Information Security Analyst, Senior - Part Time

Mutual Bank Muncie, IN
All MutualBank employees are expected to deliver consistent, high-quality customer service by interacting professionally with all internal & external customers; maintain confidentiality in all bank matters; dress professionally & appropriately, and using our core values, conduct themselves in a highly ethical manner.

* Provide technical and policy guidance for information technology systems and devices for compliance with financial regulations, state and federal laws, and information security policies and best practices. Monitor implementation of regulatory and industry best practices, because of controls and compliance reviews.

* Maintain a high level of expertise and knowledge of information security requirements & various financial, State, and Federal regulatory issues.

* Maintain up-to-date knowledge of technology systems, information security and compliance evolution, and assess potential impacts to MutualBank.

* Lead oversight projects, make recommendations, test systems, technology, resources, and processes crucial to the security of MutualBank data.

* Lead and/or coordinate information security training for employees and customers of MutualBank on a regular basis in accordance with regulatory guidelines and information security best practices. This will include conducting phishing and/or social engineering training for employees.

* Lead and/or coordinate enterprise Business Continuity planning, testing and management review. Lead update of documentation and annual Board report.

* Ensure that the Information Technology, Risk Management, and Audit areas are strategically aligned in order to achieve key compliance objectives, as it pertains to information security.

SUPERVISORY RESPONSIBILITIES None.

COMPETENCIES Adaptability, decisiveness, driving for results, initiative, teamwork and cooperation, information seeking, project management, self-driven, and specialized knowledge

QUALIFICATIONS To perform this job successfully, an individual must be able to satisfactorily perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

SPECIAL POSITION REQUIREMENTS The position may require sitting for extended periods of time, lifting up to 50lbs, limited overnight travel, and the ability to be on call 24/7 for incident response activities.

EDUCATION and/or EXPERIENCE A Bachelor's degree in Information Systems, Computer Science, Information Security or related curriculum and 7 or more years in information technology or risk management, or the equivalent in related experience is required. A Master's degree is preferred. Prior experience with financial regulatory and compliance matters is required. Prior IT management experience is strongly preferred. The ability to effectively communicate and present deep technical issues to a non-technical audience, and the ability to effectively direct internal & external resources is required. Expertise with Windows and open source operating systems, various network protocols, intrusion detection and prevention platforms, encryption, network security, host and network-based firewalls, log management software, and penetration testing and vulnerability management suites is preferred. Active information security certifications in multiple disciplines are preferred; as is a wide understanding of a vast array of information security concepts. Individual must be willing to pursue certification in the Information Security arena such as CISA, CISSP, CISM and/or others.