Information Security Officer

We are developing deeper connections between communities and their food systems. It’s our conviction that food systems are supported by a broader ecosystem of businesses, organizations, and institutions – going beyond farms and food businesses to include businesses driving meaningful impact on sustainability, equity, and wellness. We create impact by accepting deposits from individuals and businesses who want to drive positive and lasting change with their dollars...and then lending those funds to impact-oriented organizations. The word “mutual” in our name means cooperative; we are governed by our depositors, funded by those with a bias towards the long-term, and engineered to endure the test of time. Building bridges is core to who we are, with the ultimate aim of creating a more vibrant, sustainable and inclusive local food system.

This role is intended for an early-career professional looking to build experience in Information Security and Vendor Management. The ISO will be part of a small technology team focused on building technical competency across the employee base. Along with monitoring responsibilities for critical applications, you will also play an instrumental role in developing the Bank’s Product Ownership program by coaching managers through executing vendor management controls. This role will also support the CTO in reporting and audit support capabilities, as well as project-based work implementing new controls and processes. You will be primarily remote, with an expectation of onsite support at our in-branch location in Concord about once per month.

• Be the primary stakeholder of the Bank’s Vendor Management Policy: Train non-technical staff in security and vendor management principles. Assist     product owners in execution of controls and ensure complete documentation of the program.
• Perform regular security reviews for critical systems.
• Implement new processes and security controls under supervision of the CTO.
• Perform annual Risk Assessments and security policy reviews.
• Support Auditors and Examiners during system reviews.
• Report findings to the management and board committees related to Information Security topics.
• Act as a Product Manager for vendor management and security technologies (WolfPac, KnowBe4).
• Keep up to date with our products, services, and regulatory requirements.
• Complete required compliance-related bank training (and other related activities).

• A collaborative workstyle that is energized by teaching others. You recognize that success requires convincing others to participate in Information Security practices.
• 1-2 years of experience in a regulated industry, including projects related to network management, endpoint management and threat detection, change management controls, and disaster recovery.
• Demonstrated success operating in a fully remote workplace.

• Personal interest in sustainability, food, or agriculture.
• Direct experience with key existing vendors – Alkami, Fiserv, COCC, Ensenta, Identifi, etc.

• Health insurance coverage with dental and vision  
• Unlimited PTO 
• Allocated time for volunteering 
• “Quiet” Fridays 
• Life and disability insurances 
• Parental leave policy 
• 11 paid holidays 
• Walden-branded swag!