Join our Talent Network
Skip to main content

Business Information Security Officer (BISO)

Location: Dallas, TX, United States
Req ID: 015129

Job Description

Description

When you click 'Apply', you will need to click on 'Create Account'.  By creating an account, you will be able to view your applications and their statuses.  Your password must contain 8 characters, 1 upper case letter, 1 number and 1 special character. Please make sure your name is formatted correctly and not in all uppercase.

Check It Out!

Ready to be a Cooper too? This might just be right up your alley!

We’re here to keep the dream of home ownership alive. Oh, and while we’re at it, we’re determined to change the lending industry itself. It’s simple, but it won’t be easy. And we’ll need a great team behind us. (That’s where you come in.) We want to show the world that transparency, candor and collaboration aren’t just good values. They’re good business. Working here isn’t for people who want to punch a clock. It’s for people who want to punch a hole in the status quo. Come join us. And make a difference instead of just a living.

This position reports to the VP/Information Security – Architecture & Consulting and is a key member of the Global Information Security team supporting the Engineering and Infrastructure Technology organizations.

The purpose of this position is to manage and co-ordinate all Information Security activities, programs and initiatives for the Information Technology groups and the systems and services they provide to the business. The Information Security Officer (ISO) is the role that supports the implementation of the Information Security programs. ISOs provide advice and oversight to ensure that businesses related processes and procedures are in compliances with the company’s Information Security Policies and Standards.

Role/Responsibilities:

  • Provide security guidance to engineering and operations partners to help them meet Information Security requirements
  • Proactively engage IT to identify, document and drive remediation of excessive risks and non-compliant activities
  • Influence and support corporate IT Information Security policies, standards, and frameworks.
  • Create and review security metrics to measure security effectiveness.
  • Ensure stakeholders understand their responsibilities regarding risk mitigation and remediation
  • Partnering with IT to ensure that systems are managed, operated and designed to minimize risk
  • Proactively identify and escalate significant risks to IS and Risk Leadership for information or action
  • Point of contact for dimensioning, managing and driving remediation of IS risks
  • Reduce security risks by leveraging controls and minimizing weaknesses in the Infrastructure portfolio
  • Engage with IT Project Managers and staff to ensure non-compliant items are addressed in timely fashion
  • Engage with risk and control teams in the review and reengineering of key controls and processes to effectively and efficiently manage IS issues
  • Contribute to, interpret and disseminate IS policy, standards and awareness

Qualifications:

  • Bachelor’s degree (in Information Technology or a related discipline) or equivalent work experience
  • 5+ years of Information Technology and/or Security experience
  • Knowledge in IS programs including, but not limited to, Audit Reviews, Risk Assessment, Awareness & Training, Identity Access & Management, Data Protection, Secure SDLC, Incident Management, Vulnerability Assessment, Third Party IS Assessment, Secure Configurations, Patch Management, etc.
  • Experience working with ISO 27001/27002 and related processes and procedures
  • IS certifications preferred (CISSP, CISM, CRIS, CISA or Equivalent), or willingness to earn within 12 months of joining
  • Ability to provide effective leadership and subject matter expertise in Information Security topics to senior management, technology and business partners
  • Employ influencing skills to obtain buy-in and participation from various groups and stakeholders without direct control
  • Build and maintain collaborative relationships with partners, clients and peers
  • Ability to communicate effectively at different levels of the organization, and with various technical and business audiences
  • Excellent problem solving abilities and analytical skills. Ability to see the big picture with high attention to critical details
  • Results oriented, is able to achieve desired outcomes independently and at appropriate priority levels
  • Working knowledge of Cloud models, technologies, frameworks, and associated security risks
  • Working knowledge of Agile, DevOps, DevSecOps, and SDLC processes

Technical Skills:

  • Security Knowledge of Windows and Linux Servers, Windows and Linux Desktops, Virtualized Environments (Citrix / VDI), Directory services (Active Directory, SSO, and Federation), Vulnerability Threat Management (VTM)Access Controls (ACLs, Firewalls, WAF, etc)
  • Good understanding of security constructs like encryption, Authentication, Authorization, DLP, Anti-Malware, Identify & Access Management, Secure OS Configuration, mobile technologies, networking protocols and infrastructures design
  • Experience in securing multi-cloud environments, such as AWS, Azure, and GCP
  • Working knowledge of GIT, Azure Compliance Manager, Cloud Formation, Terraform, and other Agile CI/CD tooling

Mr. Cooper is committed to nurturing a diverse and inclusive environment where every employee is empowered to be their authentic self.  We know that a large part of our success as a business is directly tied to our ongoing efforts to attract and retain diverse talent and maintain an inclusive environment where each employee can thrive.  Embracing and leveraging diversity through an inclusive work environment fosters new ideas, new insights, and constant innovation.  We strive to weave the principles of diversity and inclusion throughout the fabric of how we work, how we interact, and how we engage with our customers and the community.

Job Requisition ID:

015129

Job Category:

Information Technology

Primary Location City:

Dallas

Primary Location Region:

Texas

Primary Location Postal Code:

75019

Primary Location Country:

United States of America

Posting Organization:

Mr. Cooper

Line of Business:

Credit/Risk

Additional Posting Location(s):

Alternate Requisition:

No

Summary

This position reports to a Information Security VP and is a key member of the Global Information Security team supporting the Engineering and Infrastructure Technology organizations. The purpose of this position is to manage and co-ordinate all Information Security activities, programs and initiatives for the Information Technology groups and the systems and services they provide to the business. The Information Security Officer (ISO) is the role that supports the implementation of the Information Security programs. ISOs provide advice and oversight to ensure that businesses related processes and procedures are in compliances with the company’s Information Security Policies and Standards.
Share: mail

Similar Jobs

Sr. Principal Security Engineer

Dallas, TX, United States
Credit/Risk

AVP, Information Security Assurance

Dallas, TX, United States
Credit/Risk

Business Information Security Officer (BISO)

Dallas, TX, United States
Credit/Risk

Identity & Access Management (IAM) Administrator

Dallas, TX, United States
Credit/Risk

Pricing Review Analyst II

Dallas, TX, United States
Credit/Risk

Interested in working for Mr.Cooper?
Take the first step by joining our Talent Network today!

Sign me up!