Job Specifications
The Vice President, Information Security is a senior-level role responsible for shaping and maintaining the Bank’s cybersecurity posture. This position serves as a trusted advisor to the SVP, Information Security Officer and collaborates across business units, IT, Compliance, and Audit to ensure confidentiality, integrity, and availability of bank systems and data. With minimal supervision, the VP will lead strategic initiatives, oversee critical security platforms, and drive risk reduction efforts.
The VP, Information Security is part of the bank’s Information Security Team who proactively maintain our cybersecurity posture. This position will collaborate with business units and work closely with the Information Technology team, various departments, and a variety of vendors that supply the Bank’s layered information security architecture. You will be responsible for daily, weekly, monthly, and quarterly monitoring of information security events and the platforms that generate those events. Platforms include anti-phishing, vulnerability management, patch management, end-point protection, data-protection among others.
Essential Duties and Responsibilities include the following:
Partner with SVP ISO to define and execute the bank’s information security roadmap; evaluate emerging threats; serve as SME during audits and board reporting
Develop and enforce security policies aligned with GLBA, FFIEC, NIST CSF; liaise with Compliance and Audit
Oversee monitoring of security controls (email security, remote access, vulnerability management, endpoint protection, DLP); lead incident response; manage MSSP relationships
Research and implement advanced security technologies (SIEM, CASB, EDR); drive vulnerability management; report metrics to leadership
Demonstrates a thorough understanding of junior-level responsibilities and provides hands-on support when needed to ensure continuity and team success
Implements policies or procedures and tracks compliance throughout the organization with SVP review. Help coordinate audits and exams and track remediation efforts to conclusion
Diagnose and research causes of security issues (e.g., misconfigured DNS records, exposed insecure protocols, use of known-vulnerable software, weak ciphers)
Respond to security incidents and/or policy violations
Support Information Security Analyst with researching, installing, configuring, maintaining, and monitoring cyber security platforms as needed
Maintains strong knowledge of the threat landscape and mitigation strategies
Document internal processes and procedures related to duties and responsibilities
Qualifications:
Minimum 7+ years of progressive experience in information security, with at least 3 years in a leadership or senior advisory role
Certifications: CISSP, CISM, CRISC strongly preferred
Experience in regulated financial services environment desired
Strong understanding of cloud security (AWS, Azure), network architecture, and endpoint protection
Deep knowledge of security frameworks (NIST CSF, NIST 800-53, CIS Controls, MITRE ATT&CK)
A BA/BS degree in Computer Science or related discipline; or an equivalent combination of experience and education.
Proficient understanding of IT concepts and principles, including strong knowledge of networking, server management, firewall, SD-WAN, and virtualization technologies
Understanding of the following technologies: PC’s, laptops, printers, mobile devices such as Apple iPad, and other peripherals, networking, Active Directory, Exchange, Windows, Microsoft Office, anti-virus / anti-malware software
Working knowledge of Windows 10, Server 2016, Server 2019, Office 2019, M365
Ability to prioritize and manage multiple tasks to meet deadlines
Ability to interact with a wide range of internal staff members and external professionals, including consultants, vendors, auditors, technical staff, and others
Intermediate level experience with creating technical documentation
Intermediate level knowledge of networking/security solutions including firewalls, IPS, SIEM, LAN/WAN, wireless, VPN, VLANs preferred
About the Company
At HW3, we build high-performing teams in sectors where talent, precision, and speed matter most. What drives success is simple: The power of teams. From our regional bases in Europe and America, our consultants deliver specialist talent solutions to clients around the world. We focus on four key sectors where quality and speed are critical: Banking & Finance - Risk, regulation, cyber, and tech. Helping organisations adapt and perform in high-stakes environments. Life Sciences - Cross-functional teams for every phase, from c...
Know more