VP, Cybersecurity

Overview

Ent Credit Union and Wings Credit Union joined forces in January 2026. This merger means more opportunities, expanded resources, and a shared commitment to delivering exceptional member service. Together, we become more – empowering members, communities, and teams through a bold, unified future. Both organizations bring a strong legacy of member satisfaction, operational excellence, financial stability, and community impact. Recognized locally and nationally as best-in-class financial institutions and employers of choice, each is known for its commitment to financial well-being and philanthropic leadership.

Join us during this transformative time and be part of shaping the future of banking.

• Cybersecurity Operations and SOC Leadership: lead and mature the enterprise Security Operations Center, including 24/7 threat monitoring, detection, triage, escalation, and response; oversee the Security Information and Event Management platform and related detection technologies; integrate SIEM, EDR, threat intelligence, alerting, and response capabilities across enterprise environments; establish and track key operational metrics (MTTD, MTTR, alert fidelity, incident trends, response effectiveness).
• Cybersecurity Incident Response and Crisis Leadership: own the enterprise cyber incident response program, strategy and capability; lead executive-level cyber crisis response across IT, Legal, Risk, Compliance, Communications, Operations, and senior leadership; develop, maintain, and test cybersecurity playbooks and response procedures; ensure incident response plans are integrated with business continuity, disaster recovery, crisis communications, and operational recovery procedures.
• Business Continuity, Disaster Recovery, and Operational Resilience: lead and own the enterprise Business Continuity and Disaster Recovery functions and strategy; partner with business leaders to validate critical processes, recovery strategies, manual workarounds, communication plans, staffing models, and member-impact considerations; provide executive reporting on continuity readiness, recovery capability, testing outcomes, residual risk, and enterprise resilience posture.
• Application Security and Secure Delivery: lead operational execution of application security practices in partnership with engineering, product, technology delivery, and enterprise security stakeholders; drive Dev Sec Ops  alignment, automation, and scalable security practices; partner with application and platform owners to ensure critical applications have appropriate recovery plans, backup strategies, vulnerability remediation practices, and cyber resilience controls.
• Backup, Cyber Recovery, and Ransomware Resilience: own the enterprise backup and cyber recovery strategy in partnership with technology, infrastructure, business continuity, and enterprise security stakeholders; ensure backup architecture, retention, immutability, restoration procedures, and recovery capabilities support ransomware resilience and business recovery needs; oversee periodic restoration testing and cyber recovery exercises for critical systems and data.
• Security Architecture and Design Review Support: participate in the Architectural Review Board as the cyber operations, recovery, and resilience voice; collaborate with technology, engineering, infrastructure, cloud, data, and business teams to ensure operational security and recovery considerations are embedded into enterprise technology decisions; champion the adoption of Zero Trust, identity-first security, secure-by-design, and resilient-by-design principles in alignment with enterprise security policy and architecture direction.
• Security Policy Adherence and Operational Controls: ensure cybersecurity operations and resilience functions adhere to established enterprise security policies, standards, procedures, and control requirements; partner with the SVP of Enterprise Security to operationalize security policy expectations within cyber operations, BC/DR, and recovery activities; support control validation, evidence collection, and operational effectiveness reviews related to cyber operations and…