At BBVA, we are working to make banking better for everyone. That is where you come in. We are looking for smart, team oriented people who want to be part of a first-class workforce that gives people the tools they need to meet their financial goals, all while delivering an outstanding client experience.
Learn more below.
What will you be doing?
Essential Job Functions:
Ensure the continuous improvement of information security requirements management
Develop, execute, and maintain a policy management roadmap and framework
Oversee the development of technical and process related documentation, including operating procedures, control manuals, business requirement documents
Provide compliance, risk, and controls expertise to support various IT Risk & Compliance initiatives and activities
Address audit related matters when needed, including oversight, internal facilitation, review and remediation efforts
Develop and maintain controls necessary to address regulatory, contractual and executive information security requirements
Participate in the risk management process
Develop and maintain relevant measurements, metrics, and KPIs for owned services
Develop and maintain dashboards for communicating metrics and KPIs
Perform remediation activities for non-compliance and monitor implementation progress (as necessary)
Routinely report on status of initiatives and remediation activities
Engage with stakeholders cross organizationally to ensure InfoSec Governance issues or inquiries are properly addressed
Oversee and participate in applicable Information Security Oversight Council Working Groups to ensure a successful flow of information to the ISOC
Manage staff to ensure productivity and service fulfillment as guided by SMART goals
What you will bring:
BA/BS (or equivalent experience) required
10+ years’ experience in IT, IT Audit, or equivalent risk management experience
Strong critical thinking and problem solving skills; knows when to escalate issues and risks to upper management
Strong communication skills – verbal, listening, written, and presentation