Director, IT Security Compliance
Pentagon Federal Credit Union is one of the strongest and safest financial institutions with more than $18 Billion in assets. We offer mortgages, credit cards, automobile loans, personal loans, checking, money market savings, and other accounts.
This management role will require a strong Project Manager who can drive PCI-DSS Compliance and to oversee the Application Security review and certification process. This role is responsible for management and delivery of new and/or existing projects and programs, with particular experience and expertise in security, internal audits and GLBA compliance. Supporting IT Security, this role will be involved in end-to-end management of IT Security projects that include compliance remediation, and security team deliverables. Candidate must have working knowledge and understands key security concepts such as access management, vulnerability & patch management, SIEM, network threats and encryption.
The role necessitates an ability to communicate effectively and influence IT leadership, staff and other stakeholders, company-wide, to implement security recommendations, therefore, the utmost degree of personal presentation, integrity and professionalism are essential. In addition, the Director IT Security will require the ability to establish and develop effective, trusting relationships with internal business units, together with a proven knowledge of the methods necessary to assess information security within a large organization.
The successful candidate should possess the following skills and capabilities:
Detailed understanding of how various attacks work at the memory and register level
Experience in Computer Security Incident Handling and disaster recovery
Leads organizations Vulnerability Management Program efforts
Experience with vulnerability analysis
Experience working in virtualized environments
Manages security staff and provides leadership to IT engineers to support PenFed requirements.
Candidate provides expert-level analysis of alternatives, design and implementation plans and recommendations supported by strong research skills and provided through strong communication skills.
Participates in decision making regarding priorities and provides information on feasibility of prospective projects.
Prepares and updates information security policies, architectures, standards, and/or other technical documents.
Plans schedule and establishes daily or weekly activities necessary to meet project timetable.
Candidate stays abreast of latest industry developments in the information security area.
Candidate serves as project manager for complex information security projects.
Trains and provides guidance to less experienced staff.
Represents the organizations technical security interests in all matters: with partners, suppliers, industry associations, and government entities to ensure the bi-directional flow of technical information and best practices in the area of information security.
The candidate works closely with other departments to ensure that information security requirements are met.
Manages the request for proposal process and active work related to security purchases from all Vendors.
Candidate has a bachelor's degree (in Computer Science or related field) or equivalent, and 10+ years of relevant IT security management experience. They should be experienced in the management of security control capabilities within large, complex commercial architectures. Candidate maintains one or more security-specific certifications (CISSP, CISA, etc.).
Must possess mobility and stamina to work in a standard office setting.
Employees must be able to use standard office equipment including, but, not limited to computer, printer, and calculator.
Employee may have to lift items up to 30 pounds.
Must be able to sit or stand for long periods of time.
May need the ability to raise arms about their head.
Must be able to bend to file documents and retrieve filed documents.
Adequate hearing and speech to communicate with our members and/or staff on the phone or in person.
This statement is not an all inclusive list of physical requirements, but, is in general, covering most areas of the job. PenFed will make every effort to provide reasonable accommodations to an employee with a physical, mental or sensory disability in order to allow that employee to perform the essential functions of the job.
Requires ability to work off hours to implement solutions in order to limit impact/exposure to customers.
Requires occasional traveling to corporate locations and being on-call on a rotational basis.
Health, dental, and vision coverage
Flexible spending accounts (FSA) for qualified medical and dependent care out-of-pocket expenses
Tuition assistance - Company paid short- and long-term disability coverage
Company paid life insurance
Business casual attire
Immediate enrollment in 401(k) plan with employer match after 6 months.
You do not need a security clearance but you must pass a credit and criminal background check.
Pentagon Federal Credit Union values diversity and is an equal opportunity employer. m/f/v/d