Sr. Information Security Engineer
Santa Ana, CA

Job Description

Since 1941, Banc of California (NYSE:BANC) has provided full-service banking and lending to individuals and their businesses, families and employees throughout California and across the West.

Today, with over $10 billion in consolidated assets, we are large enough to meet our clients' banking needs, yet small enough to care and serve them well. Banc of California's strong balance sheet, deep community roots and commitment to lasting and meaningful relationships are the foundation for its long record of success.

JOB SUMMARY:

Responsible for executing successful enterprise-wide controls that protect the Bank's data and functions across all business areas and manage the data standards, procedures, governance oversight, and technical solutions with the Information Security department. Actively engage and partner with business data stewards, process owners, data custodians, and IT teams to ensure appropriate controls are in place to prevent risk for the bank. Perform assessments of systems and networks within the networking environment and identify where those systems and networks deviate from acceptable configurations have gaps. Support of program control processes to ensure mitigation of risks and approved configuration certification of systems. Which include supporting of processes, analysis of computing environment, coordination, security testing, security documentation, as well as investigations, software research, hardware introduction and release, emerging technology research inspections, and participation in periodic audits. Performs all duties in accordance with the company's policies and procedures, all U.S. state and federal laws and regulations, wherein the company operates.

ESSENTIAL DUTIES AND RESPONSIBILITIES:

* Assists in the execution of the Information Security Program and Data Governance Strategy.


* Maintains processes to monitor and measure Data Governance.


* Support data loss prevention, visibility, and classification of data, systems, and processes.


* Assists in maintaining an accurate enterprise critical data library with associated data and process flows.


* Documents and maintains data governance activities, log management, and participates in cyber-security incidents and corresponding resolution activities.


* Monitors, tracks, and reports on compliance to security requirements and works with the responsible parties to drive timely remediation. Maintains documentation as well as remediation of key data issues.


* Execute a reliable second-line-of defense via documented processes, controls, templates, and rigors.


* Practice applicable procedures and standards that meet existing and newly developed policy and regulatory requirements including SOX, GLBA, CFPB, and FFIEC guidance.


* Evaluate effectiveness of security testing and training, including penetration testing, security awareness training, and phishing campaigns.


* Keeps abreast of the latest security and privacy legislation, regulations, advisories, alerts, and vulnerabilities pertaining to the organization.


* Conducts continual research to maintain knowledge of technology, emerging risks, customer and business unit needs, and overall requirements to ensure bank roadmap is maintaining a good direction.


* Stays current with advancements in technology relative to data administration, security, related services, and FFIEC Guidelines.


* Maintains advanced knowledge and awareness of financial industry technical status and trends.


* High level of personal integrity, the ability to professionally handle confidential matters, and project the appropriate level of urgency, judgment, and maturity.


* Treats people with respect; keeps commitments; inspires the trust of others; works ethically and with integrity; upholds organizational values; accepts responsibility for own actions.


* Follows policies and procedures; completes tasks correctly and on time; supports the company's goals and values.


* Demonstrates knowledge of and adherence to EEO policy; shows respect and sensitivity for cultural differences; educates others on the value of diversity; promotes working environment free of harassment of any type; builds a diverse workforce and supports affirmative action.


* Performs the position safely, without endangering the health or safety to themselves or others and will be expected to report potentially unsafe conditions. The employee shall comply with occupational safety and health standards and all rules, regulations and orders issued pursuant to the OSHA Act of 1970, which are applicable to one's own actions and conduct.


* Performs other duties and projects as assigned.



Banc of California is an equal opportunity employer committed to creating a diverse workforce. All qualified applicants will receive consideration for employment without regard to age (40 and over), ancestry, color, religious creed (including religious dress and grooming practices), denial of Family and Medical Care Leave, disability (mental and physical) including HIV and AIDS, marital status, medical condition (cancer and genetic characteristics), genetic information, military and veteran status, national origin (including language use restrictions), race, sex (which includes pregnancy, childbirth, breastfeeding and medical conditions related to pregnancy, childbirth or breastfeeding), gender, gender identity, gender expression, and sexual orientation.

ESSENTIAL KNOWLEDGE, SKILLS, AND ABILITIES:

* Demonstrates knowledge of, adherence to, monitoring and responsibility for compliance with state and federal regulations and laws as they pertain to this position including but not limited to the following: Regulation Z (Truth in Lending Act), Regulation B (Equal Credit Opportunity Act), Fair Housing Act (FHA), Home Mortgage Disclosure Act (HMDA), Real Estate Settlement Procedures Act (RESPA), Fair Credit Reporting Act (FCRA), Bank Secrecy Act (BSA) in conjunction with the USA PATRIOT Act, Anti-Money Laundering (AML) and Customer Information Program (CIP), Right to Financial Privacy Act (RFPA, state and federal) and Community Reinvestment Act (CRA).


* Strong oral and written communication skills appropriate for consultation with all levels of management.


* Strong decision maker.


* Experience in collaboration amongst multiple lines of business.


* Ability to drive the priorities of the business.


* Ability to develop a plan to drive growth.


* Excellent interpersonal customer and employee contact skills.


* Credibility, stature and personal presence in order to lead individuals and operate effectively.


* The ability to thrive in a fast-paced, dynamic environment.


* The ability to influence and drive change within the organization.


* A self-starter with a hands-on style, a high level of energy, stamina and drive.


* The ability to present ideas clearly and gain agreement and group consensus.


* A strong team player who is proactive and driven to achieve results.


* Intermediate experience, knowledge and training in all operational and lending activities and terminology.


* Intermediate knowledge of related state and federal banking compliance regulations, Bank operational policies and procedures, and the Bank's products and services.


* Excellent organizational and time management skills.


* Advanced skills in computer terminal and personal computer operation; intermediate typing skills to meet production needs of the position.



EDUCATION, EXPERIENCE AND/OR LICENSES:

* Bachelor's Degree, Information Systems, Computer Science, Information Security or related field desired.


* 7 years IT security or Information Security experience with a proven ability to engage with business units and technical peers.


* 7 years' experience in administering information security controls in an organization.