ORS Partners

  • Head of Information Security and Fraud

    Job Locations US-Radnor
    Posted Date 1 month ago(4/20/2018 4:29 PM)
    Job ID
    # of Openings
    Information Technology
  • Overview

    BankMobile is seeking an experienced IT and Banking professional to head up the Cyber Security and Fraud teams.  This role is responsible for the technical oversight of the enterprise’s information security technology portfolio and program. Additionally this person will be responsible for leading a large investigative function that is charged with identifying opportunities to protect the bank from losses and conducting complex and often sensitive internal, external, and debit card investigations for the Bank while assuring all required regulatory reports, which result from these investigations, are filed in adherence with all regulatory requirements


    The Head of Cyber Security and Fraud is a technologist and a subject matter expert (SME) for all information security platforms, Fraud and banking regulations who is responsible for developing the organization’s policies and procedures and investigating information security events.


    This role will form and implement the strategy to reduce fraud and protect data.


    • Provide guidance to the business and technology teams, as required, on InfoSec related issues. This includes active input to projects during analysis and design phases to ensure that IS requirements have been considered and appropriately addressed.
    • Handle technical security implementations and oversight across the organization and all of the bank’s 3rd party vendors. This will involve identifying business objectives to inform the process of defining security requirements and overseeing design, test and solution rollout.
    • Engage key internal and external partners from Corporate Security, Legal, Human Resources, Sales and Services Risk Oversight, Technology and Operations Services, Retail Banking, Information Security Services, and Enterprise Financial Crimes Compliance.
    • Ensure Information Security 3rd party assurance review process identifies and documents the risk levels of existing or potential suppliers; and that those risks are fed back to the business units in appropriate fashion.
    • Focus on the ongoing development of employees to include training, coaching, and providing growth opportunities. Ensure all mandatory training and performance evaluations for staff members are completed on time.
    • Facilitate programs of vulnerability assessment and penetration testing to ensure they are conducted on relevant internal and externally hosted platforms.
    • Continuously monitor organizational performance and identify and implement improvements within Fraud Investigations. This will include the complete centralization and standardization of all investigative teams. Work with a sense of urgency to quickly identify and resolve performance and customer service issues that arise. Organizational improvements should encompass the identification and implementation of related procedures and guidelines, performance metrics, reporting, and technology.
    • Maintain up-to-date knowledge of the Information Security industry including awareness of new or revised security solutions, improved security processes and the development of new attacks and threat vectors.
    • Lead security incident management activities, from identification to resolution.
    • Oversee activities with internal and external security auditors.
    • Develop Information Security awareness material and conduct security awareness briefings to staff and senior management.
    • Ensure Infosec policies are published and that they reflect appropriate controls and up to date threats
    • Assess and self-identify issues within area of responsibility and manage regulatory and audit exams effectively, including the timely completion of related issue mitigation milestones.
    • Establish and implement key performance related procedures, measures, and indicators across Fraud Investigations that will ensure investigations and SARs are completed timely while continuously improving to meet industry standards.
    • Submit annual budget requests and manage budget as related to Information Security and Fraud
    • Continuously monitor and escalate significant matters to the attention of senior leadership.


    • Bachelor’s or Master’s Degree in Information Technology, Computer Science, Engineering, Cyber-Security or related field.
    • In-depth knowledge of applications, systems, network and data security, telecommunications, security operations, and associated hardware, software and protocols.
    • At least 15 years of professional experience leading teams in a fraud, cyber-fraud, compliance or risk environment of the financial services industry or financial investigations experience in Federal, State or local law enforcement with 8 + years of full time experience leading and managing information security professionals in a health care environment.
    • Strong working knowledge of financial markets and banking products
    • Demonstrated autonomy and high-level capability leading large teams investigating financial services and corporate-related crime, including but not limited to, investigations involving external fraud, internal fraud, credit card fraud, elder fraud, and cyber-related fraud
    • Responsible for maintaining constant awareness of the ever-evolving financial crimes environment both internally and externally; active involvement in several industry-wide intelligence sharing and networking initiatives
    • Demonstrated experience assisting senior management to drive change and influence policies, controls and surveillance methodology across multiple bank business channels
    • Demonstrated management experience required with demonstrated ability to develop leadership and management skills in coaching and developing people at all performance levels via established performance objectives, regular feedback, and appropriate recognition
    • Background in information technology in an area such as; networking, programming, database management or systems administration.
    • Possess a general understanding of the applicable local, state (Penal Code) and federal statutes (Title 18) that relate to fraud, forgery, computer crimes, identity theft, elder abuse, crimes against persons and property
    • Strong knowledge of information security principles and practices.
    • Experience with incident response and analysis, preferably in a leadership role.
    • Strong knowledge of IDS/IPS, firewalls, proxies and other network security technologies.
    • Strong knowledge of host-based information security technologies.
    • Strong knowledge of Incident Analysis and response concepts and techniques.
    • Strong knowledge of security implications involving a variety of technologies including but not limited to; Microsoft, Cisco, EMC, and other market leaders in technology solutions, including mobile devices.
    • Experienced and comfortable in delivering both planned and ad hoc presentations; able to secure the support of senior management at the highest levels through sound communication and interpersonal skills
    • Demonstrated ability to author and update department guidelines and procedures


    Technology strengths

    • Methods of IT strategy, enterprise architecture and security architecture
    • Security concepts related to DNS, routing, authentication, VPN, proxy services and DDOS mitigation technologies
    • ISO 27002, ITIL, NIST and COBIT frameworks
    • PCI, HIPAA, NIST, GLBA and SOX compliance assessments
    • Knowledge of cyber security vulnerabilities and the remediation process
    • Windows, UNIX and Linux operating systems
    • Firewall and intrusion detection/prevention protocols
    • Secure coding practices, ethical hacking and threat modeling
    • TCP/IP, computer networking, routing and switching
    • Network security architecture development and definition
    • Knowledge of third party auditing and cloud risk assessment methodologies
    • System resiliency and restoration methodologies



    Preferred Experience/ Qualifications:

    • At least one certification from related to information security or Fraud: Certified Fraud Examiner (CFE), Certified Anti Money Laundering Specialist (CAMS), Certified Financial Crimes Specialist (CFCS), Certified Regulatory Compliance Manager (CRCM), Certified Information Security Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP)



    About BankMobile:

    BankMobile, a division of Customers Bank, is the largest and fastest growing mobile-first bank in the country. Our mission is to make banking affordable, effortless, and financially empowering for the millions of Americans who need it the most – the underbanked, millennials and working-class Americans.  


    BankMobile is the first bank in the U.S. to offer a completely fee-free banking experience and uses innovative mobile technology to make banking enjoyable and seamless. The Bank is also committed to making each of its customers feel financially empowered through education and access to a free financial coach. Through constant innovation, its white label banking distribution model, and putting the customer experience above all else, BankMobile is truly disrupting the banking space.


    BankMobile, a division of Customers Bank, will provide consideration for employment to qualified applicants without regard to their race, color, religion, national origin, sex, protected veteran status or disability.


    BankMobile, a division of Customers Bank. Member FDIC - Equal Housing Lender - All Rights Reserved


    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed