Hanover Bank · 18 hours ago
Senior Information Security Officer
Mineola,NY,US
Full-time
Onsite
Senior Level, Lead/Staff
$144K/yr - $180K/yr
10+ years expHanover Bank is looking for a full-time Senior Information Security Officer to join our team. The Senior Information Security Officer is responsible for implementing, administering, and monitoring the Bank’s Information Security Program, as well as overseeing Data Governance, Business Continuity, and Vendor Management Programs.
Asset ManagementBankingFinancial ServicesProfessional Services
Responsibilities
Develop and maintain an Information Security Program that conforms to mandates and guidelines set forth in Gramm-Leach-Bliley Act, Federal Deposit Insurance Corporation Improvement Act (FDICIA), Sarbanes-Oxley, Federal Financial Institutions Examination Council (FFIEC), Fair and Accurate Credit Transactions Act (FACTA), and the Department of Financial Services Cybersecurity Requirements (23 NYCRR 500) including Data Classification, Information Security Asset Risk Assessments, Incident Response, Monitoring, and Testing
Develop and maintain information security risk assessments designed to evaluate inherent risks, controls, and residual risks
Ensure that the Bank is adequately identifying threats, assessing vulnerabilities, determining risks, implementing control strategies to reduce risk, and monitoring/reviewing effectiveness
Direct the change management process to the information security program and standards, coordinate the integration of changes based on program monitoring, and incorporate Information Technology (IT) and physical security practices into the overall program
Develop effective information security policies and administrative, technical, and physical safeguards and standards, monitor compliance, and ensure policies and standards are implemented and operating effectively
Develop and administer an information security training and awareness program, inclusive of social engineering and phishing, applicable to Bank employees and customers
Keep abreast of and monitor regulations, technology trends, and the threat landscape, and amend the Bank’s information security program accordingly
Coordinate Incident Response planning and reporting for information security activities
Develop and administer the Bank’s Vendor Management Policy and Program and manage the ongoing operations related to such
Develop and administer the Bank’s Business Continuity Plan and Program
Oversee the Bank’s annual penetration test as performed by an independent third party
Perform periodic reviews of User Access Rights and Privileges
Periodically report to Executive Management and the Board of Directors on the Bank’s information security program
Ensure access to information systems is controlled, both internally and externally, commensurate with the level of potential risk. Recommend and report on appropriate corrections and assess the implementation of such corrections
Evaluate and recommend changes to ensure adequate information security is provided for all information systems and peripherals
Manage the Bank’s Data/Records Classification, Retention, and Handling Policy and Procedures
Coordinate with departmental management to ensure the proper classification and destruction of Bank electronic records
Serve as the Chairperson of the Bank’s Disaster Recovery Team
Participate as a member of various Bank Committees as the Bank’s ranking information security risk leader
Oversee and direct staff
Perform all other duties as assigned
Qualification
Required
Bachelor's degree or equivalent experience
10+ years' experience in banking risk management or similar work experience in risk management
5+ years' experience in developing/administering a comprehensive information security program, including risk governance framework
Must have security certification CISM, CISSP, or equivalent
Strong knowledge of developing Information Security governance frameworks
Strong knowledge of Vendor Management, including Vendor Risk Assessments
Strong knowledge of Business Continuity Planning, including Disaster Recovery Testing
Strong Knowledge of the following areas: Network Security, Privileged Access Management, Cloud Security, Endpoint Security, Application Security, and SIEM, SOC Systems
Excellent analytical skills
Strong interpersonal skills
Strong oral and written communication skills
Ability to effectively analyze and articulate risks, including recommendations
Benefits
Medical, Dental, and Vision insurance (with HSA, FSA, and Commuter Benefits options)
Company-paid Life Insurance and Accidental Death & Dismemberment (AD&D)
Company-paid Long-Term Disability Insurance
Additional Life and AD&D Insurance for employee, spouse, and dependents
Voluntary Short-Term Disability Insurance
Pet Insurance
Legal Services Plan
Accident Insurance
Hospital Indemnity Insurance
Cancer Care Insurance
401(k) Plan with Company Match
Paid Personal Time Off (PTO)
Paid Company Holidays
Annual Performance Bonuses
Annual Salary Increases
Company-sponsored Events
Employee Contests and Recognition Programs
Company
Hanover Bank
Hanover Bank offers banking, cash management, online & mobile banking, merchant services, and digital solutions.
201-500 employees
Funding
Current Stage
Growth StageLeadership Team
Raffaella Palazzo
First SVP, Chief Operations Officer
Michael Locorriere
Executive Vice President & Chief Municipal Officer
Recent News
Hanover Bancorp, Inc
2025-09-25
Hanover Bancorp, Inc
2025-08-07
Company data provided by crunchbase