Head of Security

Position Summary:

Join a team focused on the success of our customers, the success of our communities, and the success of each other. Farm Credit East (FCE) is the leading provider of loans and farm advisory services to farm, forest product, fishing, and other agricultural business owners across the northeast with $11.7 billion in total loan volume and $29 million in annual financial services revenue from 18,000 customers across our 8-state territory. We are One Team Working Together with a focus on our five pillars: Outstanding Customer and Employee Experience, Quality Growth, Operational Excellence, Commitment to our Communities, and Protecting Customer Information. 

The Head of Security at FCE is a responsible for leading the teams and overseeing the strategy, operations, and Security of the company's technology infrastructure, systems, and services as well as Security. This senior leadership role ensures the efficient and reliable operation of all Security related to IT infrastructure, data centers, networks, cloud services, SaaS and related technologies to support the business. Security focus is to protect company data and IP, reports into the Chief Information Officer.

We offer generous benefits including: a 6% 401K match plus an additional defined contribution retirement plan, medical, dental, HSA, paid annual holiday and sick leave, FSA, life insurance, and a bonus incentive program. Farm Credit East provides all team members with the training and resources needed to be successful in their careers. Technical training, soft skill training, and ongoing professional development provided by Farm Credit East will help you be poised for continued career growth within our organization.  We use state of the art technology for customer relations (Salesforce), internal communication (Microsoft TEAMS) and delivery of services.

Come join a collaborative, customer-focused team at Farm Credit East!

Duties and Responsibilities:

• Develop and execute the strategic vision and roadmap for enterprise infrastructure, platforms, and technology operations to meet current and future business needs

• Manage the direction and vision of our internal MSP that are aligned with other associations and hold the MSP accountable to deliver on Security and Infra SLAs as well as delivering on the overall agreed service catalog for those areas

• Collaborate with the Managed Service Provider in understanding their technology roadmap and how best to deploy their solutions

• Lead and manage a team of IT professionals spanning infrastructure engineering, cloud operations, networks, cybersecurity, data centers, and related domains

• Oversee the design, implementation, maintenance, and continuous improvement of highly available, scalable, and secure infrastructure and technology services

• Manage service level agreements and ensure operational excellence with metrics for performance, reliability, capacity planning, and cost optimization

• Collaborate with business stakeholders to understand requirements and align technology capabilities to meet business objectives

• Drive operational efficiencies through process improvements, automation, tooling, and adoption of modern infrastructure and cloud technologies

• Develop and manage annual technology infrastructure budgets, forecasts, and resource planning monitor security policies, standards, guidelines, and procedures covering areas such as access control, risk management, incident response, business continuity, and disaster recovery.

• Build and lead a high-performing security and privacy team, providing strategic direction, management, coaching, and professional development opportunities.

• Collaborate with cross-functional teams to integrate security and privacy controls into the design, development, and deployment of new products, services and systems.

• Stay current on emerging security threats, attack vectors, and industry best practices; implement defensive technologies and processes to mitigate risks.

• Conduct risk assessments, security audits and penetration testing; identify and resolve potential vulnerabilities across applications, networks, servers, databases, and endpoints.

•  

  Develop and manage an information security awareness and training program to educate employees on security risks and best practices. 

• Oversee the monitoring of security systems and incident response processes to promptly detect, investigate and resolve potential security breaches or incidents.

• Ensure compliance with all relevant laws, regulations and industry standards related to data protection, privacy and information security (e.g. GDPR, HIPAA, NIST, PCI DSS, NIS2) .

• Represent the company's security and privacy interests by participating in external committees, working groups and advisory boards.

• Prepare and deliver security risk reports, metrics and recommendations to executive leadership and the Board of Directors

Job Qualifications and Requirements:

• 15+ years of progressive experience in Security, technology and infrastructure
• Proven Track record building out environments and high performing teams that deliver a sound and secure place for all technology needs across all business lines and functions.
• Proven expertise in enterprise infrastructure technologies, such as data centers, networks, cloud services, SaaS platforms and cyber security. Should possess Certs; (CISSP, CISM, CRISC, CISA)
• Strong leadership abilities with exceptional organizational, communication, and interpersonal skills
• Expertise in IT service management frameworks (ITIL, etc.) and driving operational excellence
• Excellent strategic planning, financial management, and budgeting skills
• Knowledge of IT governance models, security frameworks, and regulatory compliance standards
• Bachelor's degree in Computer Science, Engineering, or related technical field; advanced degree is preferred or equivalent experience
• Experience leading diverse, cross-functional, and globally distributed teams in a matrix organization
• Bachelor's degree in Computer Science, Information Security or related field. Advanced degree preferred or equivalent experience
• 10+ years of progressive leadership experience in information security and data privacy roles.
• Deep technical knowledge in areas such as security controls, cryptography, network security, cloud security, application security, Ethical Hacking, Social Engineering & Digital Forensic Science.
• Proven ability to build, mentor and lead high-performing security teams.
• Excellent communication and presentation skills to convey complex security concepts to technical and non-technical audiences.
• Strong strategic thinking, analytical, problem-solving and decision-making capabilities.
• Knowledge of relevant laws/regulations and industry security/privacy standards and frameworks.
• Experience managing security programs and projects within large, complex organizations.
• Salary range: $160,000 - $225,000 commensurate with experience.

Farm Credit East is an Equal Opportunity Employer. As an Equal Opportunity Employer, we do not discriminate on the basis of race, color, religion, national origin, sex, sexual orientation, gender identity or expression, age, marital status, parental status, political affiliation, disability status, protected veteran status, genetic information or any other status protected by federal, state or local law. It is our goal to make employment decisions that further the principle of equal employment opportunity by utilizing objective standards based upon an individual's qualifications for a specific job opening. In compliance with the Americans with Disabilities Act (“ADA”), if you have a disability and would like a reasonable accommodation in order to apply for a position with Farm Credit East, please call 1-800-562-2235 or e-mail FarmCreditCareers@farmcrediteast.com.