The client is seeking a Bank Director, Information Technology Security to support enterprise-wide cybersecurity and information security initiatives. The role manages select technical aspects of third-party implementations, helping ensure projects are delivered on time, within scope, and to a high-quality standard. The position is based in the Chicago, IL area.
Key responsibilities include overseeing enterprise security awareness and training; developing and leading an information security program aligned with applicable security frameworks and regulatory expectations; establishing governance including policies, standards, and procedures; and managing cybersecurity risk through activities such as risk assessments, threat modeling, and vulnerability management. The director will also lead third-party cybersecurity risk management, including security due diligence, risk assessments, contract review for security clauses, data handling and usage considerations, and ongoing monitoring of vendor security posture.
The director serves as a primary liaison for internal and external audits, regulatory examinations, and third-party assessments related to cybersecurity. Additional duties include defining and executing a multi-year cybersecurity strategy; providing oversight of incident response planning to support organizational readiness; collaborating with business units to integrate security into digital transformation and product development; monitoring and responding to emerging threats, vulnerabilities, and regulatory changes; and fostering a culture of security across the organization. The role also includes leading evaluation and adoption of advanced security technologies, ensuring compliance with applicable laws and regulations, resolving high-impact security issues with strategic oversight, and setting acceptable risk thresholds aligned with enterprise risk appetite.