Be part of an amazing information security team supporting the Technology organization as the Vice President, Information Security Officer. In this role you support the definition and management of the global enterprise information security programs. This includes ensuring that appropriate technical and administrative security controls exist across all information technology resources and data; and that crucial physical security controls are effectively applied across the enterprise.
Evolve the global enterprise information security and privacy vision, strategies, and best practices. Ensure the appropriate tools and technologies are implemented reducing the risk of attacks against enterprise systems.
Ensure the secure and uninterrupted operation of all information systems.
Advise the selection, deployment, configuration, implementation, and operation of new security solutions and improvements to existing security solutions.
Clearly articulate objectives, scope, and the anticipated benefits for every project.
Effectively lead all development and integration activities.
Lead the operations and support teams to build and maintain highly available critically important processes and systems.
Advocate for information security and technology resilience standard methodologies.
Maintain reliable, up-to-date information on industry security trends and developments, as well as applicable global government regulations.
Ensure that technology aligns with existing laws and regulations and that the enterprise technology environment is secure.
Responsible for ensuring that all security audits are performed to ensure that the integrity, confidentiality, and availability of information to end users is not compromised.
Accountable for the protection and integrity of the company's information assets while enabling world-class information access.
Advise senior technology and business leaders regarding information security risks and their responsibility in minimizing exposure to those risks.
Determine threats, identify risks and vulnerabilities to the organization, research security breaches and recommend corrective actions.
Responsible for the managing and maintaining an effective resiliency plan for the information security capabilities.
Ensure that resiliency and the appropriate contingency plans are in place that enable the enterprise to successfully respond and recover from an event.
Work closely with technology teams to ensure alignment with business continuity plans.
Support the internal and external risk assessment process, development of policies, standards and procedures, testing, and security reporting processes.
Provide support to the incident response process by ensuring effective investigation and response to reported security events to protect the company and its customers from an imminent loss of information or value.
Represent Ameriprise in front of various industry regulatory agencies.
Effectively lead a globally distributed team of information security experts in a manner that ensures effective delivery of the enterprise information security and privacy goals through performance management, mentor, and skill development, etc.
Recruit, develop and retain a qualified and motivated team.
Bachelor's degree in Computer Science, Engineering, MIS, or related technical field; or equivalent work experience.
10+ years' experience in roles with increasing responsibility in the technical fields of information security and/or compliance applications.
CISSP, CISA, CISM or CRISC; or equivalent security certification.
Series 99 certification Strong working knowledge of IT security, privacy issues and technology resiliency as they relate to large-scale, transaction intensive systems.
Demonstrated experience designing, developing, and supporting large volume transactional systems; preferably in the Financial Services or Broker Dealer environments; or other highly regulated industry.
Advanced understanding in one or more of the following areas: Operating System Security, Database Security, Network Security, Firewalls, Computer Security Incident response, Cloud Deployments or Vulnerability Scanning.
Series 99 registration and/or ability to obtain upon hire.
Ability to communicate security-related concepts to technical and non-technical audience in an articulate and persuasive manner.
Demonstrated experience working with multiple business partners and vendors to provide 24x7 support and usage of information security services and systems.
Demonstrated knowledge of global regulatory and risk management requirements from a security perspective for the financial services industry.
Experience managing third-party vendors. Demonstrated ability to effectively motivate and lead a team of technology professionals.
About Our Company
The Ameriprise Financial Technology team mission is to create innovative technology solutions and engaging digital experiences for our clients, advisors, and employees. We embrace an inclusive and collaborative culture that allows us to partner across the business and lend our expertise in the areas of corporate computing, network infrastructure and security. We celebrate the unique qualities and reward the contributions of our talented, passionate employees. If you're motivated and want to work for a strong, ethical company that cares about you and your community, take the next step with Ameriprise Technology.
Ameriprise Financial is an equal opportunity employer. We consider all qualified applicants without regard to race, color, religion, sex, national origin, genetic information, age, sexual orientation, citizenship, gender identity, disability, veteran status, marital status, family status or any other basis prohibited by law.