Job Description
Information Security Risk Officer DCA Talent Solutions Houston, TX Job Details Full-time $160,000•$200,000 a year 14 hours ago Benefits Dental insurance 401(k) Paid time off Vision insurance Life insurance Qualifications Risk management compliance audits Computer Science Encryption Bachelor's degree Technology management Regulatory Frameworks (Architecture security) Business Administration Information security auditing Senior leadership Full Job Description Ready for your next big opportunity in security risk assessment, more specifically, in an executive-level role? Our client is one of Texas's largest private, independent, full-service trust companies, managing more than $10 billion in assets and serving hundreds of client relationships worldwide. Recognized for operational excellence and a modern trust accounting platform, the firm is seeking a visionary technology and risk leader to shape its enterprise cybersecurity, IT governance, and digital strategy. This executive role carries broad accountability for the firm's technology roadmap, cybersecurity posture, vendor ecosystem, regulatory compliance, and digital transformation initiatives. As the organization's preeminent subject matter expert on regulatory technology matters, the ISRO serves as the primary interface with regulators and auditors on all IT and information security matters.
KEY RESPONSIBILITIES
Strategic Leadership & Technology Vision:
Chair the IT Steering Committee, driving quarterly strategic meetings and exercising voting authority on key technology decisions Provide executive oversight of the Managed Service Provider relationship (Integris) and lead the enterprise information security program Partner with the C-suite and Board to align technology strategy with business priorities, enhancing client experience and operational resilience Mentor and lead the IT Officer while cultivating a high-performance culture of accountability, innovation, and continuous improvement. Deliver regular executive briefings to the Board and senior leadership on technology strategy, risk posture, program performance, and emerging opportunities Design and deliver targeted training programs for staff on technology and information security best practices Lead the cross-functional business continuity and disaster recovery program, guiding the organization through incidents and major events Direct the enterprise vendor management program, including rigorous due diligence, risk assessments, and contract negotiations/renewals Assess new business initiatives and provide strategic counsel on technology and security risks Policy Development & Governance:
Author, maintain, and version-control comprehensive enterprise IT policies, procedures, and standards Oversee the continuous review and enhancement of information security and business continuity plans Establish and manage a formal policy governance calendar to ensure sustained compliance and relevance Develop and maintain detailed IT operational procedures, standards, and supporting control documentation Translate complex regulatory and industry frameworks — NIST, FFIEC, ISO 27001, GLBA, SOC 2
— into practical, effective internal controls Document critical processes through flowcharts, narratives, and risk/control matrices Regulatory Compliance, Risk Management & Audit Coordination:
Act as the primary point of contact for all IT-related regulatory examinations, internal audits, and external audits; lead findings remediation to successful closure Maintain deep expertise in evolving cybersecurity standards, including NIST CSF, FFIEC
guidance, and CISA advisories Proactively monitor and interpret federal and state banking regulations (GLBA, FFIEC IT Handbook, Texas Department of Banking) and drive timely policy and procedural updates Design, implement, and test IT general controls to support SOC reporting and other regulatory attestations Coordinate and execute periodic control testing across key areas, including user access reviews, clean desk audits, disaster recovery, and incident response Ensure robust compliance with BSA/AML and KYC requirements•Develop and maintain working knowledge of fiduciary tax laws and the Texas Trust Code QUALIFICATIONS AND EXPERIENCE
10+ years of senior-level experience in information security risk management, IT governance, compliance, or technology leadership within financial services or banking (mandatory) Demonstrated expertise in FFIEC regulatory requirements and related banking frameworks•Professional certifications such as CCISO, CISM, or CISSP strongly preferred•Bachelor's degree in MIS, Computer Science, Cybersecurity, Business Administration, or a related field (preferred) Proven success leading regulatory examinations, managing complex audits, and building enterprise risk and compliance programs in a regulated financial environment Strong track record in vendor management, business continuity planning, and converting regulatory expectations into operational excellence Proficiency with Microsoft Office Suite and the ability to quickly master firm-specific platforms such as the GWES trust accounting system Executive presence with exceptional communication skills, strategic judgment, and the ability to influence senior stakeholders Demonstrated discretion, integrity, and professionalism in handling highly confidential financial and client information Stable career progression in financial services required — no job hoppers This is a full-time, on-site executive leadership position in Houston, TX. This role offers a compelling opportunity to drive strategic impact at a respected, well-capitalized trust company with a long-tenured team and strong commitment to professional development. Pay:
$160,000.00•$200,000.00 per year Benefits:
401(k) Dental insurance Life insurance Paid time off Vision insurance Work Location:
In person
