Information Security Director in Brooklyn, OH at Key Bank- Corporate

Date Posted: 8/10/2018

Job Snapshot

Job Description

Job Brief:
This position is accountable to lead and manage team members within the Security Architecture group to achieve security goals and tasks within their specialization areas. The position must have excellent leadership, advanced Information Technology and Security background, and experience in a wide range of IT/security disciplines and solutions. The position must have excellent presentation, report writing and customer interface skills.
From a more general perspective, the position must be able to identify, analyze and assess security risk and facilitate the development and implementation of effective designs that can span multiple disciplines. This position must function within the Corporate Information Security team but will ideally be effective across the entire IT/Security spectrum and able to analyze complex security issues and explain them in standard business language. Functional knowledge of both technical and business aspects of security is highly desirable, with the ability to design and collaborate with IT owners and operators.


Required Qualifications:
Key technical skills include:
Five or more years’ experience in:
  • Managing IT/Security technologists, designers, architects, or engineers
  • Experience with implementing and/or managing security aspects of networks, operating systems, identity and access management systems, cryptography, securing data transmissions, web access management, mobile devices and database platforms.
  • Experience in managing a group of architects/engineers and driving enterprise architecture capabilities within a large corporation
  • Security architecture, demonstrating solutions delivery, information security principles and emerging technologies, designing security solutions. This includes continuous monitoring and working with information security teams to ensure improvements to those solutions over time.
  • Consulting and engineering in the development and designing of security best practices and implementation of solid security principles across the organization to meet business goals along with customer and regulatory requirements.
  • Security considerations of cloud computing: including data breaches, weak authentication, account hijacking, malicious insiders, third parties, APTs, data loss and web-based attacks.
  • Identify and access management (IAM): The framework of security policies and technologies that limit and track the access of those in the organization to sensitive technology resources.
Experience with and knowledge of:
  • Programming languages, API/Web services, scripting languages and relational database management systems (RDBMS) such as MS SQL Server or Oracle.
  • Windows, UNIX and mainframe.
  • Relevant National Institute of Standards and Technology (NIST) standards, along with ISO27001, COBIT and COSO familiarization.
  • Education: BS in information security, information technology, engineering, or related areas.
  • A Master’s degree in an IT field is a plus, and a master’s in security is an even bigger plus.

Possible Certifications Requirement:
  • Certified Information Systems Security Professional (CISSP)
  • Information Systems Security Architecture Professional (ISSAP)
  • Certified Information Security Manager (CISM)
  • Certified Information Systems Auditor (CISA)


Essential Job Function
Develops, plans, and schedules the development, introduction, communication and maintenance of the corporate systems architecture including the applications, data, and infrastructure architectures and assures that this architecture is integrated with the business area architectures.
Takes leadership to integrate new technology such as mobile applications and cloud-based resources into existing systems.
Assures that the corporate architecture is consistent with disaster recovery plan objectives.
Develops reports and presentations on infrastructure products and new technology for all levels of management and technical staff.
Organizes and controls the activities of the section, assigns personnel to the various projects and directs their activities. Reviews, evaluates and prepares periodic performance reports of own staff.
Coordinates the development of the overall project plans and timetables.
Performs related duties as required or assigned.





ABOUT KEY:
KeyCorp's roots trace back 190 years to Albany, New York. Headquartered in Cleveland, Ohio, Key is one of the nation's largest bank-based financial services companies, with assets of approximately $134.5 billion at March 31, 2017. Key provides deposit, lending, cash management, insurance, and investment services to individuals and businesses in 15 states under the name KeyBank National Association through a network of more than 1,200 branches and more than 1,500 ATMs. Key also provides a broad range of sophisticated corporate and investment banking products, such as merger and acquisition advice, public and private debt and equity, syndications, and derivatives to middle market companies in selected industries throughout the United States under the KeyBanc Capital Markets trade name. KeyBank is Member FDIC.

ABOUT THE BUSINESS:
Key Technology and Operations (KTO) is Key Bank’s shared services organization for technology, operational, and servicing functions supporting business partners and clients across all lines of business. Within the overall organization, KTO provides efficient, reliable and secure technology; creates an effective variable cost technology delivery model that maximizes the return on IT spend; orchestrates the efficient use of corporate information and technology assets; and supports innovation that creates competitive distinction. KTO is effective and efficient in payment and deposit servicing, loan servicing, exception and dispute processing, investment and support services, sourcing and procurement, as well as enterprise-wide fraud prevention, investigations and operational support to human resources and the Bank’s BSA/AML program.

FLSA STATUS:Exempt

KeyCorp is an Equal Opportunity and Affirmative Action Employer committed to engaging a diverse workforce and sustaining an inclusive culture. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.

JobID: 30941BR

Not Ready to Apply?

Joining our Talent Network will enhance your job search and application process. Whether you choose to apply or just leave your information, we look forward to staying connected with you.