Job Information
Great Southern Bank IT Risk Manager in Springfield, Missouri
Come be a part of something greater! Great Southern Bank is committed to fostering an environment where everyone can contribute and succeed at every level. By embracing diversity, we celebrate and value differences in age, outlook, cultural background, lifestyle and physical ability. We offer career opportunities and advancement across a wide range of disciplines. Ranked top ten in Forbes Best Bank four years in a row. Come join our team of customer service experts today!
General Description
The IT Risk Manager is responsible for managing the daily operations of the IT Risk Management Department, ensuring adherence to all applicable federal and state banking laws and regulations, with an emphasis on the Gramm-Leach-Bliley Act (GLBA). Oversees the IT Risk Management program, providing program administration and maintenance to the Business Continuity Plan, IT Risk Assessment, Incident Response, Third Party Risk, and Security Awareness Training programs. Keeps the Managing Director of Information Security informed regarding their area of responsibility.
Essential Duties and Responsibilities
Coordinates and manages various IT Risk functions. This includes, but is not limited to, Business Continuity Planning, IT Risk Assessment, Incident Response, Third Party Risk Management, and Security Awareness Training programs. This duty is performed about 25% of the time.
Coordinates and delegates the daily operations of their area of responsibility through subordinate staff, developing and implementing new policies, procedures, and programs as necessary. Manages the tracking and progress of daily departmental tasks and projects to ensure deadlines are met and establishes reporting metrics to ensure timely completion. This duty is performed about 20% of the time.
Works closely with subordinate staff evaluating their performance, developing their abilities, and improving their output. Responsible for selection, placement, counseling, and salary administration of all staff in their area of responsibility. This duty is performed about 20% of the time.
Ensures the Bank’s information security program remains in compliance with applicable standards and regulations including FFIEC, GLBA, NIST, and CIS by utilizing industry experience and knowledge to provide expertise and support to their area of responsibility. This duty is performed about 15% of the time.
Assists with the management of cybersecurity compliance functions such as reporting on gaps, variances, and the assessment and disposition of cyber risk. Also assists with the completion and maintenance of the Bank’s cybersecurity assessment tool. This duty is performed about 10% of the time.
Responsible for staying informed about the latest security and privacy legislation, regulations, advisories, alerts, and vulnerabilities pertaining to the Bank and its’ mission. Establishes and maintains the information security standards and procedures in compliance with GLBA, state and federal laws, and all applicable security and risk management policies, standards, and guidelines. This duty is performed about 10% of the time.
Maintains regular and reliable attendance, punctuality and personal appearance. Reads, writes, and communicates in a clear and efficient manner via various types of correspondence, such as, in person, phone, email, letters, etc. Adheres to all company policies and procedures, as well as all applicable banking rules, regulations, and laws (including BSA/AML).
Performs any other related duties as required or assigned.
Education and Experience Requirements
High school diploma or GED
Bachelor’s Degree in Cybersecurity, Information Technology, or related field or four years equivalent relevant work experience
At least 3 years of additional related experience and/or training plus 1-2 years related management experience
Regular use of desktop/laptop computer, basic operating systems, and specialized software systems.
Intermediate experience with alphanumeric data entry, PowerPoint, Excel, and Word Processing
Basic experience with 10-key, accounting, programming languages
Ability to add, subtract, multiply and divide in all units of measure using whole numbers, common fractions, and decimals. Ability to compute rate, ratio, and percent. Ability to prepare and interpret graphs
License and Certification Requirements
Professional security certification related to Information Security is required. (ex. CISM, CRISC, CISA, CISSP)
Valid Driver’s License and/or the ability to occasionally travel as needed for conferences or training
Physical Requirements
The following physical activities described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions and expectations.
Semi-repetitive and low physical activities.
Semi-repetitive type work which requires periods of concentration for varied time cycles as prescribed by the tasks.
While performing the functions of this job, the employee is regularly required to sit, talk or hear, use hands to handle or feel and occasionally required to reach with hands and arms, stand, walk, climb or balance, stoop, kneel, crouch, or crawl.
Frequently required to lift and/or move up to 10 pounds; occasionally required to lift and/or move up to 25 pounds.
At Great Southern Bank, we are willing to accommodate for those with reasonable requests. If you need assistance at any point during the application process (completing applications, interview prep, etc...), please contact Human Resources at 417-895-4509.
Great Southern Bank is proud to be an Equal Opportunity Employer, treating all candidates and employees equitably without regard to race, color, gender, religion, national origin, ancestry, age, disability, protected veteran status, gender identity, sexual orientation or any other basis prohibited by law.
Monday - Friday 8:00 AM - 5:00 PM
Total Hours: 40
Job Grade: 15
4888
CCGSB