Risk Officer - Information Technology Risk
If you are a current FIB employee, please apply through the Career Worklet in the Employee Portal.
This position can be located in Des Moines, IA, Sioux Falls, SD, Billings, MT, and Omaha, NE.
What's Important to YouWe know your career is just one aspect of a meaningful, complex, and demanding life.
That's why we designed our compensation and benefits package to provide employees and their families with as much choice as possible.
Accrue and use your paid time off (PTO) immediately - no waiting period - plus paid federal holidays in addition to PTO.
To assist employees in paying down student loan debt, we will make monthly payments of $100 directly to eligible loan service providers on behalf of our employees until the loan is paid off.
Our retirement plan is one of the best in the region, including a 6% employer match on your 401(k).
Employees (including temporary) scheduled to work 20 or more hours per week are automatically enrolled day one.
The health and happiness of the places we call home matter to us.
Learn a little more about what we do for the communities we serve and why we want YOU to be a part of it.
We encourage you to apply.
Reach for what you want and tell us why your work ethic and willingness to learn make you a natural fit for #TeamFirstInterstate.
SUMMARYThe Risk Officer is responsible for leading the Informational Technology risk oversight within the Enterprise Risk Management (ERM) group.
Responsibilities include developing, implementing, maintaining, and managing Information Technology (IT) and Information Security (InfoSec) risk management functions that are aligned with regulatory expectations and corporate guidelines.
The position requires sound knowledge of the financial institution landscape with a broad understanding of technology, technical process documentation and IT control/procedure identification.
The Risk Officer will proactively work with business units and IT stakeholders to assist and lead both risk and control assessment reviews and implementing ongoing monitoring and testing strategies for operational controls that meets enterprise policies and standards.
This position collaborates with IT stakeholder on identifying, evaluating, mitigating, and reporting on operational IT risks.
Responsible for ensuring identified controls meet compliance and regulatory requirements and aligns with and supports the risk posture of the enterprise.
ESSENTIAL DUTIES & RESPONSIBILITIES Assists in overseeing the management of the IT risk framework; works with business stakeholders, business units and the ERM team to ensure IT/Infosec risks are appropriately identified, monitored, and assessed within established policies and regulatory best practices.
Assist in leading the analysis and review of system outages to isolate key driver themes and work with IT stakeholders to formulate and address action plans.
Collaborate and lead in the management of all annual IT/Infosec control assessments; review, monitor and test identified controls within assessments.
Ensure the completion, review, and effective challenge for all IT/Infosec policies, standards, and procedure processes.
Responsible for the early identification of any emerging technology and cyber risks; responsible for ensuring effective controls are in place to mitigate identified risks.
Facilitate and lead business stakeholders through the remediation of all outstanding regulatory or audit issues; ensure identified control or process deficiencies are remediated through the design of action plans to address gaps in existing controls.
Monitor and challenge IT/Infosec business continuity and disaster recovery program plans Assist risk & IT leaders with enhancing existing risk and control assessment methodologies as well as identifying development opportunities for new assessments Guide stakeholders through the design and reporting of key risk and performance indicators Assist in the effective challenge of inherent and residual risk ratings and lead the identification of and changes to strategies or regulations for assigned business units Conduct IT risk management education and training in accordance with established timelines.
EDUCATION and/or EXPERIENCE Bachelor's degree in an IT related field or equivalent experience required.
At least 5 years of banking experience in a role with a background in technical process documentation, risk, and control assessments.
Deep understanding of information security industry frameworks (COSO, NIST, FFIEC).
CRISC, CISM, or CISSP certifications preferred Must have excellent communication and interpersonal skills to interface with enterprise stakeholders.
Must have the ability to work independently and to prioritize projects/responsibilities with strong organizational skills and attention-to-detail.
LANGUAGE SKILLS Ability to read, analyze, and interpret common scientific and technical journals, financial reports, and legal documents.
Ability to respond to common inquiries by and to effectively present information to regulators, management and/or boards of directors.
REASONING ABILITY Ability to define problems, collect data, establish facts, and draw valid conclusions.
Ability to interpret an extensive variety of technical instructions in mathematical or diagram form and deal with several abstract and concrete variables.
PHYSICAL DEMANDSWhile performing the duties of this job, the employee is regularly required to walk and talk or hear.
The employee frequently is required to stand and sit.
The employee is occasionally required to use hands to finger, handle, or feel; reach with hands and arms; and stoop, kneel, crouch, or crawl.
The employee must frequently lift and/or move up to 50 pounds.
Specific vision abilities required by this job include close vision.
WORK ENVIRONMENTThe work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job.
Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
The noise level in the work environment is usually moderate.
If you are a current FIB employee, please apply through the Career Worklet in the Employee Portal.
Recommended Skills Accounting Assessments Auditing Banking Services Business Continuity And Disaster Recovery Cash Or Share Options Estimated Salary: $20 to $28 per hour based on qualifications.
This position can be located in Des Moines, IA, Sioux Falls, SD, Billings, MT, and Omaha, NE.
What's Important to YouWe know your career is just one aspect of a meaningful, complex, and demanding life.
That's why we designed our compensation and benefits package to provide employees and their families with as much choice as possible.
Accrue and use your paid time off (PTO) immediately - no waiting period - plus paid federal holidays in addition to PTO.
To assist employees in paying down student loan debt, we will make monthly payments of $100 directly to eligible loan service providers on behalf of our employees until the loan is paid off.
Our retirement plan is one of the best in the region, including a 6% employer match on your 401(k).
Employees (including temporary) scheduled to work 20 or more hours per week are automatically enrolled day one.
The health and happiness of the places we call home matter to us.
Learn a little more about what we do for the communities we serve and why we want YOU to be a part of it.
We encourage you to apply.
Reach for what you want and tell us why your work ethic and willingness to learn make you a natural fit for #TeamFirstInterstate.
SUMMARYThe Risk Officer is responsible for leading the Informational Technology risk oversight within the Enterprise Risk Management (ERM) group.
Responsibilities include developing, implementing, maintaining, and managing Information Technology (IT) and Information Security (InfoSec) risk management functions that are aligned with regulatory expectations and corporate guidelines.
The position requires sound knowledge of the financial institution landscape with a broad understanding of technology, technical process documentation and IT control/procedure identification.
The Risk Officer will proactively work with business units and IT stakeholders to assist and lead both risk and control assessment reviews and implementing ongoing monitoring and testing strategies for operational controls that meets enterprise policies and standards.
This position collaborates with IT stakeholder on identifying, evaluating, mitigating, and reporting on operational IT risks.
Responsible for ensuring identified controls meet compliance and regulatory requirements and aligns with and supports the risk posture of the enterprise.
ESSENTIAL DUTIES & RESPONSIBILITIES Assists in overseeing the management of the IT risk framework; works with business stakeholders, business units and the ERM team to ensure IT/Infosec risks are appropriately identified, monitored, and assessed within established policies and regulatory best practices.
Assist in leading the analysis and review of system outages to isolate key driver themes and work with IT stakeholders to formulate and address action plans.
Collaborate and lead in the management of all annual IT/Infosec control assessments; review, monitor and test identified controls within assessments.
Ensure the completion, review, and effective challenge for all IT/Infosec policies, standards, and procedure processes.
Responsible for the early identification of any emerging technology and cyber risks; responsible for ensuring effective controls are in place to mitigate identified risks.
Facilitate and lead business stakeholders through the remediation of all outstanding regulatory or audit issues; ensure identified control or process deficiencies are remediated through the design of action plans to address gaps in existing controls.
Monitor and challenge IT/Infosec business continuity and disaster recovery program plans Assist risk & IT leaders with enhancing existing risk and control assessment methodologies as well as identifying development opportunities for new assessments Guide stakeholders through the design and reporting of key risk and performance indicators Assist in the effective challenge of inherent and residual risk ratings and lead the identification of and changes to strategies or regulations for assigned business units Conduct IT risk management education and training in accordance with established timelines.
EDUCATION and/or EXPERIENCE Bachelor's degree in an IT related field or equivalent experience required.
At least 5 years of banking experience in a role with a background in technical process documentation, risk, and control assessments.
Deep understanding of information security industry frameworks (COSO, NIST, FFIEC).
CRISC, CISM, or CISSP certifications preferred Must have excellent communication and interpersonal skills to interface with enterprise stakeholders.
Must have the ability to work independently and to prioritize projects/responsibilities with strong organizational skills and attention-to-detail.
LANGUAGE SKILLS Ability to read, analyze, and interpret common scientific and technical journals, financial reports, and legal documents.
Ability to respond to common inquiries by and to effectively present information to regulators, management and/or boards of directors.
REASONING ABILITY Ability to define problems, collect data, establish facts, and draw valid conclusions.
Ability to interpret an extensive variety of technical instructions in mathematical or diagram form and deal with several abstract and concrete variables.
PHYSICAL DEMANDSWhile performing the duties of this job, the employee is regularly required to walk and talk or hear.
The employee frequently is required to stand and sit.
The employee is occasionally required to use hands to finger, handle, or feel; reach with hands and arms; and stoop, kneel, crouch, or crawl.
The employee must frequently lift and/or move up to 50 pounds.
Specific vision abilities required by this job include close vision.
WORK ENVIRONMENTThe work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job.
Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
The noise level in the work environment is usually moderate.
If you are a current FIB employee, please apply through the Career Worklet in the Employee Portal.
Recommended Skills Accounting Assessments Auditing Banking Services Business Continuity And Disaster Recovery Cash Or Share Options Estimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
