Director, IT Security Compliance

Chantilly, Fairfax, Virginia
Aug 19, 2014
Oct 16, 2014
Full Time
Pentagon Federal Credit Union serves over 1 million members in the Air Force, Army, Coast Guard, Department of Homeland Security, Department of Defense, defense-related companies, and the Veterans of Foreign Wars. We were federally chartered in 1935 and serve our members worldwide.

Pentagon Federal Credit Union is one of the strongest and safest financial institutions with more than $18 Billion in assets. We offer mortgages, credit cards, automobile loans, personal loans, checking, money market savings, and other accounts.
We have an immediate opening for a DirectorInformation Technology Security Compliance position at our Chantilly, Virginia location.
Under the direction from the Vice President, Information Technology Security, the position is responsible for analyzing complex application, network, and management systems, and for planning, designing, evaluating, selecting and implementing cyber security systems and suites. The candidate provides sound leadership in the development of technical security recommendations and solutions, leading troubleshooting and projects, and mentoring technical security personnel.

This management role will require a strong Project Manager who can drive PCI-DSS Compliance and to oversee the Application Security review and certification process. This role is responsible for management and delivery of new and/or existing projects and programs, with particular experience and expertise in security, internal audits and GLBA compliance. Supporting IT Security, this role will be involved in end-to-end management of IT Security projects that include compliance remediation, and security team deliverables. Candidate must have working knowledge and understands key security concepts such as access management, vulnerability & patch management, SIEM, network threats and encryption.

The role necessitates an ability to communicate effectively and influence IT leadership, staff and other stakeholders, company-wide, to implement security recommendations, therefore, the utmost degree of personal presentation, integrity and professionalism are essential. In addition, the Director IT Security will require the ability to establish and develop effective, trusting relationships with internal business units, together with a proven knowledge of the methods necessary to assess information security within a large organization.

Essential Duties:

The successful candidate should possess the following skills and capabilities:

• Detailed understanding of how various attacks work at the memory and register level
• Experience in Computer Security Incident Handling and disaster recovery
• Leads organization’s Vulnerability Management Program efforts
• Experience with vulnerability analysis
• Experience working in virtualized environments
• Manages security staff and provides leadership to IT engineers to support PenFed requirements.
• Candidate provides expert-level analysis of alternatives, design and implementation plans and recommendations supported by strong research skills and provided through strong communication skills.
• Participates in decision making regarding priorities and provides information on feasibility of prospective projects.
• Prepares and updates information security policies, architectures, standards, and/or other technical documents.
• Plans schedule and establishes daily or weekly activities necessary to meet project timetable.
• Candidate stays abreast of latest industry developments in the information security area.
• Candidate serves as project manager for complex information security projects.
• Trains and provides guidance to less experienced staff.
• Represents the organization’s technical security interests in all matters: with partners, suppliers, industry associations, and government entities to ensure the bi-directional flow of technical information and best practices in the area of information security.
• The candidate works closely with other departments to ensure that information security requirements are met.
• Manages the request for proposal process and active work related to security purchases from all Vendors.


Special Requirements:

Candidate has a bachelor's degree (in Computer Science or related field) or equivalent, and 10+ years of relevant IT security management experience. They should be experienced in the management of security control capabilities within large, complex commercial architectures. Candidate maintains one or more security-specific certifications (CISSP, CISA, etc.).

Physical Requirements

• Must possess mobility and stamina to work in a standard office setting.
• Employees must be able to use standard office equipment including, but, not limited to computer, printer, and calculator.
• Employee may have to lift items up to 30 pounds.
• Must be able to sit or stand for long periods of time.
• May need the ability to raise arms about their head.
• Must be able to bend to file documents and retrieve filed documents.
• Adequate hearing and speech to communicate with our members and/or staff on the phone or in person.
• This statement is not an all inclusive list of physical requirements, but, is in general, covering most areas of the job. PenFed will make every effort to provide reasonable accommodations to an employee with a physical, mental or sensory disability in order to allow that employee to perform the essential functions of the job.

General Information
Requires ability to work “off hours” to implement solutions in order to limit impact/exposure to customers.
Requires occasional traveling to corporate locations and being “on-call” on a rotational basis.


• Health, dental, and vision coverage
• Flexible spending accounts (FSA) for qualified medical and dependent care out-of-pocket expenses
• Tuition assistance - Company paid short- and long-term disability coverage
• Company paid life insurance
• Business casual attire
• Immediate enrollment in 401(k) plan with employer match after 6 months.

You do not need a security clearance but you must pass a credit and criminal background check.
Pentagon Federal Credit Union values diversity and is an equal opportunity employer. m/f/v/d