Vice President, Security Vice President, Security …

CIT Group
in Pasadena, CA
Permanent, Full time
Be the first to apply
CIT Group
in Pasadena, CA
Permanent, Full time
Be the first to apply
Vice President, Security
Please Enable Cookies to Continue Please enable cookies in your browser to experience all the personalized features of this site, including the ability to apply for a job. Returning Candidate? VP, Security Assurance Location US-CA-Pasadena Job ID 32883 # Positions 1 Job Family Information Technology - IT Development Type Full-Time Overview

CIT is a leading national bank focused on empowering businesses and personal savers with the financial agility to navigate their goals. CIT Group Inc. (NYSE: CIT) is a financial holding company with over a century of experience and operates a principal bank subsidiary, CIT Bank, N.A. (Member FDIC, Equal Housing Lender). The company's commercial banking segment includes commercial financing, community association banking, middle market banking, equipment and vendor financing, factoring, railcar financing, treasury and payments services, and capital markets and asset management. CIT's consumer banking segment includes a national direct bank and regional branch network. Discover more at .


The IT Security team is responsible for developing, implementing and enforcing CIT's technical security controls. The primary goal of the program is to protect the confidentiality, integrity and availability of information resources. Key IT Security functions and activities include implementing and maintaining security controls in line with CIT Information Security Policy and standards and providing transparency to management on control function/health. The VP, IT Security & Controls role is 1st line IT Security function within CIT's Technology & Operations department responsible for building and managing the IT Security processes such as design, assurance, measurement of security controls and solutions for information systems hosted/managed by CIT and by CIT's third parties. This requires full engagement with staff throughout CIT's technology and business-related departments, Information Risk and may involve interaction with external vendors and service providers.

  • Conducting security control design reviews for information systems based on inherent risk factors informing of the level and degree of risk
  • Determining and recommending adequate security design by evaluating functional requirements; concept of operations; researching information security standards; conducting system security and vulnerability analyses and risk assessments; studying architecture/platform and identifying integration issues
  • Designing and educating IT colleagues on required security architecture in line with CIT standards, industry best practice and regulatory guidance
  • Evaluating emerging technologies against standards and defining security solutions to mitigate risk
  • Reviewing and approving secure configuration baselines
  • Maintaining security by monitoring and ensuring compliance to standards, policies, and procedures; evaluating deviations, evaluating mitigating controls and recommending solutions or alternate controls to further reduce risk
  • Proactively recommend security improvements by monitoring security environment; identifying security gaps; evaluating and implementing enhancements
  • Assists with responses to third party security assessments as necessary and responses to Information Risk/Internal Audit examination of controls
  • Updates job knowledge by tracking and understanding emerging security practices and standards; participating in educational opportunities; reading professional publications; maintaining personal networks; participating in professional organizations
  • Enhances department and organization reputation by accepting ownership for accomplishing new and different requests; exploring opportunities to add value to job accomplishments
  • 7+ years' experience in designing, delivering or managing information security services at an enterprise level
  • Technical experience across security domains including Access
  • Management, Network Security, System Defense, Data Protection/Encryption, Application Security, Configuration
  • Management, Change Management, etc. to identify security design gaps in new and existing architectures and recommend appropriate security control design for CIT systems both in-house and third party
  • Plan, implement and assist in testing of security controls.
  • Collaborate with Enterprise Architecture in evaluating enhancements and new intiatives. Collaborate with 2nd line
  • Information Risk colleagues to ensure 1st line SOPs and
  • Security standards are aligned
  • Ability to assess system design at a detailed level to identify information security risks and make recommendations to ensure confidentiality, integrity and availability of the system
  • Effective organizational skills (including attention to detail) and the ability to implement change
  • Strong written and oral communication skills including the communication of complex technical issues & concepts to non-technical business line staff
  • Strong collaborative approach to work across teams and departments
  • Strong knowledge of information systems and security controls, of attack types and methodologies
  • Experience in an IT Security role in a financial services or heavily regulated organization preferred
  • Bachelor's degree in Computer Science, Cyber Security or related field /experience
Options Sorry the Share function is not working properly at this moment. Please refresh the page and try again later. Share on your newsfeed

CIT is committed to Equal Employment Opportunity. It is the policy of CIT to provide equal employment opportunities to all qualified applicants without regard to their race or perceived race (including traits historically associated with race, such as hair texture and protective hairstyles), color, national origin, nationality, ancestry, citizenship, immigration status, age), sex (including pregnancy, lactation, childbirth or related medical conditions), actual or perceived gender, gender identity, gender expression or transgender (including transgender individuals who are transitioning, have transitioned, or are perceived to be transitioning to the gender with which they identify), religion, creed, marital status, family status, domestic partnership or civil union status, affectional or sexual orientation, atypical hereditary cellular or blood trait, genetic information or predisposition or carrier status (including testing and characteristics), status as a victim of domestic violence, actual or perceived status as a caregiver,military service protected veteran status, mental or physical disability, perceived disability, record of disability, medical condition, AIDS and HIV status, or any other protected characteristic established by applicable federal, state, or local laws. If you would like more information about your EEO rights as an applicant under the law, please click here:

More Jobs Like This
See more jobs