1+ months

Information Security Risk Manager

Westborough, MA 01581

About Us

**New Hires are eligible for a $5,000.00 sign on bonus**


Reporting to the Director of Operational Risk, Information Security & Vendor Management, the Information Security Risk Manager is responsible for assisting the Director of Operational Risk, Information Security & Vendor Management with maintaining and continually enhancing the Banks information security and second line testing programs. In particular, responsibilities include the development, coordination, implementation, governance, and ongoing management of enterprise-wide policy and controls.


  • Utilize industry experience and knowledge to provide expertise and support to ensure the Banks information security program remains in compliance with applicable standards and regulations, including evolving data privacy regulations.
  • Adhere/enhance control testing processes to ensure information security, risk, and vendor management policies are adhered to.
  • Assist with the management of cyber security compliance functions including reporting on gaps, variances, and the assessment and disposition of cyber risk. Assist with completion and maintenance of the Banks FFIEC Cybersecurity Assessment Tool and IT Risk Assessment.
  • Perform assessments of the current information security and Information Technology framework and develop guidance that addresses gaps.
  • Assist with development, evaluation, and adherence to IT, risk, and information security policies, standards, and procedures. Socialize policy & control recommendations to stakeholders across the enterprise in order to gain acceptance.  
  • Support the completion of risk assessments of IT processes and products to ensure that they align with Bank policies and objectives.
  • Participate in information security, vendor management, and risk related projects and initiatives.
  • Assist with the collection and review of vendor due diligence materials in line with GLBA and TSP regulatory guidance.
  • Assist with tracking and resolution of internal audit and examination findings related to risk, information security, and vendor management.
  • Maintain and effectively utilize the Banks Enterprise Risk Management Software System.
  • Assist with the annual facilitation of Incident Response tabletop exercises.
  • Organizes daily department activities and supervises Information Security staff. Conducts performance reviews and provides for ongoing guidance, training, and direction to staff in developing and implementing plans and objectives.
  • Stays up to date on industry trends, represents the Bank through active participation in community and industry organizations, and participates in user groups and conferences, as needed.
  • Performs related and unrelated duties as may be required.



  • 5+ years of experience in Bank-specific information security, risk, and/or audit areas
  • Bachelors degree
  • Comprehensive knowledge of technology auditing process, GLBA compliance requirements, and technology risk assessments
  • Internal Audit, IT Assurance, and/or FDIC/OCC Regulatory experience required
  • Working knowledge of applicable laws, regulations, and standards relating to security, data privacy, and vendor management
  • Knowledge of bank operations and bank technology applications
  • Effective communicator, relationship builder, and advocate for sound risk mitigation practice
  • Strong organizational skills
  • Management and supervisory experience required



Middlesex Savings Bank is an EO/AA Employer: Min/Fem/Vet/Disabled


  • Banking / Finance
Posted: 2022-12-13 Expires: 2023-04-04

As a mutual bank, we're only as good as our people. So, let's invest in each other.

Our focus is to support the community and give back in ways that help everyone live better. We think the same goes for our employees. We attract bright and dedicated people throughout our organization that are empowered to do what is in the best interest of our customers and the communities that we call home.

We believe in a collaborative culture that values the opinions of all employees in order to conquer challenges and succeed. We’re committed to providing the educational, training and development opportunities our employees need to grow and advance in their careers. See what being right there with you means to us.

Sponsored by:
ADP Logo
Sponsored by:
Bank of America Logo

Featured Jobs[ View All ]

Featured Employers

Before you go...

Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

Share this job:

Information Security Risk Manager

Middlesex Savings Bank
Westborough, MA 01581

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast