Business Ruleset Program Manager

Why should you join our team?

American AgCredit offers a unique opportunity to be a part of a national financial system supporting those who feed, clothe and fuel the world. We are a growing organization embracing collaboration and innovation while delivering transformative solutions. American AgCredit provides a cultivating environment where you truly make a difference for our customers and teams.

Benefits offered by American AgCredit:

• Commitment to agriculture and the communities we serve
• Family friendly work environment
• Investment in employee development
• Medical, Dental and Vision coverage
• Outstanding 401k – automatic 3% employer contribution, plus match up to 6%
• Generous Paid Time Off (Vacation accrued at 21 days annually, Sick Days accrued at 15 days annually, 12 paid holidays, plus 16 hours of volunteer time)
• Competitive Incentive Compensation Plan
• Disability & Life Insurance
• Employee mental, physical, and financial wellness programs
• The position is bonus eligible based on association and personal performance

Position will be posted until filled.

BASIC FUNCTION:

The Business Ruleset Program Manager is a highly skilled and experienced 2nd Line Leader that ensures that our the Association’s business rulesets, which support segregation of duties (“SOD”), and application security standards are meticulously aligned with our business requirements, regulatory standards, and industry best practices. The Lead is responsible for overseeing the quality assurance, documentation, and effective communication of business rulesets and Application Security Framework across the Association. Additionally, this role will serve as a critical second line of responsibility for application security by monitoring and assessing risk related to application security and how these risks interrelate with business rulesets, as well as establishing frameworks that provide expectations regarding the safeguarding our digital assets against emerging threats.  This requires the Lead to have strong leadership capabilities and clear communication and analytical skillsets. A collaborative work style is critical to successfully delivering projects and working groups. Building strong relationships will also be necessary and should extend across, down, and up within the Association to make appropriate cultural impacts. Lastly, this role requires an agile, hands-on learner who is a creative problem solver and constantly looking to implement more efficient work methods.

ESSENTIAL DUTIES:

Under the direction of the Head of Cybersecurity, this position is responsible for the following:

• Develop and maintain comprehensive business rulesets, which enforce SOD, in partnership with business and technical owners that require key tasks, activities and/or controls be segregated appropriately across the Association.
• Ensure alignment of business rulesets with internal policies, regulatory compliance, and best practices.
• Develop and implement a risk-based Application Security Framework that establishes various security and operational control expectations to be deployed by technology teams.
• Monitor the adherence to the Application Security Framework and Business Ruleset Program requirements and report instances of misalignment to the Security Risk Committee and/or Operational Risk Committee.
• Manage the documentation of business rulesets and Application Security Framework, ensuring clarity, accuracy, and accessibility for all stakeholders.
• Facilitate effective communication and training related to business rulesets and Application Security for relevant departments.
• Collaborate with technology and cybersecurity teams to integrate application security measures into business rulesets.
• Participate in regular reviews and updates of business rulesets in response to changing regulations and business needs.
• Champion various training modules and modes to facilitate employee awareness and understanding of application security and business ruleset set risks.
• Consult and collaborate with other second-line leaders regarding risk assessment methodologies to identify potential vulnerabilities within business rulesets and applications.
• Coordinate with external auditors and regulatory bodies to demonstrate compliance and address findings.
• Direct, manage, and perform targeted assessments, special projects, due diligence services related to merger activities, and other functions as assigned.

LEVELS OF SUPERVISION EXERCISED AND RECEIVED:

Reports to the Head of Cybersecurity and has no people management responsibilities.

TYPICAL EDUCATION AND EXPERIENCE:

• Bachelor of Arts/Bachelor of Science degree in Information Technology or Business, or equivalent work experience.
• Pursuit of formal certification is preferred which includes Certified Information Systems Security Professional (CISSP), Certified Public Accountant (CPA), Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA), and/or certification in Risk Management Assurance (CRMA). Maintains required continuing professional education and development requirements.
• Well versed in segregation of duties, application security, and information technology general controls programs.
• Sound knowledge of Enterprise Risk Management frameworks, risk management processes, risk appetite statements, key risk measures/indicators (leading vs. lagging), risk assessment, and review.
• Three to five years of directly related experience in the diversified financial services industry (preferred) to include regulatory, lending, and operations experience.
• Strong written and oral communication and facilitation skills with experience reporting to all levels of the organization, including the Board of Directors and Senior Management Committees, as well as analytical, problem-solving, and stakeholder interaction skills.
• Ability to interact effectively with all levels of employees, management, external auditors, and regulatory agencies.
• Demonstrated proficiency in leading within the organization and ability to prioritize work to meet deadlines in a collaborative setting as well as independently.
• Ability to think strategically and effectively challenge and collaborate with first and second line partners.
• Possess a forward-thinking mindset to stay ahead of potential emerging potential risks.
• Proficient in using software and information technology to collect, organize, maintain, and disseminate information. Ability to utilize and leverage technology in new or complex situations.

ESSENTIAL JOB REQUIREMENTS:

Must be able to perform basic office tasks and work in a typical office setting. The employee will be sitting for extended periods and accomplishing work at a desk and at a computer for an extended period. Must have strong written and verbal communication skills to convey ideas and work well with a team adequately. The ability to talk and hear, sit and use their hands and fingers, and reach in all directions is essential in the performance of the job. There is some lifting and moving of items up to 25 pounds required. Work during established business hours and may require occasional weekend and evening work. Travel required.

FULL-TIME REMOTE: These roles and job functions can be done remotely, while maintaining our strong commitment to customer service and our business goals. Employees are welcome to come to an office to work if needed, and some travel for team meetings will be required.

PAY RANGE:

Minimum $94,660.63 – Max $160,923.07 Annual

This range is reflective of the national salary average for this position and will be adjusted using geographic variance for physical location of the hired candidate. American AgCredit may compensate outside of the salary range for bona fide reasons not related to membership in a protected class.

#LI-REMOTE

All hiring is contingent on eligibility to work in the United States. We are unable to sponsor or transfer visas for applicants.

American AgCredit provides equal opportunity in employment to all employees and applicants. We celebrate diversity and do not discriminate on the basis of race, color, creed, religion, national origin, ancestry, alienage or citizenship status, age, sex, sexual orientation, gender identity, gender expression, marital status, genetic information, medical condition, physical or mental disability, pregnancy, childbirth or related medical condition, military service or veteran status, victims of domestic violence, or any other characteristics protected by applicable federal, state, or local laws. American AgCredit prohibits harassment of any individuals on any of the bases listed above.

If you need assistance or an accommodation due to a disability, you may contact us at [email protected].