Senior InfoSec Manager - Risk and Compliance
Remote - Virginia
Full Time Senior-level / Expert USD 157K - 215K
Company
Federal Reserve Bank of RichmondAbout the OpportunityOur National IT Office of the Chief Information Security Officer’s (OCISO) Operations Risk & Compliance Management team has an immediate opening for a Senior Information Security Manager.
As Senior Manager, you will report to the Compliance Officer and will play a key role in supporting the team’s major objectives, including evaluating and managing consistent adherence to information security controls and assessing risk identification and assessment / mitigation activities. You will also work with clients and on cross functional teams, as well as conduct and provide research and analysis of technical data, to develop and present recommendations and solutions within risk and compliance areas.
About the Opportunity
Our National IT Office of the Chief Information Security Officer’s (OCISO) Operations Risk & Compliance Management team has an immediate opening for a Senior Information Security Manager. As Senior Manager, you will work remotely and will report to the Compliance Officer and will help support the team’s major goals, including evaluating and managing adherence to information security controls and assessing risk identification and assessment / mitigation activities. You will also work with clients and across teams to conduct and provide analysis of technical data, to develop and present recommendations and solutions within risk and compliance areas.
What You Will Do:
Participate in and conduct information system authorization activities for all technology components based on established technology standards.
Perform risk analyses of operational issues using established methodologies and tools within risk and compliance as a second level support.
Work with clients and other resources to assess current information security capabilities, identify customer needs, and recommend controls improvements within risk and compliance areas.
Provide support and collaboration in completing risk analyses, provide ad-hoc reporting, information or process mapping, and alignment of technology or operational-related resources and present issues and outcomes in written and verbal format to senior management.
Participate in initiatives to address process improvements, IT/IS policy/risk matters, or compliance issues, and contribute to best practices and how to improve current practices and monitoring capabilities.
Provide support to the Operations Risk and Compliance team as a product owner in the development of program increment plans and sprints.
Provide consultation and guidance on the implementation of and adherence to the FRS, FedRAMP, and FISMA security assurance policy and procedures.
Foster a culture of innovation and learning, engagement, and appropriate risk taking.
Mentor staff, motivate a high-performing team of domain experts, and lead program effectiveness.
Qualifications:
Demonstrated senior managerial experience and motivational skills to manage staff and management, direct activities of assigned unit(s), direct, participate in and implement complex operating or business plans, orchestrate team efforts to provide high quality deliverables, meet department goals and make strategic and notable contributions in accomplishment of goals. Empower staff to resolve issues and position themselves for success through training, and responsibilities.
Bachelor's Degree or equivalent experience with 5+ years of relevant work experience in the security assurance domain.
Advanced knowledge and application of NIST 800-53, FedRAMP, and FISMA.
Progressive experience with the principles in information security, compliance, and IT risk management disciplines.
Certification in one or more IS industry recognized certifications (such as CISSP, CISA/CISM, GIAC, CRISC, or CCSP etc.).
Develop creative solutions through collaboration and negotiation.
We may ask you for extended work hours and occasional travel including overnight stays.
Discover the Reason Why So Many People Love It Here!
When you join the Richmond Fed, not only will you find a challenging and purposeful career, you’ll also have access to a wide range of benefits and perks that support your health and wealth, including:
Great medical benefits
Pension and 401(k) with employer match
Paid time off
Tuition reimbursement
Employee resource networks
Paid volunteer leave
Flexible work options
Onsite amenities that make working here fun!
Other Requirements and Considerations:
Candidates should review the Bank’s Employee Code of Conduct to ensure compliance with conflict of interest rules and personal investment restrictions.
If you need assistance or an accommodation due to a disability, please notify rich.recruitment@rich.frb.org.
Employees who work at and/or visit another Federal Reserve entity or outside business as part of their job duties are required to comply with any onsite safety and health protocols of those organizations (including, but not limited to, requirements to vaccinate or test, mask, social distance, etc.).
Sponsorship is not available for this role. The selected candidate will be subject to a government security investigation and must meet eligibility requirements for access to classified information. Eligibility for this specific position requires U.S. Citizenship.
The national hiring range for the IS Senior Manager is $157,000-$215,930 annually. For candidates in certain markets (Boston, MA; Chicago, IL; Los Angeles, CA; New York City Metro Area, Philadelphia, PA; San Francisco, CA; Seattle, WA), the listed hiring and salary ranges may be adjusted based on your geographic location. Salary offered will be based on the job responsibilities and the individual’s knowledge, skills, and experience as defined in the job qualifications.
Applications are reviewed on a rolling basis. Interested candidates are strongly encouraged to apply by May 6, 2024.
Full Time / Part Time
Full timeRegular / Temporary
RegularJob Exempt (Yes / No)
YesJob Category
Supervisory/ManagementWork Shift
First (United States of America)The Federal Reserve Banks believe that diversity and inclusion among our employees is critical to our success as an organization, and we seek to recruit, develop and retain the most talented people from a diverse candidate pool. The Federal Reserve Banks are committed to equal employment opportunity for employees and job applicants in compliance with applicable law and to an environment where employees are valued for their differences.
Tags: CCSP CISA CISM CISO CISSP Compliance CRISC FedRAMP FISMA GIAC Monitoring NIST NIST 800-53 Privacy Risk management
Perks/benefits: 401(k) matching Career development Flex hours Flex vacation Health care Medical leave
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Staff Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open IT Security Analyst jobs
- Open Senior Penetration Tester jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Sr. Security Engineer jobs
- Open Security Researcher jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open APIs-related jobs
- Open SaaS-related jobs
- Open Java-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open IDS-related jobs
- Open DevOps-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open DoD-related jobs