerging regulatory trends affecting member information
  • Visionary leadership and strategic planning skills to align departmental initiatives with organizational objectives.
  • Ability to strategically plan department objectives with levels of senior management.
  • Knowledge of Credit Unions or financial institutions and their products, services, and operations.
  • Knowledgeable regarding products, services, and processes within the consumer and indirect lending areas.
  • Strong collaborative skills to foster cross-departmental partnerships.
  • Ability to oversee large-scale projects and manage resources effectively.
  • Advanced communication skills to engage with stakeholders and present ideas clearly.
  • Analytical skills to assess departmental performance and implement improvements.
  • Proven managerial experience and ability to lead and mentor teams.
  • Willingness to engage in difficult situations using outstanding interpersonal skills and emotional intelligence.
  • Exceptional time management and organizational skills, with the ability to prioritize tasks, manage multiple responsibilities, and adapt to a fast-paced environment.
  • Passionate about teamwork and having a positive influence on others; ability to work independently and demonstrate attention to detail.
  • Proactive in seeking professional growth, embracing both formal and informal development opportunities, and demonstrating adaptability to new responsibilities.
  • Team-oriented with a strong collaborative mindset, actively supporting team members and contributing to a positive and high-performing environment.
  • Proficient in Microsoft Office, including Outlook, Word, Excel, and PowerPoint.
  • Ability to perform essential functions, including the ability to lift up to 20 lbs. as needed.

    • Minimum Education and Experience Requirements

  • Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field required; equivalent experience may be considered.
  • Minimum of 7 years in IT or cybersecurity leadership roles, with proven program management experience.
  • Professional certifications such as CISSP, CISM, CISA, or equivalent strongly preferred.
  • Experience in the financial services industry or credit union sector preferred.
  • Please submit an employment application to www.sandia.org / careers

    • Sandia Area Federal Credit Union (SAFCU) is an Equal Opportunity Employer.

    SAFCU provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

    Create a job alert for this search

    Director Of Cybersecurity • Albuquerque, NM, United States

    Related jobs
    Security Shift Lead

    Security Shift Lead

    Securitas • Albuquerque, New Mexico, USA
    Full-time
    Security - Shift Lead Full Time ABQ NM.Former Military / Law Enforcement Encouraged To Apply!!.Securitas plays an essential role for our clients and in society. The Lead Officer position helps mai...Show more
    Last updated: 18 days ago • Promoted
    Target Security Specialist

    Target Security Specialist

    Target • Rio Rancho, New Mexico, USA
    Part-time
    Starting Hourly Rate / Salario por Hora Inicial : $17.Working at Target means helping all families discover the joy of everyday life. We bring that vision to life through our values and culture.They ...Show more
    Last updated: 12 days ago • Promoted
    Customs and Border Protection Officer - Experienced

    Customs and Border Protection Officer - Experienced

    U.S. Customs and Border Protection • North Valley, NM, United States
    Full-time
    Customs and Border Protection Officer (CBPO).Customs and Border Protection (CBP) offers those interested in a career in law enforcement an exceptional opportunity to work with an elite team of high...Show more
    Last updated: 30+ days ago • Promoted
    CERTIFIED OR TECH

    CERTIFIED OR TECH

    University of New Mexico - Hospitals • Corrales, NM, US
    Full-time
    Compensation for this role is based on a number of factors, including but not limited to experience, education, and other business and organizational considerations. Department : Operating Room - SRM...Show more
    Last updated: 30+ days ago • Promoted
    Sr. Information Systems Security Officer (Engineer Info Assurance 5) 26005

    Sr. Information Systems Security Officer (Engineer Info Assurance 5) 26005

    Huntington Ingalls Industries, Inc. • Albuquerque, New Mexico, USA
    Full-time
    Employment Type : Full Time / Salaried / Exempt.Anticipated Salary Range : $128674.Mission Technologies Global Security (GS) group comprises live virtual constructive (LVC) solutions; fleet sustainment; nu...Show more
    Last updated: 14 days ago • Promoted
    Information Security Engineer

    Information Security Engineer

    Presbyterian Healthcare Services • Albuquerque, New Mexico, USA
    Full-time
    The person in this postiion will under general supervision oversees the design purchase installation and support of information security systems. Works on problems of diverse scope where analysis of...Show more
    Last updated: 13 days ago • Promoted
    25-26 Campus Security Aide POOL

    25-26 Campus Security Aide POOL

    Rio Rancho Public Schools • Rio Rancho, New Mexico, USA
    Full-time +1
    This is a Short Term job posting for the 2025-2026 School Year.This posting will create a pool of applicants.As openings become available these applications will be reviewed and considered for inte...Show more
    Last updated: 30+ days ago • Promoted
    Director of Cyber Security

    Director of Cyber Security

    LHH Recruitment Solutions • Albuquerque, NM, United States
    Full-time
    LHH is partnering with a New Mexico-based organization to hire a Director of Cybersecurity & Information Security.We're seeking an experienced cybersecurity leader to build, mature, and oversee a f...Show more
    Last updated: 2 days ago • Promoted
    Cybersecurity Manager Information Systems Security Manager (ISSM) Kirtland AFB, NM

    Cybersecurity Manager Information Systems Security Manager (ISSM) Kirtland AFB, NM

    Serco • Albuquerque, New Mexico, USA
    Full-time +1
    Cybersecurity Manager / Information Systems Security Manager (ISSM).CTS Distributed Mission Operations Center Infrastructure Development and Engineering (DMOC-IDE) team at.Kirtland Air Force Base i...Show more
    Last updated: 13 days ago • Promoted
    Program Security Subject Matter Expert (SME), Special Access Programs (SAP)

    Program Security Subject Matter Expert (SME), Special Access Programs (SAP)

    General Dynamics Information Technology • Albuquerque, NM, United States
    Full-time
    Clearance Level Must Currently Possess : .Clearance Level Must Be Able to Obtain : .Computer Security, Information Assurance, Information Security, Security Information, System Security.The Program Sec...Show more
    Last updated: 2 days ago • Promoted
    Information Security Manager

    Information Security Manager

    Utah State University Space Dynamics Laboratory • Albuquerque, NM, United States
    Full-time
    Information Security Manager - Albuquerque, NM.SDL Field Office - Albuquerque, New Mexico.Information Security - Manager. October 2, 2025About the RoleThe Space Dynamics Laboratory (SDL) is seeking ...Show more
    Last updated: 30+ days ago • Promoted
    Sr. Information Systems Security Officer (Engineer Info Assurance 5)

    Sr. Information Systems Security Officer (Engineer Info Assurance 5)

    Huntington Ingalls Industries • Albuquerque, NM, United States
    Full-time
    Employment Type : Full Time / Salaried / Exempt.Anticipated Salary Range : $128,674.This opportunity resides with Global Security (GS). Mission Technologies’ Global Security (GS) group comprises live, vir...Show more
    Last updated: 5 days ago • Promoted
    Director of Human Resources

    Director of Human Resources

    Belen Consolidated School District • Belen, New Mexico, USA
    Full-time
    Belen Consolidated Schools Administration.Valid New Mexico Administrator License (or eligible).Minimum three (3) years administrative / supervisory experience. Demonstrated knowledge of : EEOC ADA FMLA...Show more
    Last updated: 16 days ago • Promoted
    Protective Service Officer

    Protective Service Officer

    Diversified Protection Corporation • Albuquerque, NM, United States
    Permanent
    This position is under the direct supervision of the Captain and is responsible for the protection, safeguarding, and security of assets, personnel, customers, and all visitors.Read and understand ...Show more
    Last updated: 30+ days ago • Promoted
    Cyber Security Engineer

    Cyber Security Engineer

    Space Systems Integration • Albuquerque, New Mexico, USA
    Full-time
    Space Systems Integration (SSI) is a fast-growing engineering company that provides aerospace solutions to a variety of government and commercial customers. Our employees are forward-thinking self-d...Show more
    Last updated: 9 days ago • Promoted
    Cybersecurity Information Systems Security Engineer, SME

    Cybersecurity Information Systems Security Engineer, SME

    Keenbee Talent Soluitions • Albuquerque, NM, United States
    Full-time
    Active TS / SCI Clearance Required.We are seeking a highly motivated and well-qualified professional to join our team as a Cybersecurity Information Systems Security Engineer (SME).This role offers t...Show more
    Last updated: 5 days ago • Promoted
    Manager, Security Governance Risk and Compliance

    Manager, Security Governance Risk and Compliance

    KPMG • Albuquerque, NM, United States
    Full-time
    Known for being a great place to work and build a career, KPMG provides audit, tax and advisory services for organizations in today's most important industries. Our growth is driven by delivering re...Show more
    Last updated: 11 days ago • Promoted
    Information Systems Security Engineer (ISSE) (TEMPEST), TS / SCI

    Information Systems Security Engineer (ISSE) (TEMPEST), TS / SCI

    Blue Sky Innovators Inc • Albuquerque, NM, United States
    Full-time
    Serve as the Program Office's information security professional responsible for managing all aspects of an organization's information security system, including researching, testing, training, and ...Show more
    Last updated: 5 days ago • Promoted