Information Security Governance and Risk Reporting Manager – Vice President
iCapital Network is powering the world’s alternative investment marketplace. Our financial technology platform has transformed how advisors, wealth management firms, asset managers, and banks evaluate and recommend bespoke public and private market strategies for their high-net-worth clients. iCapital services approximately $70 billion in global client assets invested in close to 750 funds across more than 125,000 underlying accounts.
iCapital was named Solutions Provider of the Year at the 2020 MMI/Barron’s Industry Awards and selected to the 2018, 2019, 2020 and 2021 Forbes FinTech 50, a list of the top 50 innovative financial technology companies that are transforming finance through technology.
About the Role
The Information Security Governance and Risk Manager will be responsible for developing and leading iCapital Network’s security governance and reporting functions. This role will review and enhance policies and procedures, identify and document required security controls, and develop metrics in a security governance program to effectively manage risk. The governance and reporting program should enable the articulation of security risk appetite and identify and report on gaps and areas out of risk tolerance.
The governance and reporting function, in coordination with iCapital’s enterprise risk team, will act as a challenge function by providing questions and feedback across multiple cyber risk program activities. The function will maintain an independent security risk perspective, consistently and appropriately providing feedback to continuously manage information security risk.
This person must be hands-on, comfortable working in small teams, and interested in continually researching to improve knowledge or iCapital platforms, tools, and risk.
Responsibilities
- Develop, lead, and provide information security governance and oversight.
- Monitor and drive the rollout of the information security governance and risk reporting, ensuring that policies, controls, procedures, and resources are in place to effectively manage risk.
- Develop an information security reporting capability across key areas such as identity and access, vulnerability and patching, third party security, cloud, security operations, data security and incident response.
- Coordinate and, where appropriate, lead independent control evaluations (e.g., audits, exams, SOX, and compliance testing), and self-identified issues.
- Lead assessments to support appropriate evaluation of the Information Security Program and maturity (through the FSSCC Cybersecurity Profile and FFIEC CAT) .
- Stay current with industry standards, regulatory requirements, and best practices around IT such as FFIEC Guidelines, NIST, ITIL, COBIT, Cloud Security Alliance, etc.
- Develop and maintain effective channels of communication with other risk officers, control functions, and executives.
- Collaborate with senior business and technology leaders and other risk managers to resolve the most challenging risk matters.
Qualifications
- Bachelor’s degree in computer science, technology, or a financial-related discipline (e.g. Business, Economics, Finance, or Accounting), or an equivalent combination of education and work experience
- 5+ years of enterprise experience with emphasis on risk management, information security, or equivalent work experience and training
- Knowledge of key technology rules and regulations, and technology risk management practices (e.g. Information Security, Business Continuity, FFIEC, CoBIT, ITIL)
- Negotiation skills and highly collaborative planning ability
- Ability to influence and communicate effectively and impactfully
Benefits
iCapital offers a comprehensive benefits package that includes a competitive total compensation program consisting of salary, equity for all full-time employees, annual performance bonus, and an employer matched retirement plan; generously subsidized healthcare with 100% employer paid dental, vision, telemedicine, and virtual mental health counseling; and generous paid time off (PTO) featuring unlimited sick time and parental leave.
As we plan to re-enter our offices in 2021, iCapital will offer most employees the flexibility to work remotely one to two days a week. Every department has different needs, and some positions will be designated in-office jobs, based on their function.
While we are currently working remotely due to COVID-19, this position will be based in our NYC or Princeton, NJ office.
For additional information on iCapital Network, please visit https://www.icapitalnetwork.com/about-us Twitter: @icapitalnetwork | LinkedIn: https://www.linkedin.com/company/icapital-network-inc
iCapital Network is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, gender, sexual orientation, gender identity, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.