Pay is based on a number of factors including the successful candidate’s job-related knowledge and skills, qualifications, and prior experience. Arvest offers a comprehensive suite of benefits, including a full range of health and life, financial, and wellness benefits. For more information about benefits, please visit www.arvest.com/careers/benefits.

Position is Monday through Friday 8 am to 5 pm with ability to work additional hours as needed.

Location: 201 W Walnut St, Rogers, AR.

Preferred experience:

Experience formulating threat-hunting hypotheses using data-driven information:

• Past Incidents
• Threat Intel
• Detections
• Experience and intuition

Experience deploying and implementing cyber ranges suitable for threat hunting:

• Test on target systems, logs, network traffic captures
• Deploy sensors and agents where needed

Experience developing a close-loop threat-hunting program that incorporates findings from threat-hunting exercises into related security areas, including but not limited to Incident Response, Detection Engineering, Vulnerability Management, etc.

Summary:

SUMMARY: The Information Security Manager (ISM) is a critical member of the Chief Information Security Officer's (CISO) team, acting as an interface between the CISO's strategic and process-based activities and the work of the technology-focused analysts, engineers, and administrators within the IT organization. The ISM translates the IT risk requirements and business constraints into technical control requirements and specifications while developing metrics for ongoing performance measurement and reporting. Furthermore, the ISM coordinates the IT organization's technical activities to implement and manage security infrastructure and provides regular status and service-level reports to management. Performing in a leadership capacity, the ISM utilizes a strong technical background and abilities to work closely with the rest of the IT organization and business management roles in aligning priorities and plans with key business objectives. While acting as an empowered representative of the CISO during IT planning initiatives, the ISM ensures that security measures are incorporated into strategic IT plans and that service expectations are clearly defined. Additionally, the ISM works with business and IT stakeholders to balance real-world risks with business drivers such as speed, agility, flexibility, and performance.

ESSENTIAL DUTIES AND RESPONSIBILITIES include the following. Other duties may be assigned.

1. Works with the Information Security organization to develop a security program and security projects that address identified risks and business security requirements.
2. Manages the process of gathering, analyzing, and assessing the current and future threat landscape, as well as provides the Information Security organization with a realistic overview of risks and threats in the enterprise environment.
3. Works with the Information Security organization to develop budget projections based on short- and long-term goals and objectives.
4. Provides security communication, awareness, and training for audiences, which may range from senior leaders to field staff.
5. Consults with IT and Information Security organizations to ensure that security is factored into the evaluation, selection, installation and configuration of hardware, applications, and software.
6. Recommends and coordinates the implementation of technical controls to support and enforce defined security policies.
7. Researches, evaluates, designs, tests, and recommends or plans the implementation of new or updated information security hardware or software, and analyzes impact on the existing environment; provides technical and managerial expertise for the administration of security tools.
8. Works with the enterprise architecture team to ensure that there is a convergence of business, technical, and security requirements; liaises with IT management to align existing technical installed base and skills with future architectural requirements.
9. Develops and implements controls and configurations that are aligned with security policies and legal, regulatory and audit requirements.
10. Coordinates, measures, and reports on the implementation and effectiveness of security controls in the environment.
11. Manages security projects and provides expert guidance on security matters for other IT projects.
12. Assists and guides the Disaster Recovery Planning team in the selection of recovery strategies and the development, testing, and maintenance of disaster recovery plans.
13. Monitors and reports on compliance with security policies, as well as the enforcement of policies within the organization.
14. Works with the Information Security organization, IT, and business stakeholders to define metrics and reporting strategies that effectively communicate successes and progress of the security program.
15. Provides support and guidance for legal and regulatory compliance efforts, including audit support.
16. Assists resource owners and IT staff in understanding and responding to security audit failures discovered in the environment.
17. Acts as an active participant in the Cyber Security Incident Response Team (CSIRT).
18. Acts as a liaison between industry peers, government agencies (including law enforcement), and other specialists.
19. Coordinates with the fusion center to identify and assess IT security incidents.
20. Assists in the development and delivery of incident preparedness exercises both at the fusion center level as well as the crisis management team.
21. Ensures execution of the incident response process to the resolution of the incident.
22. Actively monitors and researches cyber threats that could have a direct or indirect impact on the Arvest brand, ownership, business operations, technology infrastructure, and customer trust.
23. Utilizes commercial intelligence providers to gain insight into existing activities in the hacker and fraudster communities, as well as planned activities and emerging motivations.
24. Advises the Information Security organization of significant emerging threats and recommends tactical steps to counteract such threats.
25. Develops intelligence briefings, reports, and short position papers, with a focus on relevant, actionable intelligence.
26. Understands and complies with bank policy, laws, regulations, and the bank's BSA/AML Program, as applicable to your job duties. This includes but is not limited to; complete compliance training and adhere to internal procedures and controls; report any known violations of compliance policy, laws, or regulations and report any suspicious customer and/or account activity.

TEAM ACCOUNTABILTIES:

• Support and uphold the Arvest Mission Statement.
• Uphold the Arvest Code of Ethics to ensure that confidential information is safeguarded.
• Maintain a high level of cooperation and rapport with all associates in order to ensure accurate and efficient operations and service.
• Formulate and communicate new ideas and suggestions that will improve profitability and efficiency for the company’s overall operation.
• Promote professionalism at all times.

SUPERVISORY SKILLS:

Directly supervises a team of Information Security professionals. Carries out supervisory responsibilities in accordance with the organization's policies and applicable laws. Ensures direct reports have completed required compliance training and are adhering to all internal procedures and controls as it relates to bank policy, laws, regulations and Arvest’s BSA/AML Program. Responsibilities include interviewing, hiring, appraising performance, rewarding, and disciplining associates. The incumbent has the authority and the appropriate influence to make recommendations regarding hiring, firing, advancement, promotion, or any other change of status of other associates within the guidelines of the bank’s procedures and guidelines for such change of status events. The incumbent provides training, planning, assigning, and directing work assignments and schedules; addressing complaints and resolving problems.

Responsibilities:

QUALIFICATION REQUIREMENTS:

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable qualified individuals with disabilities to perform the essential functions.

EDUCATION and/or EXPERIENCE:

• Bachelor's degree in Information Systems or equivalent work experience required.
• 7 years of IT experience, with 5 years in an Information Security role, required.
• 2 years of experience in a supervisory capacity required.
• Master’s Degree in Information Security preferred.
• Experience working in the Financial Services industry preferred.
• Experience working with law enforcement or other relevant government agencies preferred.
• Certified Information Systems Security Professional (CISSP) or Certified Information Systems Security Manager (CISM) certification preferred.

OTHER SKILLS AND ABILITIES:

• Must be able to arrive at work on time and have regular work attendance.
• Must be able to work cooperatively and cordially with other customers and coworkers regardless of personality, presence, or communication style.
• Must be able to perform several tasks at once.
• Must be able to work in a stressful atmosphere.
• Must be able to rotate job tasks.
• Must be able to coordinate multiple and changing priorities.
• Must be able to occasionally work outside of normal business hours.
• Must be able to move from department, division, or bank to department, division, or bank to attend meetings.
• Must be able to operate personal computer keyboard in order to create reports, schedules and other appropriate documentation.
• Must be able to communicate effectively in both business and technical terms.
• Must be able to communicate in written, oral, and presentation formats that best represent and express user and organizational requirements.
• Must be able to form productive relationships with internal clients by listening, clarifying, and responding.

PHYSICAL DEMANDS:

The physical demands described here are representative of those that must be met by an associate to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable qualified individuals with disabilities to perform the essential functions.

The associate must be able to travel occasionally by themselves within the US, including overnight, and via automobile and air.

WORK ENVIRONMENT:

The work environment characteristics described here are representative of those an associate encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable qualified individuals with disabilities to perform the essential functions.

The noise level in the work environment is usually moderate.

Grade 19

**Pay Range: **$122800 - $145825 per year