Navy Federal Credit Union
Information Security Officer
At a glance
Location: US-VA-Vienna, VA Map
Posted: 02/18/2020
Closing: 03/17/2020
Degree: Not Specified
Type: Full-Time
Experience: Not Specified
Navy Federal Credit Union
Job description

Employee Perks

Why You Will Love Being Part of the Navy Federal Team:

*Competitive compensation with opportunities for annual raises, promotions, and bonus potential
*Best-in-Class Benefits! (7% 401k match / Pension plan / Tuition reimbursement / Great insurance options)
*On-site amenities include fitness center, wellness center, cafeteria, etc. at Pensacola, FL; Vienna, VA and Winchester, VA campuses
*Consistently Awarded Top Workplace
*Nationally recognized training department by TRAINING Magazine
*An employee-focused, diverse, and service-oriented workplace environment

Basic Purpose

To plan, manage, and implement functions in support of Navy Federal’s Information Security Program, including information security control enforcement, cybersecurity awareness, and security enablement across assigned Navy Federal business unit(s). Serve as an information security subject matter expert (SME) available to the business to foster alignment.

Responsibilities:

•Partner with business units to enable business goals while ensuring cyber security-related requirements and controls are included in projects and strategic initiatives
•Drive Information Security risk mitigation strategic initiatives through assigned business unit(s)
•Ensure that security is built in at every level for all data initiatives as per best practice
•Ensure business unit awareness of Information Security policies, procedures and standards
•Monitor and assure compliance with federal, state and local laws bearing on unauthorized access to member information and information security; provide recommendations/alternatives, such as compensating controls to resolve security issues and exceptions
•Participate in supporting appropriate security events in the project lifecycle
•Articulate implications of security risks and related issues to business unit leadership; assist with security exceptions
•Consult with business units regarding compliance with internal Information Security procedures, instructions, and standards as well as externally-driven security regulations
•Review internal business units initiatives to determine risk analysis opportunities and provide guidance for information classification and protection
•Participate in Information Security Governance related councils and working groups, as appropriate
•Coordinate and promote cybersecurity and information security awareness activities and implement security awareness concepts customizing communications to be suitable for the business unit
•Meet regularly with business unit leadership to ensure consistent communication
•Monitor and analyze changes to applicable federal and state laws, rules and regulations; develop and execute action plans for implementation/dissemination
•Contribute to a culture of collaboration by actively working across business lines, communicating knowledge, and business processes to other business units
•Maintain current knowledge of industry best practices/frameworks to drive continuous improvements in information security
•Lead and/or facilitate information security training that is tailored to the business unit
•Perform other duties as assigned

Qualifications and Education Requirements:

•Bachelor's degree in Cybersecurity, Information Security, Information Technology, or related field, or the equivalent combination of education, training and experience
•Advanced knowledge of federal and state laws, rules and regulations governing information security requirements, frameworks, privacy and data protection (e.g., FFIEC, NCUA, CFPB, GLBA, etc.)
•Significant experience in risk mitigation with proven ability to effectively apply risk principles to challenging business situations, preferably in a large financial institution
•Significant experience with information security concepts, principles, technologies, and methods, and translating best practices in information security to operations in a risk management framework
•Advanced knowledge of industry standards (e.g., ISO, NIST, COBIT, COSO, ITIL, etc.)
•Advanced knowledge of computer hardware/software technologies, and security tools
•Advanced skill facilitating discussions and creating and delivering compelling and engaging presentations to a variety of audiences
•Advanced skill developing and maintaining collaborative relationships with all levels of leadership, staff and vendors
•Effective skill in project management to include establishing and leading project teams; managing timelines/deadlines/resources; ensuring successful project implementation
•Advanced skill managing multiple complex priorities and competing agendas without express authority over teams
•Significant experience collaborating across organizational boundaries and building partnerships across functions
•Advanced skill exercising initiative and using good judgment to make sound decisions
•Advanced skill presenting findings, conclusions, alternatives and information clearly and concisely
•Advanced skill to influence, negotiate and persuade to reach agreeable exchange and positive outcomes
•Ability to interpret and apply policies and regulations across a large, complex business
•Advanced analytical, planning, organizational, and problem solving skills
•Advanced skill using MS-Windows and other related PC applications
•Expert verbal, interpersonal and written communication skills

Desired Qualifications and Education Requirements:

•Master’s degree in Cybersecurity, Information Security, Information Technology, or related field
•CISSP, CIPP/US, SSCP, Certifications

Hours: Monday - Friday, 8:00am - 4:30pm

Location: 820 Follin Lane SE, Vienna, VA 22180

Equal Employment Opportunity

Navy Federal values, celebrates, and enacts diversity in the workplace.  Navy Federal takes affirmative action to employ and advance in employment qualified individuals with disabilities, disabled veterans, Armed Forces service medal veterans, recently separated veterans, and other protected veterans.  EOE/AA/M/F/Veteran/Disability

Disclaimer

Navy Federal reserves the right to fill this role at a higher/lower grade level based on business need.

Bank Secrecy Act

Remains cognizant of and adheres to Navy Federal policies and procedures, and regulations pertaining to the Bank Secrecy Act.

Information Security Officer