Banc of California, Inc. (NYSE: BANC) is a bank holding company with approximately $8 billion in assets and one wholly-owned banking subsidiary, Banc of California, N.A. (the “Bank”). With our 600+ dedicated professionals, we provide customized and innovative banking and lending solutions to businesses, entrepreneurs and individuals throughout California. We proudly partner with community organizations that provide financial literacy, job training, small business support, and affordable housing to help improve the communities where we live and work. With a commitment to service and building enduring relationships, we provide a higher standard of banking.

JOB SUMMARY:

Responsible for all aspects of cyber security operations including architecture, design, configuration, deployment, operation and management of cyber security tools, systems and processes. The position is involved with the implementation and maintenance of data security systems in both on premise and cloud environments. Performs all duties in accordance with the company’s policies and procedures, all U.S. state and federal laws and regulations, wherein the company operates.

ESSENTIAL DUTIES AND RESPONSIBILITIES:

1. Supports, monitors and enforces the security posture of the Bank using next-gen firewall, IDS/IPS, endpoint protection, DLP, encryption, SIEM, vulnerability management and other technologies and processes.


2. Conducts / coordinates security control audits, identifies potential gaps/risks and participates in the remediation of same.


3. Maintains Security Operations team triage and incident response playbooks to protect and recover information assets from unauthorized access, modification or destruction.


4. Assist in developing and implementing technical security standards to support the Bank’s security needs and regulatory requirements including ISO2700x, CFPB, SOX, GLBA, NIST, FFIEC and PCI.


5. Provide subject matter expertise in all areas of Information Security technical operations, including analysis of computing environment, security testing and documentation, as well as investigations, software research, emerging technology research, vendor security analysis and participation in periodic audits.


6. Execute a reliable first-line-of defense via documented processes, controls, templates, and rigors.


7. Evaluate effectiveness of security testing and training, including security awareness training, and phishing campaigns.


8. Keeps abreast of the latest security and privacy legislation, regulations, advisories, alerts, and vulnerabilities pertaining to the Bank, and modify security control structure as required.


9. Maintains knowledge and awareness of information security trends within the financial industry.


10. High level of personal integrity, the ability to professionally handle confidential matters, and project the appropriate level of urgency, judgment, and maturity.


11. Performs other duties and projects as assigned.


12. Treats people with respect; keeps commitments; inspires the trust of others; works ethically and with integrity; upholds organizational values; accepts responsibility for own actions.


13. Follows policies and procedures; completes tasks correctly and on time; supports the company’s goals and values.


14. Demonstrates knowledge of and adherence to EEO policy; shows respect and sensitivity for cultural differences; educates others on the value of diversity; promotes working environment free of harassment of any type; builds a diverse workforce and supports affirmative action.


15. Performs the position safely, without endangering the health or safety to themselves or others and will be expected to report potentially unsafe conditions. The employee shall comply with occupational safety and health standards and all rules, regulations and orders issued pursuant to the OSHA Act of 1970, which are applicable to one’s own actions and conduct.


16. Performs other duties and projects as assigned.

Banc of California is an equal opportunity employer committed to creating a diverse workforce. All qualified applicants will receive consideration for employment without regard to age (40 and over), ancestry, color, religious creed (including religious dress and grooming practices), denial of Family and Medical Care Leave, disability (mental and physical) including HIV and AIDS, marital status, medical condition (cancer and genetic characteristics), genetic information, military and veteran status, national origin (including language use restrictions), race, sex (which includes pregnancy, childbirth, breastfeeding and medical conditions related to pregnancy, childbirth or breastfeeding), gender, gender identity, gender expression, and sexual orientation.

ESSENTIAL KNOWLEDGE, SKILLS, AND ABILITIES:

• Demonstrates knowledge of, adherence to, monitoring and responsibility for compliance with state and federal regulations and laws as they pertain to this position including but not limited to the following: Regulation Z (Truth in Lending Act), Regulation B (Equal Credit Opportunity Act), Fair Housing Act (FHA), Home Mortgage Disclosure Act (HMDA), Real Estate Settlement Procedures Act (RESPA), Fair Credit Reporting Act (FCRA), Bank Secrecy Act (BSA) in conjunction with the USA PATRIOT Act, Anti-Money Laundering (AML) and Customer Information Program (CIP), Right to Financial Privacy Act (RFPA, state and federal) and Community Reinvestment Act (CRA).


• Security generalist, someone that thrives in fast-paced environments with diverse technologies, but can dive deep on your domain(s) expertise.


• Interested in solving security challenges through partnership, technical awareness and assurance.


• Adept at influence and driving change within the organization.


• Self-starter with a hands-on style, a high level of energy, stamina and drive.


• Able to present ideas clearly and gain agreement and group consensus.


• Strong team player.


• Ability to work with little to no supervision while performing duties

EDUCATION, EXPERIENCE AND/OR LICENSES:

• Bachelor's Degree, Information Systems, Computer Science, Information Security or related field desired.


• Security Operations experience in financial services, healthcare, or other highly-regulated sector desired. 


• 3+ years IT security or Information Security experience with a proven ability to engage with business units and technical peers.