Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Information Security Officer

City First Bank of DC

Information Security Officer

City First Bank N.A. is a mission-driven Community Development Financial Institution (CDFI) principally focused on a transformative impact in underserved, urban markets with the highest needs to drive equitable economic development. Our credit activities are purely commercial and focused on the following segments: Multifamily Affordable Housing, Not-for-Profit Finance, and Small Business Finance. As a depository and commercial lending provider with over $1.3 billion in bank assets as of December 31, 2024, our unified organization has over 100 employees in Washington DC and Los Angeles/Inglewood, CA.

Role Summary

The Information Security Officer is responsible for monitoring, analyzing, and maintaining the bank's technical security controls in support of City First Bank's Information Security Program. This role will be focused on maintaining the security of the bank's applications and network which includes creation and timely execution of security projects, tool installations and integrating risk-based threat intelligence into the operational environment. The role also supports the ability to maintain assurance in our technical security controls, especially on the Cloud, so that risks to the confidentiality, integrity, and availability of the bank's information systems and infrastructure are sufficiently mitigated which in turn, supports the bank's operational and compliance goals. The role will also perform triage and analysis of security events escalated from the Tier1 and Tier-2 support teams.

Essential Functions and Responsibilities
  • Advanced monitoring of the day-to-day operation of Security Information and Event Management (SIEM) and Network Anomaly Detection and other security control tools.
  • Act as the first point of response for security event alerts and notifications. Maintain an efficient and secure IT computing infrastructure on the bank's environment, cloud, and SaaS products.
  • Provide regular security reporting and risk metrics to IT Leadership, Senior Leadership, and committees as appropriate.
  • Monitor knowledge sharing services and advise leadership on cybersecurity trends, emerging threats, and regulatory guidance.
  • Leads Information Security compliance tasks and coordinate and gather artifacts for internal and external audits.
  • Serve as the bank's designee for regulatory and audit purposes. Align controls with guidance and recommendations.
  • Work with Compliance to identify, assess, and track remediation of security risk and findings.
  • Ensure compliance with GLBA, FFIEC, and other regulatory, industry, and cybersecurity standards for access control and system permissions.
  • Manage identity and access, roles and permissions, assignments and changes, and all other activities to ensure adherence to policies and procedures.
  • Oversee periodic User Access Reviews for key bank systems.
  • Enable and oversee the process of employee user account provisioning and de-provisioning, including Active Directory and SaaS applications.
  • Lead the creation, implementation and integration of identity tools and practices that enhance the organization's security and regulatory compliance.
  • Conduct and maintain IT risk assessments including Information Security, GLBA, and Vendor / Third Party reviews.
  • Manage vendor due diligence reviews from an information security and technology perspective.
  • Develop and evaluate security procedures for IT Department.
  • Develop and administer the bank's security awareness program including annual training and phishing simulations.
  • Partner with IT infrastructure, application, and operations teams to ensure secure system design and configuration.
  • Generate and analyze reports, monitor alerts, and review reports to monitor security activities and document findings and recommend corrective actions.
  • Work with managed service providers, network administrators and security operations to resolve problems, evaluate new solutions, recommend changes, and investigate incidents.
  • Collaborate with lines of business, system, and network administrators to develop and manage role-based access control groups for ensuring appropriate access to information systems, applications, and data.
  • Responsible for analyzing user access roles, permissions, and profiles to establish user provisioning within all bank applications.
  • Implement and upgrade network security tools running in the physical and virtual environments.
  • Ensure confidential data is secure and implement controls to ensure visibility and auditability across organization for changes in roles, functions, access-levels, and data footprint.
  • Other duties as assigned.
Requirements
Education & Experience

Required Education/Experience:

  • Bachelor's degree in Computer Science or Information Systems, Information Technology, or related focused technical training (CISSP, CISM, CRISC, or CISA) or in lieu 4 additional years of engineering and information security experience.
  • 7+ years' experience in a combination of information security, or IT operations/engineering, or IT risk management
  • 4+ years' experience with designing and implementing information security technologies.
  • Extensive experience in banking regulations and compliance requirements, specifically related to regulatory examinations and security requirements.
  • Experience in supporting and managing audit, examination, and regulatory interactions.

Preferred Education/Experience:

  • 8 years of Engineering or Security Administration in banking preferred.
  • 2 years security engineering/administration in the banking/financial sector
Knowledge, Skills, and Abilities

Required Knowledge & Skills:

  • Knowledge of Microsoft Azure and Microsoft O365 virtualized environment and tools is a must. Ability to configure and work on Azure Security Center and O365 Security Center.
  • Knowledge of Active Directory, Azure AD, identity management, DLP policies, Azure Sentinel and other security tools essential.
  • Familiarity with at least one security best practice standards such as the Center for Internet Security (CIS) Security Controls or NIST Cybersecurity Framework, or equivalent.
  • Excellent knowledge of Azure Security Center and Azure portal. Knowledge of SEIM and AD tools.
  • Excellent knowledge of Microsoft Operating system and Azure tools. Strong Active Directory and Windows Group Policy knowledge.
  • Networking technology and protocols, including routers, switches, VPNs, Citrix, email gateways, etc.
  • Requires skill in providing expert input into technology projects.
  • Assist the Tier-1 and Tier-2 escalations with troubleshooting and analysis of security events.
Vacancy posted 9 hours ago
Similar jobs that could be interesting for youBased on the Information Security Officer in Washington DC vacancy
  •  ...responsible for ensuring the appropriate operational security posture is maintained for an information system and as such, works in close collaboration with...  ...Department of Defense (DoD) agencies, such as HQ Air Force, Office of the Secretary of Defense (OSD) and Military... 
    Suggested
    Work at office

    General Dynamics - IT

    Washington DC
    10 days ago
  • $248.1k - $400k

     ...preparation of independent, accurate, and informative audit reports. Our investor...  ...Washington, DC (Headquarters) or New York, NY office. ~ Generous paid time off - Up...  ...full-time position for a Chief Information Security Officer (CISO) in the Office of Technology... 
    Suggested
    Full time
    Contract work
    Work at office
    Immediate start

    Public Company Accounting Oversight Board

    Washington DC
    4 days ago
  •  ...Brief Overview of Position: Strategic Operational Solutions (STOPSO) is seeking candidates for an Information Security Officer role to support a federal client where we are focused on delivering innovative operations and solutions through proven successful methods... 
    Suggested
    Full time
    Contract work
    Fixed term contract

    Strategic Operational Solutions

    Washington DC
    1 day ago
  •  ...Role Summary The CISO is responsible for overseeing and managing the organization's information security program, ensuring the protection of sensitive data and compliance with regulatory requirements. This role involves strategic planning, risk management, and collaboration... 
    Suggested

    Beyond SOF

    Washington DC
    9 hours ago
  •  ...Chief Information Security Officer (CISO) / Head of Information Security We are seeking an experienced Information Security Leader to define and execute a comprehensive enterprise security strategy. This role is responsible for safeguarding systems, data, and infrastructure... 
    Suggested
    Remote work

    Ryde Technologies

    Washington DC
    21 hours ago
  •  ...We are seeking an Information Systems Security Officer to provide senior-level cybersecurity leadership and oversight across all information systems supporting the program, serving as the authoritative subject matter expert on security policy, risk management, and compliance... 
    Full time
    Remote work
    Home office
    Relocation package
    Flexible hours

    Spear AI

    Washington DC
    3 days ago
  • $100k - $140k

     ...excellence to employees, teams, and clients. What We're Looking For TSTC is seeking a contingent hire for a full‑time Information Systems Security Officer to support a new contract at USCG. The anticipated award for this contract is March 2026. The ISSO will be... 
    Full time
    Contract work
    Temporary work
    Local area
    Remote work
    Flexible hours

    TSTC

    Washington DC
    4 days ago
  • $77.6k - $176k

     ...Job Number: R0236862 The Opportunity Support mission‑critical national security programs as the lead Information Systems Security Officer (ISSO) overseeing the full lifecycle of Risk Management Framework (RMF) authorization activities. You will rely on cybersecurity and... 
    Local area

    Phase2 Technology

    Arlington, VA
    9 hours ago
  •  ...application due to a disability, contact this employer to ask for an accommodation or an alternative application process. Information Systems Security Officer 04 Professional Arlington, VA, US 7 days ago Requisition ID: 1107 Apogee Research brings cutting-edge research into... 
    Full time
    Contract work
    Work at office

    Apogee Research, LLC

    Arlington, VA
    9 hours ago
  •  ...Information Systems Security Officer (ISSO) Department: CISO Office Employment Type: Full Time Location: North America Description Armis, the cyber exposure management and security company, protects the entire attack surface and manages an organization's cyber risk exposure... 
    Full time
    Work experience placement
    Work at office
    Remote work

    Armis

    Washington DC
    9 hours ago
  •  ...contractor that provides services and solutions in: National Security Programs Professional, Administrative, and Management...  ...(Open) Position Status: Full Time Position Title: Information Systems Security Officer (ISSO) II Location: Washington, DC Security Clearance Level... 
    Full time
    For contractors
    Work at office
    Local area
    Flexible hours

    gTANGIBLE

    Washington DC
    4 days ago
  •  ...Information System Security Officer (ISSO) Arlington, VA We deliver essential technology services to our customers in support of their missions to sustain the national security and economic interests of our nation. SecuriGence is seeking a talented Information System Security... 
    Remote work
    1 day per week

    NJVC

    Arlington, VA
    9 hours ago
  •  ...Job Summary: DDC Innovation & Growth is seeking a part-time Information System Security Officer (ISSO) to support the United States Court of Appeals for the Armed Forces (USCAAF) in Washington, DC. This position requires on-site support and offers an opportunity to lead... 
    Contract work
    Part time
    For contractors
    For subcontractor
    Interim role
    Immediate start

    NOVA

    Washington DC
    4 days ago
  • $147.3k - $182.9k

     ...technology and ingenuity for clients across defense, national security, public safety, civilian, and military health...  ...that moves missions and the government forward! As an Information Systems Security Officer (ISSO) , you’ll be responsible for guiding government clients... 
    Live in
    Work at office
    Local area

    Accenture

    Washington DC
    4 days ago
  •  ...SECURITY CLEARANCE REQUIREMENT: TS, WITH SCI ELIGIBILITY POSITION REQUIRES US CITIZENSHIP Position Title: Information System Security Officer (ISSO) II Location: Joint Base Anacostia-Bolling (JBAB) Position Description The ISSO is responsible for ensuring the appropriate... 
    Work at office

    Redtracetech

    Washington DC
    9 hours ago
  •  ...an additional 4 years experience may be substituted in lieu of degree). Position Description: PingWind is seeking an Information System Security Officer (ISSO) responsible for overseeing system-level cybersecurity compliance, assessment coordination, and continuous monitoring... 
    Temporary work
    Flexible hours

    Dormont Manufacturing Company

    Alexandria, VA
    2 days ago
  • $92.21k - $125.15k

     ...ISSO Employment Type: Full-Time, Experienced Department: Information Technology CGS is seeking an Information Systems Security Officer (ISSO) with DIACAP and/or RMF experience who has deep expertise in security assessment documentation to support Dept. of Commerce systems... 
    Full time
    Local area
    Flexible hours

    Contact-Government-Services,-LL

    Washington DC
    3 days ago
  • $99k - $225k

     ...Job Number: R0230187 Information System Security Officer The Opportunity: We're looking for an Information System Security Officer (ISSO) who can create solutions for the Government that will withstand even the most advanced cyber threats. As an ISSO at Booz Allen, you... 
    Full time
    Contract work
    Part time
    For subcontractor
    Local area
    Remote work

    Phase2 Technology

    Riverdale Park, MD
    4 days ago
  •  ...considered in lieu of BS degree. Minimum 3 years’ experience in security engineering of Information Systems Top Secret clearance with SCI eligibility is...  ...Peraton is seeking an Information System Security Officer (ISSO) to work on a large-scale enterprise Information Technology... 

    Peraton

    Washington DC
    3 days ago
  • $120k - $200k

     ...Information System Security Officer (ISSO) Employment Type: Full-Time, Mid-Level Department: Administrative and Logistics Support As a FSR ISSO, you will be embedded on-site with U.S. Government customers to ensure the secure, compliant operation of a production-grade... 
    Full time
    Flexible hours

    Contact-Government-Services,-LL

    Arlington, VA
    4 days ago
  •  ...Senior Information Systems Security Officer Dexian Government Solutions is recruiting for a Senior Information Systems Security Officer to support our proposal effort for the DHS CIETS in DC Metro area. Position Overview Serves as DHS I&A's senior offensive security and... 
    Local area

    EmergencyMD

    Washington DC
    4 days ago
  • $100k - $150k

     ...the Hivemind Vision product lines. With offices and facilities across the U.S., Europe,...  ...supports operations worldwide. For more information, visit Follow Shield AI on LinkedIn, X,...  ...seeking a mid-level Information System Security Officer (ISSO) to support and manage classified... 
    Full time
    Temporary work
    Part time
    Worldwide

    BlackCube Labs

    Washington DC
    9 hours ago
  •  ...We are seeking an experienced Information System Security Officer (ISSO) to support a federal client's CloudData Platform modernization initiative in Washington, DC. This role is responsible for ensuring the security, compliance, and continuous authorization of a Microsoft... 
    Fixed term contract

    Omniscius Consulting

    Washington DC
    9 hours ago
  •  ...Senior Information System Security Officer (ISSO) Leidos is seeking a Senior Information System Security Officer (ISSO) at our Annapolis Junction, MD location. The ISSO will act as a security professional for a large software development program, including software maintenance... 

    Association of Old Crows

    Bethesda, MD
    4 days ago
  • $141.5k - $236k

     ...Overview Senior Information Systems Security Officer (ISSO) to support accreditation across government intelligence agencies. Based in Washington, D.C. On‑site. Responsibilities Create, update, maintain, and interpret required Body of Evidence (BOE) documentation to navigate... 
    Contract work
    Temporary work
    Work at office
    Local area
    Remote work

    ManTech International Corporation

    Washington DC
    2 days ago
  •  ...integrity, and availability of sensitive information and systems within government agencies....  ...designing, implementing, and managing robust security solutions to safeguard digital assets...  ...& ENVIRONMENTAL CONDITIONS Inside office environment. Working on a computer for... 
    Work at office
    Local area

    MartinFederal Consulting, LLC

    Arlington, VA
    2 days ago
  •  ...provider for the Department of Defense (DOD), Department of Homeland Security (DHS), Department of State (DOS), the U.S. Intelligence...  ...gender identity, national origin, veteran status, or genetic information. Edgesource is committed to providing access, equal opportunity... 
    Full time
    For contractors
    Remote work
    Flexible hours

    Edgesource Corporation

    Washington DC
    1 day ago
  • $95k - $110k

    Information Systems Security Officer (ISSO) Location: Washington, DC (Onsite) Clearance: Top Secret Status: Exempt Salary: $95k - $110k per year Responsibilities: Work as part of the IT Security Support Team which manages and operates an information systems security... 
    Full time
    Local area

    IntelliDyne

    Washington DC
    9 hours ago
  • $96.57k

     ...: Cyber and IT Risk Management Job Qualifications: Skills: Information Security Management, Information Security Risk Management, Information...  ...Department of Defense (DoD) agencies, such as HQ Air Force, Office of the Secretary of Defense (OSD) and Military Compartments... 
    Full time
    Work at office
    Immediate start
    Remote work
    Worldwide
    Flexible hours

    General Dynamics Information Technology

    Washington DC
    3 days ago
  •  ...CIO / CTO job at Rishabh RPO. Washington DC. Position Title & Code: Chief Information Officer / Chief Technology Officer (CIO / CTO) Location: NYC, NY 10007 Project End Date: 1 Year + extension. Description Advanced degree in a technology-related field, such as Computer... 
    Permanent employment

    Itlearn360

    Washington DC
    9 hours ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Information Security Officer. Be the first to apply!