SVP, Security Risk and Assurance

Description

Banc of California, Inc. (NYSE: BANC) is a bank holding company headquartered in Los Angeles with one wholly‑owned banking subsidiary, Banc of California (the “bank”). Banc of California is one of the nation’s premier relationship‑based business banks focused on providing banking and treasury management services to small, middle‑market, and venture‑backed businesses. Banc of California offers a broad range of loan and deposit products and services, with full‑service branches throughout California and Denver, Colorado, as well as full‑stack payment processing solutions through Banc Edge.

The bank is committed to its local communities by supporting organizations that provide financial literacy and job training, small business support, affordable housing, and more.

At Banc of California, our success is driven by our people, and we take pride in fostering an environment where everyone can reach their full potential. We embrace a culture of empowerment, progressive thinking, and entrepreneurial spirit, ensuring our team members have an opportunity to make an impact and play an important role in the future of Banc of California. Our core values – Entrepreneurialism, Operational Excellence, and Superior Analytics – empower us in creating a dynamic and inclusive workplace.

We are committed to supporting your growth and well‑being with comprehensive benefits, career development programs, a variety of employee resource groups, and more. TOGETHER WE WIN®

Responsible for overseeing all aspects of information security programs/projects, information security & technology risk assessments, vendor security reviews, and information security reporting. Performs all duties in accordance with the Company’s policies and procedures, all U.S. state and federal laws and regulations, wherein the Company operates.

• Acquire and manage the necessary resources, including leadership support, financial resources, and key security personnel, to support information security goals and objectives to reduce overall organizational risk. Forecast ongoing service demands and ensure that security assumptions are reviewed as necessary. Advise senior management on cost/benefit analysis of information security programs, policies, processes, systems, and elements.
• Provide continuous monitoring of security landscape so that possible security threats are identified and actioned appropriately. Supervise or manage the governance, risk and compliance function for protective, preventative or corrective measures when a cybersecurity incident or vulnerability is discovered.
• Collect and maintain data needed to meet system cybersecurity reporting. Advise senior management on risk levels and security posture. Advise appropriate senior leadership or of changes affecting the organization’s cybersecurity posture.
• Establish enterprise information security architecture (EISA) with the organization’s overall security strategy. Ensure that protection and detection capabilities are acquired or developed using the IS security engineering approach and are consistent with organization‑level cybersecurity architecture. Evaluate and approve development efforts to ensure that baseline security safeguards are appropriately installed.
• Monitor and evaluate the effectiveness of the enterprise’s cybersecurity safeguards to ensure that they provide the intended level of protection. Manage threat or target analysis of cyber defense information and production of threat information within the enterprise.
• Define and/or implement policies and procedures to ensure protection of critical infrastructure as appropriate. Continuously validate the organization against policies/guidelines/procedures/regulations/laws to ensure compliance.
• Work closely with client executives and management teams to understand their businesses and assist in identifying and managing financial and operational risks within their business systems to ensure technology risks are managed. Collaborate with stakeholders to establish the enterprise continuity of operations program, strategy, and mission assurance. Ensure that…