Banc of California, Inc. (NYSE: BANC) is
a bank holding company with approximately $8 billion in assets and one
wholly-owned banking subsidiary, Banc of California, N.A. (the “Bank”). With
our 600+ dedicated professionals, we provide customized and innovative banking
and lending solutions to businesses, entrepreneurs and individuals throughout
California. We proudly partner with community organizations that provide
financial literacy, job training, small business support, and affordable
housing to help improve the communities where we live and work. With a
commitment to service and building enduring relationships, we provide a higher
standard of banking.
JOB SUMMARY:
Responsible for all
aspects of cyber security operations including architecture, design,
configuration, deployment, operation and management of cyber security tools,
systems and processes. The position is involved with the implementation and
maintenance of data security systems in both on premise and cloud environments.
Performs
all duties in accordance with the company’s policies and procedures, all U.S.
state and federal laws and regulations, wherein the company operates.
YOU SHOULD BE:
A security generalist,
someone that thrives in fast-paced environments with diverse technologies, but
can dive deep on your domain(s) expertise.
Interested
in solving security challenges through partnership, technical awareness and
assurance.
Adept
at influence and driving change within the organization.
A
self-starter with a hands-on style, a high level of energy, stamina and drive.
Able
to present ideas clearly and gain agreement and group consensus.
A
strong team player.
ESSENTIAL DUTIES AND RESPONSIBILITIES:
Builds,
supports, monitors and enforces the security posture of the Bank using next-gen
firewall, IDS/IPS, endpoint protection, DLP, encryption, SIEM, vulnerability
management and other technologies and processes.
Conducts
/ coordinates security control audits, identifies potential gaps/risks and
participates in the remediation of same.
Establishes
and maintains Security Operations team triage and incident response playbooks
to protect and recover information assets from unauthorized access, modification
or destruction.
Assist
in developing and implementing technical security standards to support the
Bank’s security needs and regulatory requirements including ISO2700x, CFPB,
SOX, GLBA, NIST, FFIEC and PCI.
Provide subject matter expertise in all areas of
Information Security technical operations, including analysis of computing
environment, security testing and documentation, as well as investigations,
software research, emerging technology research, vendor security analysis and
participation in periodic audits.
Execute
a reliable first-line-of defense via documented processes, controls, templates,
and rigors.
Evaluate
effectiveness of security testing and training, including penetration testing,
security awareness training, and phishing campaigns.
Keeps
abreast of the latest security and privacy legislation, regulations,
advisories, alerts, and vulnerabilities pertaining to the Bank, and modify
security control structure as required.
Maintains
advanced knowledge and awareness of information security trends within the financial
industry.
High
level of personal integrity, the ability to professionally handle confidential
matters, and project the appropriate level of urgency, judgment, and maturity.
Performs
other duties and projects as assigned.
Treats people with
respect; keeps commitments; inspires the trust of others; works ethically and
with integrity; upholds organizational values; accepts responsibility for own
actions.
Follows policies and
procedures; completes tasks correctly and on time; supports the company’s goals
and values.
Demonstrates knowledge
of and adherence to EEO policy; shows respect and sensitivity for cultural
differences; educates others on the value of diversity; promotes working
environment free of harassment of any type; builds a diverse workforce and
supports affirmative action.
Performs the position
safely, without endangering the health or safety to themselves or others and
will be expected to report potentially unsafe conditions. The employee shall
comply with occupational safety and health standards and all rules, regulations
and orders issued pursuant to the OSHA Act of 1970, which are applicable to
one’s own actions and conduct.
Performs other duties
and projects as assigned.
Banc of California is an equal opportunity employer
committed to creating a diverse workforce. All qualified applicants will
receive consideration for employment without regard to age (40 and over),
ancestry, color, religious creed (including religious dress and grooming
practices), denial of Family and Medical Care Leave, disability (mental and
physical) including HIV and AIDS, marital status, medical condition (cancer and
genetic characteristics), genetic information, military and veteran status,
national origin (including language use restrictions), race, sex (which
includes pregnancy, childbirth, breastfeeding and medical conditions related to
pregnancy, childbirth or breastfeeding), gender, gender identity, gender
expression, and sexual orientation.
ESSENTIAL KNOWLEDGE, SKILLS, AND ABILITIES:
Demonstrates knowledge
of, adherence to, monitoring and responsibility for compliance with state and
federal regulations and laws as they pertain to this position including but not
limited to the following: Regulation Z (Truth in Lending Act), Regulation B
(Equal Credit Opportunity Act), Fair Housing Act (FHA), Home Mortgage
Disclosure Act (HMDA), Real Estate Settlement Procedures Act (RESPA), Fair
Credit Reporting Act (FCRA), Bank Secrecy Act (BSA) in conjunction with the USA
PATRIOT Act, Anti-Money Laundering (AML) and Customer Information Program
(CIP), Right to Financial Privacy Act (RFPA, state and federal) and Community
Reinvestment Act (CRA).
Security
generalist, someone that thrives in fast-paced environments with diverse
technologies, but can dive deep on your domain(s) expertise.
Interested
in solving security challenges through partnership, technical awareness and
assurance.
Adept
at influence and driving change within the organization.
Self-starter
with a hands-on style, a high level of energy, stamina and drive.
Able
to present ideas clearly and gain agreement and group consensus.
Strong
team player.
Ability
to work with little to no supervision while performing duties
EDUCATION, EXPERIENCE AND/OR LICENSES:
Bachelor's Degree,
Information Systems, Computer Science, Information Security or related field
desired.
Security Operations
experience in financial services, healthcare, or other highly-regulated sector
desired.
5+ years IT security or
Information Security experience with a proven ability to engage with business
units and technical peers.