|
YOUR LIFE'S MISSION: POSSIBLE You have goals, dreams, hobbies and things you're passionate about. What's Important to You Is Important to Us
We're looking for people who not only want to do meaningful, challenging work, keep their skills sharp and move ahead, but who also take time for the things that matter to them-friends, family and passions. And we're looking for team members who are passionate about our mission-making a difference in military members' and their families' lives. Together, we can make it happen. Don't take our word for it. * Military Times 2021 Best for Vets Employers
* WayUp Top 100 Internship Programs
* Forbes 2021 The Best Employers for New Grads
* Forbes America's Best Employers
* Newsweek Top 100 Most Loved Workplaces
* 2021 People Companies that Care
* Fortune Best Workplaces for Women
* Fortune 100 Best Companies to Work For
* Fortune Best Workplaces for Millennials
* Computerworld Best Places to Work in IT Basic Purpose To plan, manage, and implement functions in support of Navy Federal's Information Security Program, including information security control risk assessment, solutioning, enforcement, cybersecurity awareness, and security enablement across assigned Navy Federal business unit(s) and/or business initiatives. Serve as an information security subject matter expert (SME) and trusted advisor available to the business to foster alignment.
Responsibilities:
* Partner with business units to enable business goals while ensuring cyber security-related requirements and controls are included in projects and strategic initiatives
* Drive Information Security risk mitigation strategic initiatives through assigned business unit(s)
* Ensure that security is built in at every level for all data initiatives as per best practice
* Ensure business unit awareness of Information Security policies, procedures and standards
* Monitor and assure compliance with federal, state and local laws bearing on unauthorized access to member information and information security; provide recommendations/alternatives, such as compensating controls to resolve security issues and exceptions
* Participate in supporting appropriate security events in the project lifecycle
* Articulate implications of security risks and related issues to business unit leadership; assist with security exceptions
* Consult with business units regarding compliance with internal Information Security procedures, instructions, and standards as well as externally-driven security regulations
* Review internal business units initiatives to determine risk analysis opportunities and provide guidance for information classification and protection
* Participate in Information Security Governance related councils and working groups, as appropriate
* Coordinate and promote cybersecurity and information security awareness activities and implement security awareness concepts customizing communications to be suitable for the business unit
* Meet regularly with relevant business unit stakeholders to ensure consistent communication
* Monitor and analyze changes to applicable federal and state laws, rules and regulations; develop and execute action plans for implementation/dissemination
* Contribute to a culture of collaboration by actively working across business lines, communicating knowledge, and business processes to other business units
* Maintain current knowledge of industry best practices/frameworks to drive continuous improvements in information security
* Remains up to date on the security threat landscape with emphasis on vulnerabilities related to the systems and applications relevant to the business unit or initiative of assignment
* Shows good judgment in escalating risks and advising business on risk pursuant to the organizational and divisional risk tolerance
* Perform other duties as assigned
Qualifications and Education Requirements:
* Bachelor's degree in Cybersecurity, Information Security, Information Technology, or related field, or the equivalent combination of education, training and experience
* Advanced knowledge of standards governing information security requirements, frameworks, privacy and data protection (e.g., FFIEC, NCUA, CFPB, GLBA, etc.)
* Significant experience in risk mitigation and assessment in application to business needs
* Significant experience with information security concepts, principles, technologies, and methods, and translating best practices in information security to operations in a risk management framework
* Current knowledge of industry standards (e.g., ISO, NIST, COBIT, COSO, ITIL, etc.)
* Advanced/specialized knowledge of computer hardware/software technologies, and security tools
* Advanced skill facilitating discussions and creating and delivering compelling and engaging presentations to a variety of audiences
* Strong soft skills and ability to developing and maintaining collaborative relationships with all levels of leadership, staff and vendors
* Effective skill in project management to include establishing and/or advising project or product teas
* Advanced skill managing multiple complex priorities and competing agendas without express authority over teams
* Significant experience collaborating across organizational boundaries and building partnerships across functions
* Proficiency in exercising initiative and using good judgment to make sound decisions
* Ability to regularly present findings, conclusions, alternatives and information clearly and concisely
* Track record that shows ability to influence, negotiate and persuade to reach agreeable exchange and positive outcomes
* Ability to interpret and apply policies and regulations to key business stakeholders
* Strong analytical, planning, organizational, and problem solving skills
* Advanced skill using MS-Windows and other related applications
* Advanced verbal, interpersonal and written communication skills
Desired Qualifications and Education Requirements:
* Master's degree in Cybersecurity, Information Security, Information Technology, or related field
* CISSP or CISM, Lean/Six Sigma, SSCP, and Agile Certifications
Hours: Monday - Friday, 8:00AM - 5:00PM
Location: Remote | 820 Follin Lane, Vienna VA 22180 | 141 Security Dr. Winchester, VA 22602
Salary: $109,900 - $206,800
Navy Federal Credit Union assesses market data to establish salary ranges that enable us to remain competitive. You are paid within the salary range, based on your experience, location and market position.
*Navy Federal is now hybrid! Our standard enterprise requirement for a hybrid schedule is to report onsite 4-16 days each month. The number of days reporting onsite will ultimately be determined by the employee's leadership and business unit needs. You will learn more throughout the hiring and onboarding process.
#LI-Remote Equal Employment Opportunity Navy Federal values, celebrates, and enacts diversity in the workplace. Navy Federal takes affirmative action to employ and advance in employment qualified individuals with disabilities, disabled veterans, Armed Forces service medal veterans, recently separated veterans, and other protected veterans. EOE/AA/M/F/Veteran/Disability
COVID-19 Vaccine Information
As a COVID-19 safety measure, our employees must either provide proof of COVID-19 vaccination or follow additional safety protocols, including testing.
Disclaimer
Navy Federal reserves the right to fill this role at a higher/lower grade level based on business need. An assessment may be required to compete for this position.
Bank Secrecy Act
Remains cognizant of and adheres to Navy Federal policies and procedures, and regulations pertaining to the Bank Secrecy Act.
Employee Referrals
This position is eligible for the TalentQuest employee referral program. If an employee referred you for this job, please apply using the system-generated link that was sent to you.
|
Navy Federal Credit Union
August 18, 2022