Responsible for enterprise-wide IT Governance, Risk and Information Security, this role will provide leadership in the areas of Project/Program/Portfolio Management, Vendor Management, BC/DR, and Data Security; Cross-functional expertise, thought-leadership, passion for technology and ability to thrive in an entrepreneurial environment are keys to be successful in this role; This role will report to CIO; Direct reports will include the following teams - PMO, VMO, Info Security, and BC/DR.
•Define, operationalize, and continue to mature PMO processes - including but not limited to project governance, score card, dash boards, prioritization, change control, communication and stakeholder expectation management
•Institute formal Vendor Management processes - contract review /rationalization, legal coordination, risk review, financial negotiation, etc.
•Define, implement and supervise firm*s BC/DR policies and procedures; Review BC/DR plans for all business units and ensure risk mitigation strategies are in place; Lead periodic BC/DR tests * including tabletop exercise
•Perform periodic enterprise-wide information security risk assessments, penetration tests, and vulnerability scans
•Publish and enforce Information Security standards, and protect confidentiality and integrity of customer, employee and business information; Implement processes to restrict access to production data; Conduct periodic access review
•Manage IT Budget - both baseline as well as projects - allocated for this area
•Work with CIO to plan, deploy and deliver existing services in support of the enterprise and the individual business units
•Continuously identify, define and develop new services and enhancement of existing services to create and support value for the business units. Work interactively with business unit sponsors to devise innovative and cost-effective technology capabilities to advance Mesirow’s core business functions
•Accountable for accomplishment of schedules and plans for all services and applications projects
•Manage, coach and develop direct reports to assure efficient organization of key projects and ongoing service management and delivery
•Build high performance Service Management team. Builds and develops the technical talent of Service Management into a well-rounded team through implementing new ideas and improved processes. Bring industry best practices to develop metrics to trend growth as well as resource and staffing needs.
•Review and approve training and staff development programs for SMO staff; Ensure performance objectives are clearly set for all employees in the team and performance of all team members is actively and consistently managed throughout the year.
•Graduate Degree with 10+ years’ experience in managing medium-sized cross-functional teams
•Preferred: PMP, CISSP and/or other industry certifications/qualifications in the area of Program/Project Management, Information Security, and IT Controls
•Financial Services Domain experience with specific focus on Investment Management, and Insurance
•Hands-on experience with contract review, and vendor negotiation
•Familiarity with compliance-based and prevention-based security programs including audit support, policy development, penetration testing, social engineering, malware prevention, public key encryption, access administration and security preparedness testing
•Experience designing, implementing and operating disaster recovery and business continuity services including fault-tolerant application engineering, data recovery and data mirroring methods, multi-site operations and failover testing, hosted and co-located recovery centers, and compliance-based business continuity programs
•Strong verbal and written communication skills - ability to effectively communicate complex concepts and ideas in an engaging, simple manner with external and internal partners at all levels
•Knowledge and experience with ITIL and/or control frameworks such as ISO or CobiT desired
•Financial / Budget management
•Exceptional prioritization and organizational skills
•Project Management Office
•IT Vendor Management
•IT Security and Risk Management
Mesirow Financial - 19 months ago
copy to clipboard
Mesirow Financial Holdings is an employee-owned company with nearly $380 million in equity investments and a global reach. Clients,...