Leads security-related projects of moderate to advanced complexity through the application of skills, tools and techniques that deliver assigned processes and systems in accordance with and/or exceeding stakeholder needs and expectations. Plans and executes security-related activities and resources to ensure that established cost, time, and quality goals are met. Provides SME level support for Identity, Access Management (IAM) implementation and Data Management program. Acts as an advocate for information security awareness and education and ensure user community's adherence to the established information security policies, procedures, standards, and protocols.

Essential Functions

Defines, reviews, and enforces information security policy standards and guidelines for business operations and technology implementations.
1. Proactively identifies IT security risks with new technology vendors, IT technical software and hardware application implementations and/or business operational processes and procedures. Works with software development teams to define security objectives and guidelines. Conducts vendor risk assessment due diligence.
2. Conducts security assessments and audits. Identifies security issues and risks and develops and implements mitigation plans with appropriate business leaders.
3. Conducts forensic IT and incident management. Assists with group and/or company-wide IT security matters such as incident response, intrusion detection management and IT security advisories. Participates in incident handling and post-incident assessments as assigned.
4. Architects, designs, implements, supports, and evaluates security-focused tools and services. Analyzes and recommends new and emerging security products and technologies. Assesses applicability to company operations, performs cost/benefit analysis and prepares and presents findings to management.
5. Develops and delivers training materials and performs general security awareness and specific security technology training. Evangelizes security within the company and be an advocate for customer trust.
6. Develops and interprets security policies and procedures. Responds to questions from internal and external teams regarding security policies, processes, and/or procedures. Advises clients as needed on best solution to issue or question.
7. Develops, implements, and maintains the IAM strategy, policies, and procedures.
8. Knowledge and understanding of regulations, and industry standards, including but not limited to PCI-DSS, NIST CSF, ISO27001, and GLBA.
9. Knowledge and understanding of national and international data protection and privacy legislation and requirements including but not limited to CCPA and GDPR.
10. Formulates, enforces, and inspects data management policies and procedures to ensure data confidentiality, integrity, and availability.
11. Participates in security project implementations, projects that develop new intellectual property, and security compliance efforts (e.g. PCIDSS, GLBA and SOX).
12. Contributes to tier 2 and tier 3 security operations support.
13. Mentors junior members of the team.
14. Performs other related duties as assigned.

Education/Experience Requirements

• An undergraduate degree in a related field or an equivalent combination of training and experience. A graduate degree with a background in information security and business management disciplines is a plus.
• A minimum of 7 years information security related experience.
• A minimum of at least one of several relevant professional certifications, such as CISSP, CISA, or CISM.

Preferred Qualifications

• Experience with IAM implementation requirements and tools.
• Experience with data privacy and data protection regulatory requirements.
• Experience managing projects or programs to achieve information security objectives.
• Strong working knowledge and understanding of current technology and regulatory trends affecting financial institution information security programs. A broad-based knowledge of technology trends in multiple areas is preferred.
• Excellent verbal, written, and interpersonal communication skills.
• A team player able to work effectively in a team fostered, multi-tasking environment to ensure security compliance.
• Ability to influence others in a wide range of positions and levels during projects.
• Demonstrated ability to analyze security and technology control effectiveness.
• Able to effectively prioritize and execute tasks in a high pressure environment.

This job will be open and accepting applications for a minimum of five days from the date it was posted.

Working at The Bancorp Bank, N.A. and Benefits Information: click here

Diversity & Inclusion at The Bancorp Bank: click here

The Bancorp Bank, N.A. is an EQUAL OPPORTUNITY EMPLOYER and will not discriminate on the basis of race, color, religion, gender, gender identity, sexual orientation, pregnancy, citizenship, national origin, age, disability, genetic information, veteran status or other protected category with respect to recruitment, hiring, training, promotion, and other terms and conditions of employment.

Employment with The Bancorp Bank, N.A. includes successfully passing a background check including credit, criminal, education, employment, OFAC, and social media background history.

#LI-Hybrid

#LI-CB1