Talent.com
Chief Information Security Office-Strategy, Programs & GRC AVP

Chief Information Security Office-Strategy, Programs & GRC AVP

Bank of China Limited, New York BranchNew York, NY, United States
18 hours ago
Job type
  • Full-time
Job description

Introduction

Established in 1912, Bank of China is one of the largest banks in the world, with over $3 trillion in assets and a footprint that spans more than 60 countries and regions. Our long-term outlook, institutional weight and global breadth provide our clients with a stable and reliable financial partner, whether in Corporate or Personal Banking or our Trade Services, Commodities, Financial Institutions and Global Markets lines of business.

Overview

This incumbent will provide Strategy, Programs, Governance, Risk and Compliance functions as required to fulfill BOCNY information security program requirements. This incumbent will provide Strategy Coordination, CISO Projects Management, Training & Culture, Metrics & Reporting, Governance, Risk Assessments and Compliance functions as detailed below.

Responsibilities

Governance

  • Establish and maintain Information Security policies and procedures
  • Ensure CISO roles and responsibilities are clearly delineated and documented to ensure efficiency, create synergies and ensure TISR is being properly managed across first and second lines
  • Periodically refresh and update TISR controls guidance in relevant policies and supporting procedures with detailed implementation guidance
  • Develop, monitor, and track CISO policy adherence measures and metrics

Stragtegy & Programs

  • Coordinate Information Security strategy in alignment with the Bank's strategy
  • Maintain strategic initiatives tracking and associated KRIs to track progress and execution of the objectives
  • Conduct quarterly strategy reviews with the CISO team to ensure alignment and momentum continue. Adjust strategy as necessary
  • Provide end-to-end project management function for all CISO led projects
  • Manage all CISO programs, including but not limited to : Information Security Program & Training & Culture Program

    • Risk & Compliance

  • Establish and enhance a TISR framework that consists of the appropriate components to effectively manage TISR
  • Conduct risk assessments of TISR for Projects, Third-Party, New Activities and Applications
  • Develop and execute an TISR annual work plan of risk identification, assessment, and control evaluation and testing activities
  • Review and contribute to the development and maintenance of the taxonomy for Risk, Process and Controls for TISR domains.
  • Catalog and oversee remediation of TISR issues include those arising from Audit and Regulatory exams, ITRM deep dives, root cause analyses and control testing
  • Prepare and submit Audit Requests for evidence
  • Anticipate audit requests and prepare comprehensive approach to for CISO policy and standards and associated implementation
  • Prepare response evidence for IT / IS related regulatory exams
  • Recommend changes to policy, process or procedures to align with OCC and other federal guidelines and regulations
  • Evaluate and provide evidence of compliance for BOCNY Branch
  • Liaison with LCD / RAO / IAD to ensure collaboration and partnership so that CISO can meet regulatory IT / IS requirements

    • Metrics & Reporting

  • Manage all metrics and reporting for CISO

    • Qualifications

  • Bachelor's degree in Business, Computer Science, Management Information Systems, Engineering, Mathematics, or related field is required
  • Minimum 5 years of work experience in Financial services Risk Management, Audit, IT / IS Operations, or other relevant functions
  • Minimum 3 years of experience in developing and executing IT / IS Risk programs, projects, and policies
  • Minimum 1 year of experience working with US Banking Regulations, financial industry standards, and industry standard IT / IS Risk Frameworks
  • Strong program, frameworks, project management development, implementation, and maintenance skills
  • Sound and practical IT / IS risk management and program knowledge
  • Familiarity with IT / IS Risk Management regulations, standards, and frameworks including NIST, ISO27002, FFIEC Guidelines, etc.
  • CISSP / CRISC / or IT related certifications preferred

    • Pay Range

    Actual salary is commensurate with candidate's relevant years of experience, skillset, education and other qualifications.

    USD $65,000.00 - USD $150,000.00 / Yr.

    Create a job alert for this search

    Information Security • New York, NY, United States

    Related jobs
    • Promoted
    • New!
    Vice President of Cybersecurity & Deputy Chief Information Security Officer

    Vice President of Cybersecurity & Deputy Chief Information Security Officer

    ConfidentialRoseland, NJ, United States
    Full-time
    Vice President of Cybersecurity & Deputy Chief Information Security Officer.Premier provider of B2B HR & payroll software. Information Technology & Services.Consulting & Professional Services.Custom...Show moreLast updated: 18 hours ago
    • Promoted
    • New!
    Agency Chief Information Security Officer

    Agency Chief Information Security Officer

    City of New YorkNew York, NY, United States
    Full-time
    Agency Chief Information Security Officer.Agency : OFFICE OF LABOR RELATIONS.Job Category : Technology, Data & Innovation. Compensation : USD 114,930 - USD 173,473.The CISO is responsible for maintaini...Show moreLast updated: 18 hours ago
    • Promoted
    • New!
    Chief Information Security Officer

    Chief Information Security Officer

    GlocommsNew York, NY, United States
    Full-time
    This range is provided by Glocomms.Your actual pay will be based on your skills and experience talk with your recruiter to learn more. Registered Investment Advisors (RIAs).Chief Information Securit...Show moreLast updated: 18 hours ago
    • Promoted
    • New!
    Chief Information Security Officer

    Chief Information Security Officer

    Amalgamated BankNew York, NY, United States
    Full-time
    Amalgamated Bank seeks a dedicated Chief Information Security Officer to be r esponsible for designing and implementing the Bank’s Information Security program while protecting the business from cy...Show moreLast updated: 18 hours ago
    • Promoted
    • New!
    Chief Information Security Office-Strategy, Programs & GRC AVP

    Chief Information Security Office-Strategy, Programs & GRC AVP

    Bank of ChinaNew York, NY, United States
    Full-time
    This incumbent will provide Strategy, Programs, Governance, Risk and Compliance functions as required to fulfill BOCNY information security program requirements. This incumbent will provide Strategy...Show moreLast updated: 17 hours ago
    • Promoted
    • New!
    Chief Information Security Manager

    Chief Information Security Manager

    InterSourcesSyosset, NY, United States
    Full-time
    Chief Information Security Manager.The vCISO shall provide expert virtual cybersecurity services during normal business hours except in the event of a security incident or breach.HCC seeks a fresh ...Show moreLast updated: 17 hours ago
    • Promoted
    Chief Information Security Manager

    Chief Information Security Manager

    Staffing the UniverseSyosset, NY, United States
    Full-time
    Chief Information Security Manager.Address : Syosset, NY (Hybrid) Full Time Position Scope Of Work : The vCISO shall provide expert virtual cybersecurity services during normal business hours except ...Show moreLast updated: 30+ days ago
    • Promoted
    • New!
    Chief Information Security Officer

    Chief Information Security Officer

    Credit GenieNew York, NY, United States
    Full-time
    Credit Genie is a mobile-first financial wellness platform designed to help individuals take control of their financial future. We leverage artificial intelligence to provide personalized insights a...Show moreLast updated: 16 hours ago
    • Promoted
    • New!
    Chief Information Security Officer (CISO)

    Chief Information Security Officer (CISO)

    VISTRADANew York, NY, United States
    Full-time
    Chief Information Security Officer (CISO).Vistrada is looking to hire strong Chief Information Security Officers (CISO).The CISO will provide strategic cybersecurity guidance and oversight to Vistr...Show moreLast updated: 18 hours ago
    • Promoted
    • New!
    Mercer Chief Information Security Officer (CISO)

    Mercer Chief Information Security Officer (CISO)

    MMC CorporateMorristown, NJ, United States
    Full-time
    We are seeking a talented individual to join our Information and Security team at Mercer.This role can be based in New York, Boston, Dallas, Denver, Houston, Louisville, Morristown, Phoenix, Urband...Show moreLast updated: 18 hours ago
    • Promoted
    • New!
    Vice President, Chief Information Security Officer

    Vice President, Chief Information Security Officer

    ConfidentialNew York, NY, United States
    Full-time
    Vice President, Chief Information Security Officer.Innovative integrated healthcare system.The Company is seeking a Vice President of Information Security / CISO to lead its enterprise-wide security ...Show moreLast updated: 18 hours ago
    • Promoted
    • New!
    Chief Information Security Officer (CISO)

    Chief Information Security Officer (CISO)

    SwyfftMorristown, NJ, United States
    Full-time
    At Swyfft, we're reshaping the way home insurance and commercial package products are priced and bound.We've created an insurance experience that's smart, instant, and designed to deliver unparalle...Show moreLast updated: 18 hours ago
    • Promoted
    Chief Information Security Office-Strategy, Programs & GRC Associate

    Chief Information Security Office-Strategy, Programs & GRC Associate

    Bank of China Limited, New York BranchNew York, NY, United States
    Full-time
    Established in 1912, Bank of China is one of the largest banks in the world, with over $3 trillion in assets and a footprint that spans more than 60 countries and regions.Our long?term outlook, ins...Show moreLast updated: 30+ days ago
    • Promoted
    • New!
    Chief Information Security Officer (CISO) | Information Technology

    Chief Information Security Officer (CISO) | Information Technology

    Rockefeller UniversityNew York, NY, United States
    Full-time
    Information Technology (IT) aims to provide information resources and services to accelerate and support scientific research and administrative operations at The Rockefeller University.Our departme...Show moreLast updated: 17 hours ago
    • Promoted
    • New!
    Chief Information Security Officer (CISO)

    Chief Information Security Officer (CISO)

    1KosmosIselin, NJ, United States
    Full-time
    Kosmos is a growing startup revolutionizing identity and authentication solutions.We're seeking a hands-on security leader who thrives in a technical, fast-paced environment and is ready to build a...Show moreLast updated: 17 hours ago
    • Promoted
    • New!
    Information Security - Vice President

    Information Security - Vice President

    iCapitalNew York, NY, United States
    Full-time
    Capital is looking for a Vice President Information Security Engineer to join the Information Security team.This role will establish and manage cloud security programs, build new security architect...Show moreLast updated: 18 hours ago
    • Promoted
    Chief Information Security Officer (CISO)

    Chief Information Security Officer (CISO)

    ConfidentialNew York, NY, United States
    Full-time
    Chief Information Security Officer (CISO).Innovative provider of cloud-based software & touchscreen hardware.Privately Held, Private Equity-backed. Information Technology & Services.The Company is s...Show moreLast updated: 30+ days ago
    • Promoted
    • New!
    Chief Information Security Officer

    Chief Information Security Officer

    Amalgamated Bank of NYNew York, NY, United States
    Full-time
    Amalgamated Bank seeks a dedicated Chief Information Security Officer to be responsible for designing and implementing the Bank's Information Security program while protecting the business from cyb...Show moreLast updated: 17 hours ago