Credit Union:

TwinStar Credit Union

Region:

Lacey, WA

Closing:

2/1/2023

Job Description:

Invest in People. Empower Success

Information Security Officer

The ISO is responsible for building a strategic and comprehensive information security program that defines, develops, maintains and implements processes that enable consistent, effective information security practices. The ISO is responsible for reporting on information security frameworks and applying the best practices to protect member financial information in all of its forms. Position closes February 1st, 2023.

Status

Full-Time Regular, Exempt

Location

This position is eligible for remote work from the following states only; Washington, Oregon, Idaho, Florida, New Mexico, Texas, Alabama, Arizona, Tennessee, Kansas, and Maine. You must reside or be willing to relocate to one of the approved listed states. TSCU does not offer relocation assistance. You must reside or be willing to relocate to one of the approved listed states before first day of employment. TSCU does not offer relocation assistance.

Visa sponsorship not available.

Contact us at 800.258.3115 with any questions or request for accommodation.

Requirements

Essential Functions and Tasks

  • Develops and implements global policies,  procedures, and plans related to: security of computer systems, networks and telecommunications; nonpublic personal information (NPI) security and privacy compliance; business continuity, risk management, loss and fraud prevention; and emergency and incident response.
  • Works closely with the Chief Risk Officer to ensure alignment between security and privacy compliance programs; acts as a liaison to a variety of business functions, assists with breach determination and notification processes under applicable state and federal breach rules and requirements.
  • Responsible for initial and ongoing information security risk assessment and analysis, mitigation and remediation; conducts audits to find, report on and suggest remediation for gaps in security posture.
  • Establishes and administers a process for investigating and acting on security incidents which may result in a privacy breach Identifies and prioritizes security initiatives and standards; addresses privacy, confidentiality and standards administration.
  • Investigates security breaches; develops and directs technical teams in the investigation and resolution of a variety of complex information privacy and security issues using a systematic approach.
  • Establishes and maintains technical computer and network security systems and protocols.
  • Establishes and maintains administrative computer and network security systems and protocols.
  • Monitors and reviews logs of computer systems and network activities for possible unauthorized intrusion.
  • Oversees, develops and delivers security training to credit union employees at all levels relative to the privacy and security of credit union and nonpublic personal information (NPI).
  • Researches and recommends appropriate hardware and software to implement and maintain information privacy and security. Initiates, facilitates, and promotes activities to foster information security awareness within the organization.
  • Evaluates security trends, evolving threats, risks and vulnerabilities; implements tools to mitigate risk as necessary.
  • Collaborates with senior management and other stakeholders to establish governance for the security program.
  • Manages security incidents and events involving  nonpublic personal information (NPI).
  • Ensures organization has audit controls in place to monitor activity on electronic systems that contain or use electronic and non-electronic nonpublic personal information (NPI).
  • Oversees periodic monitoring and reviewing of audit records to ensure that activity is appropriate; includes but is not limited to logons and logoffs, file accesses, updates, edits and printing.
  • Participates in the development, implementation, and ongoing monitoring of third party relationships, to ensure security concerns, requirements, and responsibilities are addressed.
  • Serves as information security consultant to all departments for all data security related issues.
  • Develops and implements global policies, procedures, and plans related to: security of computer systems, networks and telecommunications; nonpublic personal information (NPI) security and privacy compliance; business continuity, risk management, loss and fraud prevention; and emergency and incident response
  • Works closely with the Chief Risk Officer to ensure alignment between security and privacy compliance programs; acts as liaison to the Information Systems and Compliance functions, assists with breach determination and notification processes under applicable state and federal breach rules and requirements.

Education & Experience Required

Education

  • High school graduate or GED

Experience

  • 5+ years progressive experience in information security management, financial information management, information systems and/or risk management
  • A significant level of integrity, credibility and diplomacy is required

Education and Experience Preferred:

Education

  • Bachelor’s degree in Information Systems or a related field

Experience

  • 5+ years experience in financial, medical or other highly regulated industry with information security management is preferred.

Pay Range

The full pay range is $130,547.69-$195,821.54 annually. Depending on experience and qualifications.

Benefits

This position is eligible for Full-Time Regular benefits. Employees and their eligible family members have access to a wide array of employee benefits, such as medical, dental, vision and life insurance coverage. Medical, Dental, and Vision insurance is paid at a 100% by company for the employee coverage. We also offer Health Care FSA (HCFSA) and Day Care FSA (DCFSA). Employees have access to disability and AD&D insurance. Employees are able to enroll in our 401k plan. Full-Time Regular employees accrue 8 hours of vacation and 8 hours of sick leave, on a monthly basis. Full-Time Regular hired employees also receive 11 paid holidays throughout the calendar year, 1 personal holiday, and 16 hours of volunteer time.

All benefits except 401k start the first of the month after 30 days of employment. Employees become eligible to contribute to 401k on the first of the month following 60 days of employment

We invest in people and empower success.

At TwinStar Credit Union, we offer our employees rewarding careers serving our members and communities. Our approach is centered on the member experience while creating “Digital First” solutions. We know our employees do best when they are cared for. The experience created for members and employees is our difference.

Our Experience Principles are:

1. Make it easy for us

2. Deliver us value

3. Empower us

4. Care about us

5. Know us

Through these principles, we recognize that investing in the growth and development of others is a measure of success. At TwinStar, we are deeply committed to creating an environment where members and employees feel empowered to bring their whole and authentic selves to each experience. We embrace and celebrate our diversity in individuals and in thought while striving for inclusion in all we do.

Career Development

Being an employee of TwinStar Credit Union is so much more than a job. It’s a place of belonging, where each employee is surrounded by others who support in a way that helps ensure the ongoing success of all.

We recognize that investing in the growth and development of our employees is one of our most important measures of success.

The experience of our members ultimately ties back to the experience of being a successful and well-developed TwinStar employee. It begins with a full Onboarding program – a multi-day learning experience geared toward helping new employees feel welcome, connected, included, and engaged. But that’s just the beginning!

Other opportunities for growth include:

  • A vast library of curated online learning content, developed by in-house professionals or through reputable industry partners.
  • Coaching and mentoring using proven methods and techniques.
  • Engaging and interactive instructor-led training, facilitated by seasoned experts.
  • Networking with industry professionals in the Pacific Northwest and across the country.
  • Tuition assistance to open doors to professional licensure, certification, or degrees of study.
  • In-house Employee Resource Groups, creating inclusive micro-communities to use your voice.

EEO Statement
TSCU is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, veteran status, disability, sexual orientation, gender identity, or any other protected status.