Title: Enterprise Information Security Engineer - Architect Location: New York, New York Department: Information Technology Job Description: Description Department: Information Technology Job Type: Regular Full Time Education Level: BA/BS or combination of education and experience Required Years Experience: 4 Church Pension Group (CPG) is a financial services organization that serves the Episcopal Church, located in Midtown Manhattan. CPG was founded in 1917 to provide pension benefits to eligible clergy of the Episcopal Church. Since then, its mission has expanded to include life and disability insurance, health benefits, property & casualty insurance, and publishing. The Enterprise Information Security Engineer / Architect reports to the Enterprise Information Security Officer (EISO) and is responsible for designing secure enterprise solutions and implementing robust security measures to protect Church Pension Group’s (CPG) information assets and employees. The position ensures that security is embedded across all technologies- on-premises, cloud-hosted, software-as-a-service, and other vendor services- while managing operational security tasks, including monitoring, incident response, compliance, and vendor management. To be effective, the Enterprise Information Security Engineer requires strong communication skills and the ability to lead collaboration efforts with other ITS teams and business units. ESSENTIAL DUTIES AND RESPONSIBILITIES include the following. Other duties may be assigned. - Architect Systems and Solutions - Plan and design security solutions that enable identification, protection, detection, response, and recovery from cyber threats. - Define and develop security requirements from threat assessments, risk modeling, system analysis, and regulations, leveraging standard security frameworks. - Create security integration plans for existing infrastructure and future solutions. - Security Operations - Implement and manage security technologies (e.g., firewalls, encryption, SIEM, DLP, IPS) directly, collaborate with other teams, and use MSSPs. - Monitor networks and systems for security breaches, escalations, and anomalies to ensure optimal security and accurate metrics. - Perform vulnerability assessments, penetration testing, and manage these services. - Own several of the security tool vendor relationships. - Governance and Compliance - Develop and maintain security policies, standards, and procedures to ensure a secure environment and compliance with regulatory requirements. - Present and manage compliance issues, remediation, and organizational conversations. - Prepare action plans to harden systems, respond to security and DR events. - Risk Management - Identify, evaluate, and report on information security risks. - Perform regular risk assessments and recommend mitigation strategies. - Education and Awareness - Educate staff on cybersecurity best practices and the security program. - Acquire or develop training to address identified gaps and remediations. - Manage IT compliance and collaborate on corporate compliance measures. - Advise business units on secure configurations, vendors, and architectures. - Support Leadership - Support the EISO in security event management, group collaboration, and planning and budgeting. - Maintain and develop both technical and management skills. - Effective performance of the essential functions of this position requires regular in-person, on-site interaction with colleagues, both for purposes of relationship building and meaningful collaboration. - Other duties may be assigned. QUALIFICATIONS: To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. - Strong knowledge of cybersecurity principles, frameworks, and tools. - Experience with a wide range of tools, including IDS, IPS, firewalls, and SEIMs. - Deep understanding of Cloud Security and SaaS Vendor Security. - Proficiency in risk assessment, incident response, and threat modeling. - Excellent communication skills for cross-functional collaboration. EDUCATION and/or EXPERIENCE - 4+ yrs of relevant Information Security experience - BA/BS in Computer Science, Engineering, or related field preferred. Combination of work and education considered - Preferred Certifications: CISSP, CISM, CCSP, CISA, multiple topical GIACs. - Experience with AWS, Azure M365, Entra ID, Splunk, CrowdStrike, Darktrace, and Tripwire, is a plus. PHYSICAL DEMANDS: - Extensive use of a computer keyboard is a demand of the position to perform the essential functions of this job successfully. WORK ENVIRONMENT: Currently, hybrid work environment, which requires working in CPG’s office Tuesdays through Thursdays and flexibility to work remotely on Mondays and Fridays. Church Pension Group employees must always maintain a professional, compassionate, and trustworthy work environment. Reasonable accommodations may be made to enable someone with a disability to perform the essential functions of the job within this environment. Salary Range: $110,000 - $140,000 Join us and Create A Better Future For Yourself! Flexible Benefits available to eligible employees: - Medical (including Vision) - Dental Core Benefits automatically provided to eligible employees: - Employer funded defined benefit pension plan (five year vesting) - Employee Life Insurance - Spouse and Dependent Life Insurance - Accidental Death and Dismemberment (AD&D) Insurance - Short-Term Disability (STD) coverage - Long-Term Disability (LTD) coverage (elected as either pre-tax or after-tax) - Business Travel Accident Insurance - Worker’s Compensation - Employee Assistance Program - Retiree health insurance (eligible after 10 years) - Retiree life insurance Elective Benefits available to eligible employees: - 401(k) with matching contributions (immediate vesting) - Flexible Spending Accounts (FSAs) - Commuter Benefits - New York’s 529 College Savings Program (NY State residents) Educational Assistance Program available to eligible employees Parental Leave available to eligible employees Time Off available to eligible employees: Vacation, Sick, Personal and Holidays You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance. In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification document form upon hire. Please understand that, as a general policy, CPG does not sponsor visas.

Chief Information Security Officer (CISO) Location: Remote Job Description: Chief Information Security Officer (CISO) Vistrada is looking to hire strong Chief Information Security Officers (CISO). The CISO will provide strategic cybersecurity guidance and oversight to Vistrada clients by leading and managing their cybersecurity programs to help protect their infrastructure, data, people, and customers. Candidates should have extensive knowledge of cybersecurity best practices, industry standards, and regulations. They should also have strong communication, leadership, and project management skills, as well as the ability to work collaboratively with internal and external stakeholders. Job Responsibilities and Common Duties Include: - Apply consultative and leadership skills to build high rapport with clients and team members. - Provide expert security advisory, compliance and security program oversight, oversee security/compliance assessments, and prepare high-quality reports (including gap analysis, POAM, recommendations, and remediation planning). - Lead and manage a team of security analyst(s) providing oversight, direction, expertise, and mentoring. - Provide virtual chief information security officer services. - Support clients on a fractional owner model. - Act as an extension of client’s information security management and governance function. - Develop, implement, and oversee information security programs. - Assess, identify requirements for, and make recommendations on security controls and technologies. - Develop security roadmaps and plans of action. - Vendor and third-party risk management program support and due diligence. - Develop business continuity and incident response plans. - Focus on key performance indicators, metrics, security dashboards. - Assist With Business Development. - Work with potential new clients to understand and define business and technology needs, provide subject matter expertise to answer client’s questions and concerns, and identify and align services with client’s needs. - Support statements of work, identify resource requirements, assumptions, estimates, and assist with responses to Requests for Proposals (RFPs). - Identify client’s security and technology needs and identify business development opportunities as outcomes of assessment activities. - Develop expert level content, participate in panel discussions and public speaking events, and attend conference exhibitor opportunities. - Architect high quality security solutions to the needs of clients. - Perform other duties that may be assigned by management. Required Experience / Skills: - 10+ years of CISO experience working in related field(s). - Expert knowledge of cybersecurity frameworks and regulations including: NIST, ISO, CMMC, PCI, COBIT, DFARS, HIPAA, etc. - Hands-on incident response coordination and oversight experience. - Strong understanding of IT Risk and components, including application, infrastructure, network, and vendors. - Bachelor’s degree in Computer Science, Accounting, MIS, or comparable work experience. - Develop and present management level materials to effectively communicate and message to stakeholders. - Relevant certifications such as CISA, CISM, or CISSP, or similar experience. The annual pay range for this role is $150,000 - 200,000. Company Background: Vistrada is a business, technology and management services firm dedicated to helping clients plan, design and implement initiatives supporting Cybersecurity, Business Transformation, Integrated Risk Management, and Managed Services. Vistrada provides seasoned expertise and a flexible team structure allowing agility and responsiveness to support client’s evolving needs. Our company operates nationally today with resources centered around NYC, Albany NY, Austin TX, Chicago, IL and Salt Lake City, UT. We have many resources who operate remotely and onsite as needed in a wider geography. Our business organization has four verticals and multiple cross competencies headed by leaders with more than 20+ years of experience on average

• Define and lead the company’s IT strategy, ensuring internal systems, infrastructure, and technology operations operate efficiently and scale effectively • Establish long-term operational roadmaps for enterprise systems, endpoint management, networking, collaboration platforms, and employee technology experience • Drive modernization and optimization of internal technology ecosystems through automation, integration, and operational design • Lead strategic planning for IT architecture, business continuity, disaster recovery, and operational resilience • Establish operational standards, governance models, and lifecycle management practices across enterprise technology systems • Oversee enterprise technology vendors, procurement strategy, and platform investments to ensure operational efficiency, scalability, and cost effectiveness • Ensure internal technology operations support organizational productivity, security, and long-term business objectives • Define and lead the company’s enterprise cybersecurity and risk management strategy • Establish scalable security governance frameworks, policies, and operational controls that protect company systems, data, and users • Oversee enterprise compliance and certification programs and other applicable security and regulatory standards • Partner with executive leadership to proactively identify, assess, and mitigate operational and cybersecurity risks • Lead organizational security strategy across identity management, endpoint security, access governance, incident response, and third-party risk management • Ensure the company maintains audit readiness and operational compliance through scalable controls, processes, and documentation practices • Drive company-wide security awareness and risk management practices that strengthen organizational resilience • Define and lead the company’s enterprise AI enablement strategy, driving adoption of AI technologies across business functions to improve operational scale, efficiency, and decision-making • Partner with executive leadership to identify high-impact opportunities for AI, automation, and intelligent workflow transformation across the organization • Establish governance frameworks, operational standards, and best practices for responsible and secure AI usage • Drive modernization of internal systems and workflows through AI-powered tooling, automation, and process redesign • Evaluate and implement emerging technologies that improve organizational effectiveness and reduce operational friction • Partner cross-functionally to ensure AI initiatives align with business priorities, security standards, and long-term operational strategy • Promote organization-wide AI fluency and enablement through tooling, education, and operational guidance • Define the strategy for employee technology experience across a distributed workforce, ensuring scalable, secure, and efficient operational support • Oversee initiatives that improve employee productivity, onboarding experiences, collaboration, and operational enablement through technology and automation • Oversee operational support for remote employees and a small onsite office environment, ensuring alignment with company standards and business continuity needs • Define the strategic roadmap for enterprise technology, cybersecurity, and internal operational systems • Serve as a key cross-functional leader partnering with Product, Engineering, Finance, Legal, People, and executive leadership to align technology investments with company priorities • Lead organizational planning for enterprise systems, operational scalability, security posture, and AI transformation initiatives • Build, mentor, and develop high-performing teams while fostering a culture of innovation, accountability, and operational excellence

• Design, implement and review security solutions for Azure and M365 environments. • Design, develop, maintain and assess security architecture artifacts (e.g., models, templates, standards, and procedures). • Oversee the development and implementation of security engineering best practices and standards. • Identify & implement automation opportunities, particularly across cloud provisioning, CI/CD pipelines, and policy enforcement. • Coordinate and manage Cyber engineering projects, ensuring timely delivery and quality. • Manage and prioritise an engineering backlog using Agile methodologies. • Maintain accurate documentation and team processes.