Director, IS Governance Risk & Compliance & Privacy

Join Our Team

For 70 years, Teachers Federal Credit Union has been committed to guiding members toward building a strong financial foundation today for a better tomorrow. Named one of America's Best-In-State Credit Unions by Forbes Magazine in 2022, Teachers has grown into one of the leading credit unions in the United States. As we broaden our national reach, we will continue to ensure that Teachers is a Best Place to Bank and a Best Place to Work. Teachers offers a variety of exciting career opportunities ranging from part-time and full-time staffers to executive leadership roles.

SUMMARY:

The Director of Governance Risk & Compliance and Privacy is responsible for developing and maintaining security policy, procedures and standards, identifying cybersecurity risks and ensuring adequate processes and technical controls are in place to mitigate identified risks. As a data privacy lead plays a crucial role in ensuring an organization's data privacy and compliance with applicable data protection laws.

QUALIFICATIONS & EDUCATION:

• Bachelor's degree in Computer Science, Information Systems, Information Security/Assurance or related field required or eight years of directly related experience

• Minimum seven years relevant experience in an Information Security role, with strong experience in Security Governance, Risk & Compliance or in a regulated industry required, preferably at a Bank or Financial Services institution

• Professional certifications in Information Security (such as CISA, CISM, CRISC, CISSP, etc.) preferred

• Strong understanding of key information security concepts and fundamentals

• Experience with GRC and Information security tools/technologies to collect and main security and risk information.

• Experience with various data privacy laws and regulations.

• Experience with ITGRC tools like SNOW, Archer etc.

• Strong knowledge of security risks and trends, security compliance assessments and audits.

• Strong knowledge of security frameworks and standards including NIST, PCI, ISO 27001, etc.

• Strong communication and presentation skills

JOB DUTIES:

• Govern and lead the development and on-going management of the Cybersecurity Governance Risk, Compliance and privacy program.

• Work closely with Technology-focused teams and other business stakeholders to identify potential security weaknesses, define potential impact and develop effective mitigation strategies.

• Serve as the main point of contact within the organization for staff members, regulators, and relevant public authorities on issues related to GRC and data privacy.

• Define Risk Management Framework and maintain the Risk register.

• Govern, lead and participate in cybersecurity audits and assessments.

• Provide thought leadership and remediation plan based on audit recommendations and assist in maturing various cybersecurity programs including Risk Management, Security awareness, Incident Response, Disaster Recovery etc.

• Provide regular updates on the overall remediation activities to leadership and auditors

• Develop and maintain information security policies, standards, process documentations and control objectives

• Mature and enhance the information security awareness and training program

• Monitor and escalate unresolved security exposures, misuse, policy violations and other non-compliance situations to Security Leadership

• Monitor industry regulatory environment for impact on security programs and changes to security compliance standards

• Work closely with Technology-focused teams and other business stakeholders to identify potential security weaknesses, define potential impact and develop effective mitigation strategies

• Ensure that policies are in compliance with applicable data protection laws

• Evaluate and improve the existing data protection framework.

• Create and deploy data protection training plans

• Perform all duties inherent in the role of a leader

• Automate the GRC and Data Privacy functions within ITGRC tools

• Exposure to Third party risk management and BCP/DR

• Perform other duties as requested by immediate supervisor

Benefits of Joining the Teachers Team:

We provide a competitive compensation and benefits package that includes, but is not limited to:

• Paid time off for vacation, personal days, and holidays

• Fully-funded pension plan

• 401(k) company contribution

• Teachers pays 100% Premium Coverage for Vision & Dental Care

• Tuition reimbursement is offered to full-time employees

• Exclusive employee discount of 0.96% APR on credit card loans and a 1.00% APR on all other loans through Teachers

The good faith range for this position is $133,000-$185,000. This range is an estimate, based on potential employee qualifications and operational needs. The salary may vary above and below the stated amounts, as permitted by applicable law.

All candidates will be subject to a background check, credit check, and drug test to determine employment eligibility.

To learn more about Teachers and to view a full list of our job opportunities please visit https://www.teachersfcu.org/about/careers

Click here to view: California Privacy Notice

#LI-KM

#Hybrid