Velera

Compensation

Full Description

Join the People Helping People Velera is the nation’s premier payments credit union service organization (CUSO) and an integrated fintech solutions provider. The company serves more than 4,000 financial institutions throughout North America, operating with velocity to help our clients keep pace with the rapid momentum of change and fuel growth in the new era of financial services. Our purpose: We accelerate partners’ success through innovative financial technology solutions and inspired service. The Opportunity: The Compliance Program Manager plays a critical role in ensuring the company adheres to applicable cyber laws, regulations and information security policies and standards. The individual will design, implement, and govern cyber risk management and technology compliance activities, collectively as a program. The individual will be responsible for execution of one or more cyber risk management programs (e.g., user attestations, security awareness training, third-party risk management, cyber contract administration, IT control testing, audit coordination).Program functions and duties may include: planning, scheduling, and oversight of internal/external system user attestations across the enterprise; assessing and consulting on third-party cyber risks; review and negotiation of cyber contracts; coordination of IT components of onsite and virtual audits/assessments (e.g., SOC1/2, PCI DSS/NIST CSF), NCUA regulatory examinations and client due diligence reviews. The individual must scope and execute program(s) to ensure the organization meets regulatory requirements and industry standards to mitigate cyber risks and achieve company certification and reporting objectives (e.g., PCI DSS, NIST, SOC1/2).The individual will work with internal and external stakeholders to mitigate risk, integrate security measures into business operations, and foster a security-conscious culture. A Day in the Life: Define program goals, measurable objectives and governance framework Design, scope, and execute program(s) to achieve stated objectives in alignment with business strategies and priorities Perform program functions and duties that may include: planning, scheduling, and oversight of internal/external system user attestations across the enterprise; assessing and consulting on third-party cyber risks; review and negotiation of cyber contracts; coordination of IT components of onsite and virtual audits/assessments (e.g., SOC1/2, PCI DSS/NIST CSF), NCUA regulatory examinations and client due diligence reviews. Execute assigned program(s) in accordance with company reporting and certification deadlines (e.g., PCI DSS, NIST CSF, SOC1/2) Gain support and buy-in by educating employees about program objectives, controls, and their responsibilities in mitigating cyber risks Lead and manage cyber risk management and technology compliance initiatives Interpret and translate cybersecurity and compliance requirements into program design Proactively identify and monitor emerging cybersecurity threats and regulatory landscape; adapt program design, scope, and execution to mitigate risks and comply with new regulation Collaborate and partner with cross-functional business and technology stakeholders at all levels to ensure program objectives are met; work with internal/external auditors, vendors, and clients as required Monitor and assess program governance and effectiveness (e.g., QA reviews, control testing) Define and report on KPIs Identify and implement process improvements to drive program efficiencies, minimize impact to business operations, and enhance user experiences; incorporate Inspired Service elements into program design where possible Perform all other duties as assigned. Qualifications: Bachelor’s or Master’s Degree in Computer Science, Cybersecurity, or related field, or equivalent combination of education and experience required. Cybersecurity risk management and control certification or equivalent required (e.g., CISA, CISM, CRISC). Project management or scrum master certification preferred (e.g., PMP, CSM). Eight (8) years of relevant experience in public accounting firm, technology controls consulting, PCI/NIST CSF assessments, IT internal/external auditing, or cyber risk management, with at least five (5) years in a program manager or equivalent role identifying, assessing, and mitigating information security, technology compliance, and cyber risks. Experience in financial services required. Demonstrate Velera values: Dedication, Collaboration, Belonging, Curiosity, and Integrity Self-directed and ability to work independently with minimal supervision Ability to navigate conflicting priorities while demonstrating resilience when under pressure Knowledge of industry and cyber risk regulatory environment and information security standards (e.g., PCI DSS, FFIEC, NIST CSF, NIST AI Risk Management Framework) Knowledge of local and federal cybersecurity regulations Knowledge of the principles and practices of information security, risk management, and control Ability to exercise discretion and good judgment in making decisions Ability to communicate effectively in both verbal and written formats, articulate information security and control concepts to technical and non-technical audiences, and give presentations using various audiovisual support aids Ability to be flexible, balance multiple projects, work under high pressure in complex, fast-paced environment, and meet deadlines Strong business acumen and ability to think pragmatically and influence balanced outcomes that achieve business requirements and cyber compliance objectives Effective collaboration skills, with the ability to work effectively with others through conflicting pressures and priorities while resolving complex issues Demonstrated excellent analytical and quantitative skills Ability to travel as needed to successfully perform position responsibilities, less than 25% #LI-LM1 About Velera At Velera we are committed to fostering a workplace where every employee feels valued, respected, and connected. We understand, attract and engage a diverse workforce where every employee can live up to their full potential; ensuring that our employee base reflects the consumers we serve. The result of this effort is an inclusive environment where diverse talent thrives. We strive to foster a safe and inclusive work environment for people to bring their authentic selves in order to build a better community within our company and with our partners. Learn more about our commitment to Diversity, Equity, and Inclusion HERE! Pay Equity $110,100.00 - $143,100.00 Actual Pay will be adjusted based on experience and other job-related factors permitted by law. Great Work/Life Benefits! Competitive wages Medical with telemedicine Dental and Vision Basic and Optional Life Insurance Paid Time Off (PTO) Maternity, Parental, Family Care Community Volunteer Time Off 12 Paid Holidays Company Paid Disability Insurance 401k (with employer match) Health Savings Accounts (HSA) with company provided contributions Flexible Spending Accounts (FSA) Supplemental Insurance Mental Health and Well-being: Employee Assistance Program (EAP) Tuition Reimbursement Wellness program Benefits are subject to generally applicable eligibility, waiting period, contribution, and other requirements and conditions Velera is an Equal Opportunity Employer. We consider applicants without regard to race, color, religion, age, national origin, ancestry, ethnicity, gender, gender identity, gender expression, sexual orientation, marital status, veteran status, disability, genetic information, citizenship status, or membership in any other group protected by federal, state or local law. Velera is an Equal Opportunity Employer that complies with the laws and regulations set forth in the following "EEO is the Law" Poster. Velera will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the legal duty to furnish information. Velera is an E-Verify Employer. Review the E-Verify Poster here. For information regarding your Right To Work, please click here. This role is currently not eligible for sponsorship. As an ongoing commitment to reasonably accommodate individuals with disabilities please contact a recruiter at recruiters@velera.com for assistance. An Inclusive Atmosphere Where Possibilities are Delivered “Our Momentum. Your Moment.” At Velera, the nation’s premier payments credit union service organization (CUSO) and an integrated financial technology solutions provider, you’ll find it’s your time to join our exceptional culture and shine. If you want to help shape an industry, challenge yourself and invest in your future, you’ve come to the right place. Velera is a highly accessible environment where you’re empowered to think on your feet, work from your heart and discover the very best version of your professional and personal self. Your Voice Matters and Your Contributions are Rewarded You’ll be glad to know that you don’t have to wait your turn for the best opportunities to present themselves at Velera. Our atmosphere is designed for those who have a curious mindset and aren’t afraid to challenge the status quo. We invite you to bring your voice to our diverse team and take advantage of the wide variety of resources available to you. Powered by supportive leadership and innovative technology, we have exceptional learning, training and leadership development programs, as well as online courses to help you claim the brighter, more meaningful future you’ve always imagined. We Help Credit Unions Deliver Possibilities Velera has a proud history as an empowering resource for credit unions and their members, enabling them to optimize operations and realize sustained success. How have we done that? It starts by investing heavily in leading-edge technological innovations. It continues by building a track record of quality service and having the courage to lead. Now, as we continue to grow and help our credit unions prepare for the future, we’re well-positioned to build on our exhilarating momentum. Committed to service excellence and focused on innovation, Velera’s payment processing, risk management, data and analytics, loyalty programs, digital banking, marketing, strategic consulting and mobile platforms help deliver possibilities and seamless member experiences. Comprehensive, 24/7/365 member support is provided by contact centers located throughout the United States. Service Excellence – Delivering the Best We provide credit unions and their members with state-of-the-heart service. Security – Protecting Vital Interests We stop threats before they can cause damage. Digital Solutions – Presenting the Future We make it possible for members to conveniently experience the best in credit union services. Strategic Growth – Opening New Opportunities As the perfect partner with all the right tools, we help credit unions achieve their goals.