Head of Information Security

4 weeks ago


Los Angeles, United States Hanmi Bank Full time

SUMMARY

The Head of Information Security is responsible for planning, implementing and maintaining the information security program, including cybersecurity. The information security program is designed to ensure the confidentiality, integrity, and availability of the information in compliance with industry/banking regulations. This position will work closely with the Information Technology staff as well as stakeholders in other business units to manage information and cyber security risk, including risk identification and mitigation. The Information Security program involves several team members, who are responsible for ongoing risk assessment, evaluation of appropriate security controls, development and monitoring of policies and standards, security awareness and training programs, project and product development consultation, incident response program management, and proactive compliance with industry regulations related to information security.

Ensures compliance with established Company policies and procedures. Demonstrates knowledge of, adherence to, monitoring and responsibility for compliance with state and federal regulations and laws as they pertain to this position including but not limited to the following: Regulation Z (Truth in Lending Act), Regulation B (Equal Credit Opportunity Act), Home Mortgage Disclosure Act, Real Estate Settlement Procedures Act, Fair Credit Reporting Act, Bank Secrecy Act in conjunction with the USA PATRIOT Act, Anti-Money Laundering and Customer Information Program, Right to Financial Privacy Act (state and federal) and Community Reinvestment Act.

REQUIRED DUTIES

1. Partner and influence stakeholders across the organization to achieve the goals outlined in the Information Security Program. Demonstrated strong leadership and management skills and the ability to secure results through others.

2. Develops and implements policies and procedures to ensure compliance with established regulatory guidelines to safe guard the bank’s information environment.

3. Develops and delivers information security, privacy and data loss prevention programs to include information in electronic, print and other formats.

4. Facilitates enterprise-wide training on pertinent security issues are appropriate and adequate.

5. Ensures the Information Security Program is appropriately designed to ensure a holistic enterprise-wide perspective with reducing the overall information security risk.

6. Ensures that information created, acquired or maintained is used in accordance with its intended purpose to protect its infrastructure from external or internal threats and to ensure the organization complies with statutory and regulatory requirements regarding information access, security and privacy.

7. Implements an ongoing risk assessment program targeting information security, cybersecurity, and privacy matters; recommends methods for vulnerability detection and remediation and performs and/or oversees vulnerability testing.

8. Keeps abreast of the latest security and privacy legislation, regulations, advisories, alerts and vulnerabilities pertaining to the organization. Conducts continual research to maintain knowledge of technology, customer needs and overall requirements; stays current with advancements in technology relative to data administration, security, related services, and FFIEC Guidelines; makes recommendations to evolve information security practices and procedures to accommodate such changes.

9. Maintains advanced knowledge and awareness of financial industry technical status and trends.

10. Informs the board, management, and staff of information security and cybersecurity risks. Participates in information sharing sites (e.g., Financial Services Information Sharing and Analysis Center) on cyber threats and vulnerabilities that may affect Hanmi Bank.

11. Develops and manages information security resources or budget to maintain an effective information security program.

12. Provides a quarterly state of the Information Security Program report to the Risk Committee.

13. Monitors, maintains and adjusts the Information Security Program in light of audit findings and recommendations, changes in the internal and external landscape, relevant changes in technology, and changes in business strategy.

14. Monitors staff in daily tasks, operations and quality control.

16. Treats people with respect; keeps commitments; inspires the trust of others; works ethically and with integrity; upholds organizational values; accepts responsibility for own actions.

17. Demonstrates knowledge of and adherence to EEO policy; shows respect and sensitivity for cultural differences; educates others on the value of diversity; promotes working environment free of harassment of any type; builds a diverse workforce and supports affirmative action.

18. Follows policies and procedures; completes tasks correctly and on time; supports the company’s goals and values.

19. Performs the position safely,



  • Los Angeles, United States Motion Recruitment Full time

    An international fast-fashion e-commerce company is looking to add a Head of Application Security to their team! This is a 100% on-site opportunity in LA, Palo Alto, or San Diego. They are in search of an engineer with a deep technical understanding of the full SDL lifecycle and extensive experiences in code audit and application security testing. This...


  • Los Angeles, United States Motion Recruitment Full time

    An international fast-fashion e-commerce company is looking to add a Head of Application Security to their team! This is a 100% on-site opportunity in LA, Palo Alto, or San Diego. They are in search of an engineer with a deep technical understanding of the full SDL lifecycle and extensive experiences in code audit and application security testing. This...


  • Los Angeles, United States Zions Security Alarms Full time

    Zions Security Alarms is looking to hire a new technician that is experienced in installing IP Cameras. (using cat5 or 6 - Crimping heads etc) Zions Security Alarms is a leader in selling security systems, cameras, home automation, smart home technology, medical alerts, and monitoring. There is no other security company like us that services the variety of...


  • Los Angeles, United States University of California - Los Angeles (UCLA) Full time

    The Information Security Analyst will support the security of UCLA's systems and data by supporting and maintaining enterprise cyber security tools and services that help to safeguard the organization's networks, systems, and data. This individual will conduct and administer vulnerability scans, monitor network and host-based intrusion ...


  • Los Angeles, United States Flow Health Full time

    **Location** Remote, Los Angeles Were looking for a proactive and personable Information Security Officer. Youll be part of a growing team working across the whole business in this important role. You will have day-to-day responsibility for the management and execution of all information security projects and tasks. The role would suit someone who is still...


  • Los Angeles, United States Motion Recruitment Full time

    A Global Enterprise company we are working with is looking for an Information Security Analyst. This person is a professional responsible for ensuring the security of an organization's information systems and data within the context of GEI. Their primary role is to identify, analyze, and mitigate security risks and threats to protect the confidentiality,...


  • Los Angeles, United States Motion Recruitment Full time

    A Global Enterprise company we are working with is looking for an Information Security Analyst. This person is a professional responsible for ensuring the security of an organization's information systems and data within the context of GEI. Their primary role is to identify, analyze, and mitigate security risks and threats to protect the confidentiality,...


  • Los Angeles, United States Motion Recruitment Full time

    A Global Enterprise company we are working with is looking for an Information Security Analyst. This person is a professional responsible for ensuring the security of an organization's information systems and data within the context of GEI. Their primary role is to identify, analyze, and mitigate security risks and threats to protect the confidentiality,...


  • Los Angeles, California, United States Motion Recruitment Full time

    A Global Enterprise company we are working with is looking for an Information Security Analyst. This person is a professional responsible for ensuring the security of an organization's information systems and data within the context of GEI. Their primary role is to identify, analyze, and mitigate security risks and threats to protect the confidentiality,...


  • Los Angeles, California, United States Motion Recruitment Full time

    A Global Enterprise company we are working with is looking for an Information Security Analyst. This person is a professional responsible for ensuring the security of an organization's information systems and data within the context of GEI. Their primary role is to identify, analyze, and mitigate security risks and threats to protect the confidentiality,...


  • Los Angeles, United States USC Credit Union Full time

    USC Credit Union located steps from USC’s University Park campus near Downtown Los Angeles, is looking for an experienced **Information Security Specialist **for its fast-paced IT Department. This position reports directly to the Chief Operations Officer and is responsible for evaluating, enhancing, and supporting all aspects of information security at the...


  • Los Angeles, United States University of California - Los Angeles (UCLA) Full time

    Senior Information Security Compliance Analyst The UCLA Information Security Office enables UCLA's goals by providing leadership assuring the confidentiality, integrity, and availability of its information resources. The Information Security Office enables efficient incident response planning and notification procedures. In addition, the office aims to...


  • Los Angeles, United States University of California - Los Angeles (UCLA) Full time

    The Information Security Risk Analyst will be responsible for ensuring the success of UCLA's Cybersecurity Risk Management strategy. As part of the Governance Risk & Compliance (GRC) team this role will work closely with business stakeholders, technology experts, cybersecurity professionals, and industry partners to ensure policies ...


  • Los Angeles, United States Volunteers of America Los Angeles Full time

    Job DescriptionJob DescriptionVOALAHelping Our Most Vulnerable Change Their Life StoriesVolunteers of America is a non-profit human services organization committed to serving people in need, strengthening families, and building communities. VOALA provides a variety of social services to Los Angeles area communities such as Head Start programs, Upward Bound...


  • Los Angeles, United States UCLA Full time

    The Information Security Analyst will positively impact UCLA's operations and culture by protecting University stakeholders' information and data in service of the institution's academic mission. This team member will advance the University's mission by delivering exceptional security service comprehensively and consistently across faculty, staff, and...

  • Suit Security Officer

    2 weeks ago


    Los Angeles, United States Spear Security Full time

    Hello and Thank you for your interest. PLEASE READ ALL THE WAY THROUGH AND RESPOND WITH REQUIRED INFORMATION OR YOU WILL NOT RECEIVE A RESPONSE. We will be conducting interviews and hiring several Unarmed Security Officers for part and full time shifts 7 days a week for various locations: **SUIT SECURITY**: Beverly Hills: Part Time or Full Time...


  • Los Alamitos, United States Southland Credit Union Full time

    Role: Reporting directly to the VP/CIO, the Network Security Analyst is responsible for monitoring, evaluating, and maintaining systems and procedures to protect the data systems and databases from unauthorized users. Identifies potential threats and responds to reported security violations. Determines causes of security violations and recommends corrective...


  • Los Angeles, United States Science 37 Full time

    **Chief Information Security Officer** at Science 37 Los Angeles, California - Remote Science 37 is accelerating the research and development of breakthrough biomedical treatments by bringing clinical trials to patients' homes. Backed by venture investors such as Glynn Capital, Google Ventures, Redmile Group, dRx Capital and Lux Capital, we are...


  • Los Angeles, United States Science 37 Full time

    **Chief Information Security Officer** at Science 37 Los Angeles, California - Remote Science 37 is accelerating the research and development of breakthrough biomedical treatments by bringing clinical trials to patients' homes. Backed by venture investors such as Glynn Capital, Google Ventures, Redmile Group, dRx Capital and Lux Capital, we are...


  • Los Angeles, United States Science 37 Full time

    • Chief Information Security Officer• at Science 37 Los Angeles, California - Remote Science 37 is accelerating the research and development of breakthrough biomedical treatments by bringing clinical trials to patients' homes. Backed by venture investors such as Glynn Capital, Google Ventures, Redmile Group, dRx Capital and Lux Capital, we are...