Director Digital Asset Protection

The Director Digital Asset Protection is responsible for creating, testing, implementing, and sustaining internally-developed solutions as well as those procured as SaaS or commercial product solutions. This responsibility is scoped for those solutions that relate to protection and assurance for BECU digital assets; identity, keys, secrets, certificates, applications, APIs, and any other software-based item of value that needs safeguarding in our hosted or leased compute and storage environments. A central focus of this position is establishment of product teams or pods to support integration with Engineering and Enterprise Architecture. Responsible for Identity Access Control (IAC) as well as Data Protection programs. This role will manage and sets the agenda for specialized cybersecurity talent who deliver on automation and self-service capabilities for identity services. Integral to data governance and data retention corporate resource teams to bring data encryption, data transfer, and tiered data security concepts and standards to fruition.

Responsibilities

• Perform all responsibilities in accordance with BECU Competencies, compliance, regulatory and Information Protection requirements.
• Provide ongoing coaching, mentoring and training to develop and encourage employee performance. Meet with staff on a timely basis for the purpose of conducting performance evaluations, using BECU competencies as performance measures.
• Provide leadership in the development and implementation of strategy, roadmap, and solutions to enforcing tight digital asset security requirements while understanding the industry landscape to develop identity as code, identity and access management automation, tiered and segmented data protection, and other emerging approaches to securing digital assets.
• Continually improve processes and procedures that focus on risk-based access controls; i.e., providing the least allowable access required for business operations, including role-based access model with adaptive authorization capabilities.
• Deliver increasingly automated access and self-service security services, managing the quality of services delivered, developing team skills and fostering a high-performance culture.
• Generate innovative ideas and appropriately challenge the status quo. Identify opportunities to improve product team structures, digital asset protection, and creating a mature, easy to use digital asset security portfolio.
• Directs technical security teams in designing, implementing, and sustaining security solutions. Provides guidance in all aspects of collaboration in the organization; in projects, developing requirements, aligning priorities, and refining backlog work.
• Develop and maintain communications, understand the relationship, and make successful t he integration of Engineering, Cybersecurity, and Enterprise Architecture in a digital organization with some short or long term shared or matrixed team members. Setting appropriate priority and assuring cybersecurity requirements are integrated and engineered in always.
• Cultivates the agile product team methodology to deliver relevant cybersecurity capabilities and services with the voice of the customer in mind as well as an understanding and focus on digital cybersecurity approaches. Delivers on a product end-to-end strategy.
• Add needed apps and API’s (developed or purchased) into data and coding workflows to enable integrated and engineered security into engineering and development cycles.
• Oversee staff that develops and maintains various data protection, identity and access management, and application security products and services. Must set and drive the agenda of these teams or pods based on integration and understanding of cybersecurity, IT, and business strategy.
• Create and oversee a data protection program that incorporates best practice on identifying, classifying, storing, securing, and retention of sensitive data, personally-identifiable information (including protected health information, as applicable), and any other data categorized as critical to BECU business. Enforce these standards across the enterprise as well as risk reviewing and advising on any data that is transferred or used by third parties on behalf of BECU and our members.
• Lead and manage product teams to operationalize multiple complex digital asset and application security capabilities and solutions while reducing overall technical debt, reducing tool overlap and redundancy, increasing user experience, and improving security posture.
• Establish processes and procedures to assist with all reporting requirements, including tasking for information, collection of information, creation of reports, routing for approval and distribution. Develop recommendations to improve reporting metrics.
• Serve as an expert advisor to Enterprise Architecture, specifically, and IT senior leaders, generally, as a subject matter expert in product delivery and software development and security solutions for a digital organization.
• Maintain close ties to developers and system integrators across the IT and Business teams, ensuring the services we create meet their needs as our products evolve as their products evolve.
• Perform additional duties as assigned.

Qualifications

• Bachelor’s degree in Information Security, Computer Science or related field or experience required. Advanced degree preferred.
• Minimum eight years of progressively responsible experience in cyber security, security engineering, identity and access management, digital asset management, software product development and support, or related areas required.
• Domain expertise in product development and support or security as a service (SecaaS) role(s) preferred.
• Minimum seven years of experience of management experience required.
• Experience with cybersecurity in digital organizations; specifically, knowledge of cybersecurity solutions with Enterprise Data Warehouses, Big Data, and unstructured data stores required.
• Active CISSP, CISM or equivalent certification required.
• Proficient verbal and written skills required to effectively communicate in the English language.
• Strong analytical and problem-solving skills required.
• Effective leadership and negotiation skills required.
• Be available on an on-call basis to respond to pending issues or problems arising during non-business hours and provide support and response.
• Occasional travel required.
• Full time hours required, with additional hours as necessary.

#LI- Remote

#GATX

EEO Statement

BECU is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, veteran status, disability, sexual orientation, gender identity, or any other protected status.