Financial Examiner VI - Cybersecurity

Job Title: Financial Examiner VI - Cybersecurity

Location:  Texas

Benefits Offered: Comprehensive healthcare options, State of Texas retirement plan, paid vacation/holidays, Employee Assistance Program, Training/Employee Development Program, and more.

Military Specialty Codes: Army – 36A; Navy – N/A; Coast Guard – F&S, FIN10; Marine – 3404, 3408, 8844; Air Force – 6F0X1, 65FX, 65WX; Space Force – N/A Additional information on the SAO Military Crosswalk.

Summary: 

Performs advanced (senior‑level) cybersecurity and information systems examinations of regulated entities. Leads the development, implementation, and continuous improvement of SML’s Non‑Depository Cybersecurity Examination Program, incorporating the CSBS Baseline and Enhanced Nonbank Cybersecurity Exam Programs and evaluating institutions using the URSIT framework (Audit; Management; Development & Acquisition; Support & Delivery). Assesses cybersecurity governance, risk management, operational controls, outsourced technology dependencies, and compliance with applicable state and federal requirements including the FTC Safeguards Rule. Responsible for examiner training, program documentation, and ensuring consistent supervisory practices across the Mortgage Regulation Division. Collaborates and provides support to Information Resources staff. May assist the Thrift Regulation Division. Works under minimal supervision with considerable latitude for the use of initiative and independent judgment. May supervise the work of others. 

Essential Job Duties: 

• -Develop, implement, and maintain SML’s Non‑Depository Cybersecurity Examination Program, aligning with CSBS Nonbank Cybersecurity Exam standards and industry best practices. 

• -Create and update examination modules, procedures, and standardized workpapers incorporating URSIT components, CSBS Examiner Considerations, and FFIEC IT Handbook references. 

• -Continuously evaluate program effectiveness and recommend improvements based on emerging threats, technology changes, and CSBS program updates. 

• -Conduct highly complex cybersecurity and IT examinations of regulated entities. 

• -Apply the CSBS Baseline or Enhanced Exam Programs based on the size, complexity, and cyber‑risk profile of licensees and registrants. 

• -Perform pre‑examination activities, including issuing exam notifications and reviewing CSBS-recommended pre‑exam document request lists, risk assessments, policies, and other artifacts. 

• -Evaluate cybersecurity risk management practices across the URSIT framework: Audit (independence, reporting, testing); Management (governance, oversight, risk assessment); Development & Acquisition (change management, SDLC, vendor onboarding); and Support & Delivery (network security, endpoint controls, patching, monitoring) 

• -Assess mortgage entities’ compliance with the FTC Safeguards Rule, including required elements of written information security programs. 

• -Evaluate a broad range of cybersecurity domains specified by CSBS, including IT/IS governance, asset inventory, access control and authentication, network/endpoint security, patch management and vulnerability management, malware controls, cloud and outsourced provider oversight, incident response planning and testing, business continuity and disaster recovery, and ransomware preparedness and controls. 

• -Utilize the Ransomware Self‑Assessment Tool (R‑SAT) as part of examinations, interpret results, and incorporate findings into supervisory conclusions. 

• -Serve as examiner‑in‑charge for complex or multi‑state examinations. 

• -Train and mentor SML staff on cybersecurity concepts, CSBS exam procedures, risk identification, and documentation standards. 

• -Provide technical support to SML staff who identify IT‑related issues during examinations. 

• -Communicate examination findings clearly through written reports and presentations to leadership and information security teams of regulated entities, and SML senior management staff. 

• -Participate in multi‑state working groups, CSBS forums, and interagency initiatives to promote supervisory consistency. 

• -Maintain proficiency with updates to CSBS exam programs, federal and state cybersecurity regulatory expectations, and industry best practices. 

• -Collaborates with and provides support to Information Resources staff.  

• -Other related duties as assigned. 

Reports To: 

​​Director of Mortgage Regulation

External final male applicants who are 18-25 years of age will be required to furnish proof of registration or exemption from registration with the Selective Service System as a condition of state employment.

All offers of employment are contingent upon the candidate having legal authorization to work in the United States. Failure to present such authorization within the time specified by the U.S. Department of Labor will result in the offer being rescinded.

All offers of employment are also contingent upon satisfactory credit and background check.

For directions or to request physical accommodations, email [email protected]

E-Verify – This organization participates in E-Verify. This employer will provide the Social Security Administration (SSA) and, if necessary, the Department of Homeland Security (DHS), with information from each new employee’s Form I-9 to confirm work authorization.

Department of Savings and Mortgage Lending is an equal opportunity employer.​

Requirements and Preferences 

Experience:  

• -At least seven (7) years of experience in cybersecurity, IT audit, information systems security, cyber risk management, or examination of financial services or related industries. 

• -Experience conducting cybersecurity or IT examinations or audits preferred. 

• -Experience applying structured cybersecurity frameworks (e.g., CSBS Nonbank Cybersecurity Exam Program, NIST CSF, FFIEC IT Handbooks, ISO 27001) strongly preferred. 

Education: 

• -Graduation from an accredited four‑year college or university with major coursework in computer science, information systems, cybersecurity, business, finance, or related fields. 

• -Minimum of six (6) hours in computer science/information systems required. 

• -Experience and education may be substituted for one another. 

Other: 

• -Professional certifications such as ACISE, CISE, CISA, CISSP, CRISC, CEH, or similar are a plus. 

• -Must possess a valid Texas driver’s license (or obtain one within the required timeframe) and be willing to travel up to 25% of the time, including out‑of‑state travel for multi‑state examinations or training as needed. 

Knowledge, Skills, and Abilities: 

• -Knowledge of the CSBS Baseline and Enhanced Nonbank Cybersecurity Exam Programs, including required artifacts, examiner considerations, and supervisory expectations. 

• -Understanding of FTC Safeguards Rule requirements and ability to assess institutions’ compliance. 

• -Ability to apply URSIT components consistently during examinations. 

• -Knowledge of cybersecurity domains covered by CSBS, including governance, network security, patch management, vendor management, business continuity, and ransomware preparedness. 

• -Ability to utilize and interpret R‑SAT results. 

• -Mastery of audit/examination methodology and report writing. 

• -Excellent communication skills, including translating technical concepts for non‑technical audiences. 

• -Strong analytical abilities, with the capability to identify deficiencies, evaluate control maturity, and recommend corrective actions. 

• -Ability to work both independently and collaboratively, manage multiple assignments, and meet deadlines. 

• -Advanced proficiency with personal computers, examination software, and productivity tools.