At Associated Bank we strive to create an inclusive culture where different perspectives are valued and recognized as strengths critical to our success. If you thrive in an environment where your growth and development are encouraged and supported, then Associated Bank may be the right place for you.

Responsible for direct management and oversight of the bank’s Information Security and Information Technology Risk Management Program and Records Information Management Program. Independently assesses and evaluates Information Security and Information Technology first line operational activities, policies, and processes. Prepares security risk reports, assessments, trends, or policy changes for reporting to the Operational Risk Committee, Enterprise Risk Management Committee and/or the Enterprise Risk Committee of the Board of Directors. Oversee or lead a number of critical IS and IT Risk Management programs and activities, which may include: IT and IS elements of the Bank’s Risk Governance Framework, NIST Cyber Security Framework, Risk Monitoring and Reporting, Risk and Control Self Assessments, and the record information management program. Responsible for developing strong strategic alliances with Information Security, Information Technology, Business Line, and other Support Unit senior management and risk SMEs to ensure constructive and consistent application of sound risk management principles.

This position is not eligible for Visa sponsorship.

Due to work requirements, candidates must be located within 30 miles of Green Bay or Milwaukee, WI.

We invite you to view the opportunity below.

As an IS & IT Risk Manager, you will:

• Be responsible for developing and maintaining the Information Security and Information Technology risk governance process, including development of the IS and IT Risk Management Programs and supporting policy, process and procedures.
• Develop and maintain the methodology to conduct security and technology risk assessments, aligned to the Bank’s evolving Risk Governance Framework, including control self-assessments, risk assessment tools, NIST Cybersecurity Framework, risk monitoring tools (KRIs), and analysis of audit findings.
• Identify gaps in risk management practices and work with stakeholders to define solutions; prioritize, communicate, track, manage and report identified issues.
• Provide leadership, oversight, support, and risk consultation on relevant security and technology operational processes and initiatives; use of sound risk-based decision making, experience and judgment in responding to inquiries.
• Lead a program to execute testing and validation of key controls; support regulatory and independent testing liaison activities as related to Information Security and Technology risk programs.
• Be responsible for maintaining the Records Information Management Program; which includes facilitating data destruction within information technology systems and at physical record centers, maintaining the Record Retention Schedule, and assisting with records information management training.
• Remain current with Information Security Risk, Information Technology Risk, and Records Information Management regulatory guidance and industry best practices as well as emerging industry-wide risks via public domain, industry-specific organizations , and internal contacts.
• Ensure corporate wide communication, reporting and support to foster a consistent culture of compliance and collaborative environment with the first line of defense and other key stakeholders for an enterprise-wide and holistic program relating to Information Security and Information Technology Risk Management.
• Coordinate components of select examinations and audits in accordance with "Regulatory Examination Facilitation" procedures maintained by compliance and ensures that all exam and audit needs are met.

Education

• Bachelor’s Degree or equivalent combination of education and experience Business Administration, Risk, Information Security, or Information Systems Required.

Experience

• 4-7 years Information Security and Technology functionality; risk management focus; financial services industry & some knowledge of regulatory requirements. Required
• 7-10 years Information Security and Technology functionality ; risk management focus; financial services industry & some knowledge of regulatory requirements. Preferred

Licenses and Certifications

• Risk-related Certification such as CRISC within 2 years. Required
• Other Information Security Certifications such as CISSP within 2 years. Preferred

In addition to core traditional benefits, we take pride in offering benefits for every stage of life. 

• Retirement savings including both 401(k) and Pension plans. 

• Paid time off to volunteer in your community. 

• Opportunities to connect with others through our diversity-focused Colleague Resource Groups. 

• Competitive salaries with professional development and advancement opportunities. 

• Bonus benefits including well-being programs and incentives, parental leave, an employee stock purchase plan, military benefits and much more.  

• Personal banking, loan, investment and insurance benefits. 

Associated Bank serves more than 120 communities throughout Wisconsin, Illinois and Minnesota and we consider our colleagues critical to our continued success. See why our colleagues continually vote us a best place to work in the Midwest. Join our community on Facebook, LinkedIn and X. 

Compliance Statement

Associated Bank is an equal opportunity employer committed to creating a diverse workforce. We support a work environment where colleagues are respected and given the opportunity to perform to their fullest potential. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, among other factors.

Fully complies with all applicable enterprise policies and procedures. Acts in compliance with all applicable laws and regulations as outlined in training materials, including but not limited to Bank Secrecy Act. Responsible for reporting suspicious activity to Financial Intelligence. Responsible to report all customer complaints as prescribed and procedure violations to management or HR.

Responsible to report ethical concerns as needed to Associated Bank’s anonymous Ethics Hotline.

Associated Bank provides additional assistance throughout the application, interview and hiring process. Please contact [email protected] if you need an accommodation at any time during the process.

Associated Banc-Corp is an Affirmative Action and Equal Opportunity Employer. Associated Banc-Corp participates in the E-Verify Program. E-Verify Notice English or Spanish. Know Your Right to Work English or Spanish.

Associated Bank is Pay Transparency compliant.

The pay range represents anticipated base pay for this role. Actual pay may vary based on factors including, but not limited to, work location, skills, experience, education, and qualifications for the role.

$103,670.00 - $177,720.00