SAFE Credit Union

Description

• Assist in the coordination of annual vendor management review process.
• Complete other duties and special projects, as assigned.
• Assist in maintaining an effective business continuity program and assess the maturity levels of the program against goals.
• Facilitate and coordinate the completion of the Business Impact Analysis review process.
• Participate in developing and providing business continuity management awareness education to business partners.
• Participate in the creation, coordination, facilitation, and communication of business continuity exercises, including but not limited to table-top exercises, simulation testing, and full-scale exercises.
• Assist in evaluating the effectiveness of the disaster recovery planning and testing.
• Manage and Control SAFE’s business continuity software.

• Supporting the Vendor Risk Committee with the oversight and risk mitigation of vendor relationships and vendor due diligence vetting.
• Supporting member of the Technical Review Board providing oversight and risk mitigation of new technology and conducting due diligence.
• Assist in developing risk related training materials.
• Conduct entity-level phishing campaigns, analyzing results, and preparing monthly reporting materials.
• Perform regular reviews on SAFE’s Information Security Program to ensure compliance with established security policies and application standards including, but not limited to, Application User Access Review, Terminated Access Reviews, GLBA IT Risk Assessment, and Entitlement Reviews.
• Manage and Control SAFE’s phish testing software.
• Validate SOC Report End User Control Responses.

• Assist internal and external auditors as required.
• Responsible for post examination tracking response specifically for IT audits, ensuring accuracy and compliance with relevant policies and regulations.

• CRISC or CISA certification desired, or ability to obtain over the next 36 months.
• ABCP or CBCP certification desired, or ability to obtain over the next twelve months.

• Excellent verbal and written communication skills.
• Excellent interpersonal, communication, and leadership skills, as success in this position depends on building rapport and credibility with multiple stakeholders across the organization.
• Superior critical thinking and analytical skills.
• Ability to research and interpret a variety of professional standards and regulatory guidelines for vendor risk management, business continuity, and information assurance areas.
• Knowledgeable in major areas of credit union operations, and of regulatory guidelines for vendor risk management, business continuity management, and information security.
• Ability to work independently, as well as part of department and project teams.
• Must have strong prioritization skills and be able to multitask.
• Proficient Excel skills.

• Excellent communication skills (verbal, written, listening skills, and empathy).
• Expert ability to build relationships with other leaders, business partners, and stakeholders.
• Ability to write reports, business correspondence, and procedure manuals.
• Ability to effectively present information and respond to questions from groups of managers.

• Ability to interpret a variety of instructions furnished in written, oral, or schedule form.
• Ability to solve practical problems and deal with a variety of concrete variables in situations where only limited standardization exists.

• While performing the duties of this job, the employee is regularly required to sit and talk or hear, and use hands to finger, handle, or feel objects, tools, or controls.
• The employee is occasionally required to stand; walk; reach with hands and arms; and stoop, kneel, crouch, or crawl.
• The employee must occasionally lift and/or move up to 10 pounds.
• Specific vision abilities required by this job include close vision.
• The noise level in the work environment is usually moderate