Leadership Solutions

Information Security Data Protection Manager

Organization:

Regions Bank

Location:

Birmingham, AL

Description:

At Regions, the Information Security Data Protection Senior Manager leads a team of security professionals to design, develop, and implement new and innovative technological solutions to stop adversaries, protect our most sensitive data, and strengthen our data protection capabilities. This role focuses primarily on key capabilities such as data loss prevention, data labeling, data masking, tokenization, database activity monitoring, insider threat, and other data protection related strategies. This position also develops and manages strong strategic relationships with senior leadership levels in multiple business units throughout the bank and banking industry and integrates security standards, risk and compliance requirements, and best practices mandated by the Bank’s Chief Information Security Officer, the Chief Risk Officer, and the Chief Information Officer.

Primary Responsibilities

  • Leads the development of new data protection technology strategies which ensure data protection is an inherent part of our “defense in depth” approach
  • Serves as expert and leads the bank in the use of tokenization, data masking, data dispersion, and other data protection techniques
  • Defines encryption related standards and deploys and supports products (such as Vormetric, Protegrity, Voltage, etc.)
  • Serves as expert and manages key data protection applications (such as ProofPoint, ForcePoint, Symantec DLP, Guardium, Titus, McAfee DLP, etc.)
  • Enhances the data classification process ensuring systems and information assets are appropriately categorized
  • Provides support to drive the maturity of the Cybersecurity software development lifecycle, including adoption of firmwide Agile processes


Please see complete job description online.

Qualifications:

  • Bachelor's degree in Computer Science, Engineering, or other Technology related field
  • Eight (8) years of technology or information security related experience
  • Four (4) years of information security experience with primary focus on data protection
  • Four (4) years of leadership experience, preferably in a senior leadership role
  • Experience developing leadership talent including coaching, mentoring, and building a talent pipeline
  • Experience with technology and security policy and administration, preferably within financial services
  • Experience managing and developing a security program aligned with an industry standard such as NIST 800-53, FFIEC, or ISO-27002

Certification/Licensures

  • Professional Certification such as CISSP, CISM, or equivalents

Skills and Competencies

  • Ability to articulate security risks and vulnerabilities
  • Ability to set priorities and balance likelihood and business impact against cost of remediation and competing business interests
  • Ability to act decisively in making solid, informed judgment calls in response to both the technological and critical regulatory environment and the day-to-day business issues
  • Effective communication and presentation skills to articulate policies, procedures, and plans to the Board of Directors and senior level executives across the entire enterprise
  • Maintains strong problem solving and creative skills
  • Strong knowledge of regulatory standards that govern Information Security practices such as FFIEC, SOX, HIPAA, and state and federal privacy laws

How to Apply:

Apply online

URL:

https://careers.regions.com/us/en/job/R55545/Information-Security-Data-Protection-Manager

Posted:

15-Nov-2021