CISO - Regional, Mid-Sized Bank
Job Description
Job Description
As part of our process after applying, you may receive an invitation from our AI Recruiter Avery for a short conversation that lets you share more about your background beyond your resume. For questions, contact .
Chief Information Security Officer (CISO)
Full-Time | Onsite (5 days/week) | Salt Lake City, UT
We are partnering with a regional bank undergoing significant growth and technology transformation to hire a hands-on CISO. This leader will own and evolve the bank's Information Security Program, working closely with executive leadership, the board, and regulators while leading a small, high-impact team. This is a highly visible role requiring both strategic leadership and technical depth in a regulated banking environment, with a strong emphasis on a Microsoft-centric security ecosystem.
What you'll do
- Lead and mature the bank's enterprise security program, including risk management, incident response, and regulatory compliance
- Serve as the primary point of contact for FDIC/OCC examinations, including presenting to regulators and managing findings
- Report regularly to executive leadership, IT Steering Committee, and Board of Directors on security posture and risk
- Oversee and enhance Business Continuity, Disaster Recovery, and cyber risk assessment programs
- Lead, mentor, and evaluate a small security team while contributing hands-on to technical security efforts
- Drive security vendor consolidation initiatives, maximizing value from an existing Microsoft-based security environment
- Partner cross-functionally to implement security policies, strengthen privileged access controls, and enforce governance best practices
- Maintain and improve incident response readiness, ensuring compliance with regulatory timelines
- Assess current architecture and processes, making pragmatic improvements aligned with business goals
What gets you the job
- Prior experience as a CISO or senior information security leader within a community or regional bank ($2B-$10B assets)
- MUST HAVE FDIC OR OCC EXAMINATION EXPERIENCE with the ability to interface with regulators and manage audits
- Strong hands-on technical background across cloud security (Azure required), identity and access management, endpoint security, and network security
- Experience operating in a Microsoft-centric environment and leveraging native security capabilities effectively
- Proven ability to rationalize and optimize security vendors rather than defaulting to adding tools
- Experience leading small teams and operating in lean environments where the CISO is both strategic and hands-on
- Strong understanding of FFIEC, NIST, and common security frameworks (SOC 2, OWASP, SANS)
- Experience building and maintaining policies, risk assessments, and security documentation in regulated environments
- Excellent communication skills with the ability to present to executives, boards, and regulators
About Irvine Technology Corporation (ITC)
Irvine Technology Corporation (ITC) is a leading provider of technology and staffing solutions, connecting top talent with innovative organizations nationwid
