Cooperative Credit Union Association

About the Company

The Cooperative Credit Union Association is a regional trade organization serving as the voice for nearly 200-member credit unions located primarily throughout Delaware, Massachusetts, New Hampshire, and Rhode Island. CCUA members hold combined assets in excess of $45 billion and serve a collective membership base of more than 2.3 million consumers. It’s on behalf of these member credit unions that CCUA advocates before Congress and state legislatures, regulatory bodies and the general public through its Better Values—Better Banking consumer awareness campaign. In addition to advocacy, CCUA also engages its members with an array of industry resources, from compliance assets and marketing support to vetted products and service providers; an array of educational workshops and conferences; and a variety of communication channels that include a daily e-newsletter, live and recorded video programs, and a quarterly magazine focused on CCUA’s advocacy initiatives. For more information, visit www.CCUA.org.

Listed Jobs

Company Name

Cooperative Credit Union Association

Job Title

VP of Information Security, Central One Federal Credit Union, Shrewsbury, MA

Job Description

**Job Title:** VP of Information Security **Role Summary:** Senior security executive responsible for developing and executing the enterprise security strategy, ensuring regulatory compliance, managing security vendors, and leading hands‑on security operations. Provides independent oversight of IT, reports directly to the CEO and Board, and bridges governance with operational execution to protect data, systems, and reputation. **Expectations:** - Treat cybersecurity as a business priority with direct visibility to senior leadership. - Maintain independent oversight of IT operations, balancing governance and execution. - Deliver measurable security outcomes through KPIs and continuous improvement. **Key Responsibilities:** - Develop and maintain security strategy, roadmap, and policies. - Lead risk assessments, compliance programs (NIST, ISO 27001, SOX ITGC, PCI DSS, GLBA, etc.). - Serve as primary liaison to CEO, Board, regulators, and auditors on cybersecurity risk. - Manage vendor and third‑party risk: contract reviews, selection, and performance oversight. - Deploy, configure, and manage security platforms (EDR, SIEM, DLP, IAM, PAM, vulnerability management, firewalls). - Lead incident detection, response, and forensics; coordinate across IT and business units. - Administer identity and access governance, including RBAC and privileged access management. - Oversee security monitoring, log analysis, threat detection, and alert tuning. - Direct organization-wide security awareness and training programs. - Collaborate with CIO/IT on incident response, DR/BCP, IAM, and vendor integrations. **Required Skills:** - Strategic leadership and hands‑on technical security expertise. - Deep knowledge of security frameworks (NIST CSF, ISO 27001, CIS Controls). - Regulatory compliance expertise (SOX, PCI DSS, GLBA, NCUA). - Vendor management: evaluation, negotiation, and oversight of security partners. - Proficiency with security tools (Microsoft Security Suite, Splunk/LogRhythm, Okta/Entra ID, Artic Wolf, etc.). - Strong analytical, problem‑solving, and decision‑making abilities. - Excellent communication and executive‑level presentation skills. - Team leadership: mentoring, coaching, and building a security function. **Required Education & Certifications:** - Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience). - 8–10 years of progressive IT security experience, including strategic leadership and hands‑on operations. - Preferred certifications: CISSP, CISM, CISA, CCSP, or GIAC.

Shrewsbury, United states

On site

Senior

07-11-2025