IT Security & Risk Manager II jobs in United States
cer-icon
Apply on Employer Site
company-logo

Academy Bank · 3 weeks ago

IT Security & Risk Manager II

positionKansas City, MO
timeFull-time
remoteOnsite
seniorityMid Level
money$120K/yr - $120K/yr

Academy Bank is seeking an IT Security & Risk Manager II who will be responsible for ensuring the confidentiality, integrity, and availability of data and systems. The role involves managing risk assessments, incident response, and security reviews, while also coordinating vendor management and disaster recovery programs.

BankingFinancial Services

Responsibilities

Perform risk assessments and impact analyses to identify vulnerable areas within the company’s security program. The risk assessment process includes identifying threats and risks, identifying technical, logical, and operational controls that are in place to mitigate the threats, and analyzing and reporting the observations found during the risk assessment process
Manage the vulnerability assessment software including defining asset groups, determining software parameters, and assigning scan profiles. Will also oversee the handling of vulnerability issues including the evaluation of vulnerability exceptions. Will keep management apprised of vulnerabilities and risks
Will monitor the handling of firewall/IDS/IPS/malware incidents to ensure issues are investigated and solved appropriately. Could include investigating incidents directly. Will keep management apprised of results
Will develop incident procedures and oversee the investigation and reporting of security incidents including phishing, smishing, virus, dos, and privacy breaches. Will keep management apprised of incidents
Will be responsible for executing the Company’s incident response plan
Will identify information security monitoring standards and define the correlating rules required from Security Information and Event Management (SIEM) solution. Responsibility could also include the writing and managing of the SIEM solution
Coordinate all security reviews and tests including, but not limited to, firewall rule review, social engineering tests, penetration tests, and vulnerability assessments
Coordinate the Company’s disaster recovery and business continuity program. This includes maintaining the plans, coordinating the BIA, facilitating recovery testing, assessing vendor’s resiliency, and preparing corporate awareness
Manage the enterprise vendor management program. This includes coordinating the vendor due diligence, the vendor oversight, perform vendor security reviews, and managing vendor contracts
Will assist in defining security controls and security baselines for systems being implemented
Inform and train staff members, both inside and outside the IT department, on their responsibilities concerning IT security as it relates to Company systems
Assess need for security reconfigurations (minor or significant) and either execute them or coordinate the execution of them
Assist in internal audit or external audits as necessary. This may include responding to audit requests, preparing audit documentation, or acting as liaison between IT and the audit entity
Participate in the IT budget and expense management process. This may include the preparing of cost analyses for IT purchases, investigating IT expenses, identifying possible cost saving opportunities, and assist in all or part of the IT budgeting process
Develop security procedures as necessary
Remain informed on trends and issues in the security industry, including current and emerging technologies. Keep team managers apprised of findings
Be highly knowledgeable of the Organization’s overall security policies, and recommend changes and enhancement
Keep current with emerging security standards, alerts and issues. (FFIEC Security Handbook, ISO, etc)
Protect all client and bank information confidentially and follow all company policies
Understand, communicate, and instill the Company’s mission, vision, and values (Pillars of Success)
Complete monthly training in a timely manner to ensure knowledge of bank regulatory requirements, policies, and procedures
Working at the worksite during regular business hours and/or assigned hours
Other specified duties as assigned

Qualification

Risk assessmentsIncident responseSecurity InformationEvent Management (SIEM)Vulnerability assessmentsDisaster recoveryVendor managementTraining skillsAudit assistanceCommunication skillsTeam collaboration

Required

Experience in performing risk assessments and impact analyses
Knowledge of GLBA, FFIEC Handbook, and industry accepted information security and data standards
Experience managing vulnerability assessment software
Ability to monitor and investigate firewall/IDS/IPS/malware incidents
Experience developing incident procedures and overseeing investigations of security incidents
Ability to execute the Company's incident response plan
Experience identifying information security monitoring standards and defining correlating rules for SIEM solutions
Experience coordinating security reviews and tests
Experience coordinating disaster recovery and business continuity programs
Experience managing enterprise vendor management programs
Ability to define security controls and security baselines for systems
Experience in training staff on IT security responsibilities
Ability to assess and execute security reconfigurations
Experience assisting in internal or external audits
Participation in IT budget and expense management processes
Ability to develop security procedures
Knowledge of trends and issues in the security industry
Knowledge of the Organization's overall security policies
Ability to keep current with emerging security standards, alerts, and issues
Ability to protect client and bank information confidentially
Understanding and communication of the Company's mission, vision, and values
Completion of monthly training in a timely manner
Ability to work at the worksite during regular business hours

Benefits

Medical
Dental
Vision
401(k) plan
Company paid life insurance
Short and Long-term disability insurance
Company paid vacation, paid leave and holidays

Company

Academy Bank

twittertwitter
company-logo
Academy Bank Academy Bank offers a strong commercial banking platform for the company to provide a wide array of products and services.
dateFounded in 1966
location
Kansas City, Missouri, USA
people-size501-1000 employees
web-link
https://www.academybank.com

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Chuck Frederick
EVP, Chief Retail Officer
linkedin
leader-logo
Dan Dickinson
Chief Credit Officer
linkedin

Recent News

Business Wire
KBRA Assigns Ratings to Dickinson Financial Corporation II
2025-11-06
PR Newswire
Academy Bank Strengthens Presence in Colorado with Grand Opening of New Main Branch in Downtown Littleton
2025-10-31
PR Newswire
Academy Bank Selects Cable to Power Automated Compliance Testing for Strategic Growth
2025-10-23
Company data provided by crunchbase