Information Security Governance Risk & Compliance Manager
Teachers Federal Credit UnionHauppauge, NY, United States30+ days ago
Job type
- Full-time
- Part-time
Job descriptionSecurity Awareness Training : Develop, coordinate, and deliver ongoing security awareness training programs to educate employees on security best practices and risk mitigation techniques. Anti-Phishing Campaigns : Plan, manage, and execute anti-phishing campaigns to assess and improve employee awareness and the organization's resilience against phishing attacks. Risk Assessments : Manage planning and execution of regular risk assessments, ensuring the identification, evaluation, and mitigation of security risks across the organization. Vendor Security Reviews : Manage and review vendor security assessments, including the evaluation of SOC reports, to ensure third-party risk is managed in accordance with security policies and standards. Governance and Compliance : Oversee information security governance processes, ensuring adherence to relevant regulatory frameworks, industry standards, and internal policies. Lead compliance activities related to security controls, data privacy, and industry regulations. Audit Oversight : Manage the execution and oversight of internal and external audits, ensuring security and compliance audits are conducted according to the established audit schedule. Collaborate with auditors to address security-related audit findings and ensure timely remediation of issues. Day-to-Day Information Security Activities : Handle day-to-day information security activities, including incident management, reporting, and compliance tracking, ensuring that all aspects of the security program are functioning optimally. Reporting & Metrics : Provide regular updates and reports to senior leadership on the effectiveness of security programs, compliance status, audit results, and risk mitigation efforts. Develop metrics to track progress and demonstrate the effectiveness of security initiatives. Continuous Improvement : Stay informed on the latest security threats, trends, and technologies. Recommend and implement best practices for improving information security governance, compliance, and audit preparedness. Paid time off for vacation, personal days, and holidays Fully-funded pension plan 401(k) company contribution Teachers pays 100% of Dental & Vision premium Tuition reimbursement is offered to full-time employees Exclusive employee discount of 0.96% APR on credit card loans and a 1.00% APR on all other loans through Teachers
Description
Join Our Team
For over 70 years, Teachers Federal Credit Union has been committed to guiding members toward building a strong financial foundation today for a better tomorrow. Named one of America's Best-In-State Credit Unions by Forbes Magazine in 2022, Teachers has grown into one of the leading credit unions in the United States. As we broaden our national reach, we will continue to ensure that Teachers is a Best Place to Bank and a Best Place to Work. Teachers offers a variety of exciting career opportunities ranging from part-time and full-time staffers to executive leadership roles.
Summary :
The Information Security Governance Risk & Compliance Manager is responsible for managing, planning, and executing security initiatives related to governance, risk management, compliance, and audit oversight. The Information Security Governance Risk & Compliance Manager oversees anti-phishing campaigns, security awareness training, risk assessments, vendor security reviews, and managing audit activities related to security governance and controls.
Education and / or Experience :
- Bachelors degree or a minimum eight years directly related experienced
- Minimum five of 5 years of experience in information security Governance, Risk, and Compliance required
- Managing complex security programs required
- CISSP, CISM, CRISC, or similar preferred
- Experience with security tools, technologies, and risk management platforms required
- Proven track record of managing and executing information security programs, including anti-phishing campaigns, risk assessments, and security awareness training.
- Strong understanding of regulatory frameworks and industry standards (GDPR, CCPA, NIST, ISO 27001, SOC 2, etc.).
- Experience conducting vendor security assessments and reviewing SOC reports.
- Solid knowledge of information security principles, including risk management, incident response, and security controls.
- Knowledge of data privacy regulations
- Experience with a variety of ITGRC tools such as ServiceNow and RSA Archer and others.
- Proven experience in audit oversight, managing both internal and external audit processes, and addressing audit findings related to information security.
- Excellent communication skills, with the ability to articulate complex security topics to both technical and non-technical stakeholders.
- Strong analytical and problem-solving skills, with attention to detail and the ability to drive continuous improvement in security processes.
- Ability to work independently and manage multiple projects simultaneously.
Job Responsibilities :
Benefits of Joining the Teachers Team :
We provide a competitive compensation and benefits package that includes, but is not limited to :
The good faith range for this position is $118,250 - $147,850 annually. This range is an estimate, based on potential employee qualifications and operational needs. The salary may vary above and below the stated amounts, as permitted by applicable law.
All candidates will be subject to a background check, credit check, and drug test to determine employment eligibility.
To learn more about Teachers and to view a full list of our job opportunities please visit
Click here to view : California Privacy Notice
#LI-KM
Create a job alert for this search
Information Security Risk Compliance Manager • Hauppauge, NY, United States
Related jobs
I am writing to you regarding the.Information Security Risk Compliance Manager.I have mentioned the job Description below for your review.
Please let me know if you are interested and send me your m...Show moreLast updated: 17 hours ago
A company is looking for a Senior Privacy & Compliance Manager to advance enterprise-wide privacy, security, and compliance programs.
Key Responsibilities Manage cross-functional privacy, security...Show moreLast updated: 1 day ago
FourLeaf's ultimate goal is to provide the best-in-class member and employee experience, and it all begins with two things : hiring incredible people and giving them a great place to work.The Senior...Show moreLast updated: 7 hours ago A company is looking for a Director, IDD Incident Management and Quality Outcomes, Performance-Based Contracting.Key Responsibilities Oversee the full lifecycle of incident management, including ...Show moreLast updated: 4 days ago A company is looking for a Data Center Security Manager, Compliance, Risk Management.Key Responsibilities Manage the compliance, security, and risk management program at the Data Center, includin...Show moreLast updated: 1 day ago 
To be eligible to enlist in the U.Navy, candidates must be between the ages of 18-34.At any given moment, hundreds of complex networked computer systems are operating in tandem to keep ships and su...Show moreLast updated: 30+ days ago To be eligible to enlist in the U.Navy, candidates must be between the ages of 18-34.These careers bring the expertise in all facets of Information Operations, making sure our fleet is capitalizing...Show moreLast updated: 30+ days ago 
At EisnerAmper, we look for individuals who welcome.EisnerAmper is looking to hire a.Risk and Compliance Services practice as a dedicated member of the National Security Advisory services team.The ...Show moreLast updated: 30+ days ago A company is looking for a Security Manager to lead security and privacy programs.Key Responsibilities Lead security and privacy compliance programs to achieve and maintain critical certification...Show moreLast updated: 1 day ago A company is looking for a Security Incident Communications Manager.Key Responsibilities Develop and maintain communication plans for various security incident types Coordinate with the incident...Show moreLast updated: 2 days ago A company is looking for an Information Security Analyst.Key Responsibilities Design and architect SailPoint solutions Implement and integrate SailPoint systems Manage identity lifecycle and en...Show moreLast updated: 30+ days ago A company is looking for a Director of Information Security, Identity and Access Management.Key Responsibilities Lead a team in the evolution and operationalization of the Identity and Access Man...Show moreLast updated: 1 day ago 
Northeastern United States (Hybrid).Collaborate with technology and risk management teams to enhance security performance.
Maintain a formal information security controls framework.Represent cyberse...Show moreLast updated: 30+ days ago A company is looking for a Senior Manager, Application Security to lead their Application Security program.Key Responsibilities Manage and grow the Application Security, Vulnerability Management,...Show moreLast updated: 2 days ago A company is looking for a Senior Information Security Analyst in the Information Technology field.Key Responsibilities Lead complex incident response investigations and forensic analysis Conduc...Show moreLast updated: 30+ days ago A company is looking for a Senior Information Security Analyst.Key Responsibilities Conduct investigations of suspected security and privacy incidents and coordinate with relevant departments Mo...Show moreLast updated: 6 hours ago A company is looking for an IT Information Security Manager.Key Responsibilities : Manage the team responsible for the security of the organization's systems and information assets Oversee the de...Show moreLast updated: 30+ days ago 
Known for being a great place to work and build a career, KPMG provides audit, tax and advisory services for organizations in today's most important industries.
Our growth is driven by delivering re...Show moreLast updated: 2 days ago
- Promoted
- New!
Information Security Risk Compliance Manager
NYC IT IncMassapequa Park, NY, USFull-time
- Promoted
Senior Privacy Compliance Manager
VirtualVocationsFlushing, New York, United StatesFull-time
- Promoted
- New!
Senior Manager Technology & Information Security Risk
BethpageBethpage, NY, United StatesFull-time
- Promoted
Director of Incident Management
VirtualVocationsFlushing, New York, United StatesFull-time
- Promoted
Indiana Licensed Data Center Security Manager
VirtualVocationsFlushing, New York, United StatesFull-time
- Promoted
Information Technology Professional
U.S. NavyMastic Beach, NY, United StatesFull-time +1
- Promoted
Military Intelligence Officer
U.S. NavyUpton, NY, United StatesFull-time +1
- Promoted
Senior Manager - CFIUS Security Compliance Advisor
EisnerAmperMelville, NY, United StatesFull-time
- Promoted
Security Manager
VirtualVocationsFlushing, New York, United StatesFull-time
- Promoted
Security Incident Communications Manager
VirtualVocationsFlushing, New York, United StatesFull-time
- Promoted
Information Security Analyst
VirtualVocationsFlushing, New York, United StatesFull-time
- Promoted
Director of Identity and Access Management
VirtualVocationsFlushing, New York, United StatesFull-time
- Promoted
Information Security Manager
Mitchell MartinGreenwich, CT, United StatesFull-time
- Promoted
Senior Application Security Manager
VirtualVocationsFlushing, New York, United StatesFull-time
- Promoted
Senior Information Security Analyst
VirtualVocationsFlushing, New York, United StatesFull-time
- Promoted
- New!
Massachusetts Licensed Information Security Analyst
VirtualVocationsFlushing, New York, United StatesFull-time
- Promoted
Information Security Manager
VirtualVocationsFlushing, New York, United StatesFull-time
- Promoted
Manager, Security Governance, Risk and Compliance (SOQC)
KPMGMelville, NY, United StatesFull-time