Information Handling & Protection Mgr

Old National Bank has been serving clients and communities since 1834. With over $70 billion in total assets, we are a regional powerhouse deeply rooted in the communities we serve. As a trusted partner, we thrive on helping our clients achieve their goals and dreams, and we are committed to social responsibility and investing in our communities through volunteering and charitable giving.

We continually seek highly motivated and talented individuals as our people are critical to our success. In return, we offer competitive compensation with our salary and incentive program, in addition to medical, dental, and vision insurance.  401K, continuing education opportunities and an employee assistance program are also included in our benefit suite. Old National also offers a variety of Impact Network Groups led by team members who are passionate about driving engagement, creating awareness of diverse backgrounds and experiences, and building inclusion across the organization.  We offer a unique opportunity to join a growing, community and client-focused company that is firmly rooted in its core values.

Salary Range

           The salary range for this position is $81,700 - $165,100 per year. Final compensation will be determined by location, skills, experience, qualifications and the career level at which the position is filled.

We are currently seeking an Information Handling and Protection Manager.  This position is a critical second line of defense role within Risk Management. This position is responsible for overseeing Data Governance, Data Protection, and Records Retention to ensure the organization's data is managed securely and effectively. The role involves developing and implementing policies, procedures, and controls to safeguard data integrity, confidentiality, and availability.

Key Accountabilities

• Information/Data Governance:
  • In collaboration with the Data Governance Office in the 1^st Line of Defense (DG), establish and maintain an appropriate data governance framework based on an appropriate industry standard, such as Basel BCBS 239, COBIT, and ISO 20022
  • In collaboration with DG, develop and enforce data governance policies and standards
  • In collaboration with DG, ensure data governance frameworks align with regulations such as the Sarbanes-Oxley Act (SOX) and the Dodd-Frank Act to mitigate legal risks
  • In collaboration with DG, implement practices focusing on data quality, validation, and reconciliation to maintain the integrity of financial information
  • Ensure compliance with regulatory requirements and industry best practices.
  • Collaborate with DG and other business units, as appropriate, to establish data ownership and stewardship
  • Monitor and report on data quality and integrity
• Information/Data Protection:
  • Establish and maintain appropriate information handling and protection Policies, Standards, Guidelines, Procedures
  • Implement and maintain data protection strategies and technologies
  • Conduct risk assessments and identify vulnerabilities in data handling processes
  • Develop and enforce data encryption, access controls, and other security measures
  • Respond to data breaches and incidents, ensuring timely resolution and mitigation
  • Establish robust security measures and comply with regulations such as GDPR and GLBA to protect sensitive data
• Records Retention:
  • Establish and maintain Records retention policies, standards, guidelines, procedures, and schedules
  • Ensure proper archiving and disposal of Records in compliance with legal and regulatory requirements
  • Collaborate with legal and compliance teams to manage Records-related risks
  • Conduct regular audits of records management practices 

Key Competencies for Position

• Excellent written and communications skills
• Excellent analytical and problem-solving skills
• Ability to work collaboratively with cross-functional teams
• Proven ability to manage and develop strong teams 

Qualifications and Education Requirements

• Knowledge of Data Governance frameworks such as Basel BCBS 239, COBIT, and ISO 20022
• Bachelor’s degree in information security, Risk Management, or a related field
• Minimum of 7 years of experience in information security, data governance, data protection, and records retention
• Strong understanding of regulatory requirements and industry standards (e.g., GDPR, CCPA, ISO 27001)
• Professional certifications such as CISM, CISSP, or CRISC are preferred

Old National is proud to be an equal opportunity employer focused on fostering an inclusive workplace and committed to hiring a workforce comprised of diverse backgrounds, cultures and thinking styles. 

As such, all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, protected veteran status, status as a qualified individual with disability, sexual orientation, gender identity or any other characteristic protected by law. 

We do not accept resumes from external staffing agencies or independent recruiters for any of our openings unless we have an agreement signed by the Director of Talent Acquisition, SVP to fill a specific position.

 Our culture is firmly rooted in our core values.

We are optimistic. We are collaborative. We are inclusive. We are agile. We are ethical.

We are Old National Bank.

Join our team!