FVP & Information Security Officer

At Open Bank, we pride ourselves on being different and OPEN to new ideas and opportunities for our clients and employees.

We celebrate innovation, diversity, teamwork, excellence and integrity. We are an equal opportunity employer and offer competitive compensation and benefits package to recruit, retain and reward top talent. We would like to be your partner in success and happiness!

Join our TEAM - Together Everyone Achieves More

Job Title: FVP & Information Security Officer

Department: Risk & Compliance

Hybrid Schedule: 3 days onsite (DTLA HQ Office), 2 days remote

We are looking for a FVP & Information Security Officer to join our Risk & Compliance team at Open Bank! The FVP & Information Security Officer will be responsible for the Information Security Program and Business Continuity Program for the Bank to meet FFIEC guidelines, other regulatory requirements, and industry standards as determined by the Executive IT Strategic Committee and/or Risk & Compliance Committees.

Key Responsibilities:

• Lead, develop and deliver a comprehensive Information Security and Cybersecurity Program ("ISP") for the Bank.
• Ensure ISP meets legal and regulatory requirements regarding information security, cybersecurity, and privacy of information.
• Develop, implement, and oversee process for the approval of authorized users with periodic documented compliance and exception reporting
• Provide strategic direction to protect the Bank and client confidential information by analyzing and recommending infrastructure changes to protect from internal and external threats.
• Coordinate development of information security and cybersecurity policies, standards, and procedures. Work with MIS Manager and Chief Risk Officer ("CRO") or Sr. Risk Officer ("SRO")to develop, implement, and oversee ISP compliance.
• Oversee the cybersecurity risks associated with emerging technologies, including artificial intelligence (AI), machine learning, and hybrid-cloud deployments.
• Prepare and present reports to Board and Management regarding ISP and cybersecurity concerns.
• Investigate security breaches with the SRO or CRO and MIS Manager, as appropriate.
• Implement and coordinate the Incident Response Program and reporting with the SRO or CRO.
• Update and implement the ongoing Cybersecurity Risk Assessment Program (CRI) and the Information Security Self-Assessment with updates for new software, products, and applicable vulnerabilities.
• Oversee the Business Continuity Plan ("BCP") with input from the SRO or CRO.
• Ensure all functional departments are included and critical processes have contingency plans.
• Work with the MIS department on the disaster recovery plan to ensure regulatory guidelines are met.
• Represent as the Chair of the BC - Cyber Committee for the Bank and lead the committee meeting by working closely with the SRO or CRO and MIS to oversee the implementation of the decisions made by the committee.
• Document to ensure that all members are active and knowledgeable about their BCP requirements within their functions and represented departments.
• Ensure BCP testing is completed and documented per the annual testing plan.
• Oversee network of vendors and the owners who protect the Bank's assets. Develop and review security exception reporting to management and Board.
• Keep abreast of latest information security, cybersecurity, and privacy legislation, regulations, advisory alerts, and vulnerabilities pertaining to the Bank and the jurisdictions where the Bank operates.
• Identify and make recommendations for security initiatives and standards.
• Ensure all employees are trained and understand the requirements of information security, cybersecurity, and privacy of data.
• Develop and implement the Cyber Awareness Program for the Bank Employees and Customers.
• Conduct ongoing phishing testing for all bank employees and report the results to management. Provide additional training for those employees who fail testing.

Requirements/Qualifications:

• Bachelor's degree in computer science, information security, information assurance, business administration or related field or equivalent experience.
• Minimum five years of experience in information security, cybersecurity, information technology or related field.
• Experience in developing and administering an information security and/or cybersecurity program.
• Working knowledge in the regulatory environment of information security and cybersecurity.

Employee Benefits & Perks

• Medical, Dental, & Vision: Open Bank offers medical, dental, and vision insurance for all full-time employees and their immediate family members. Employees become eligible for insurance benefits on the first of the month following their hire date.
• Life, Accidental Death & Dismemberment, & Long-Term Disability: Open Bank pays 100% of the cost.
• Flexible Spending Account (FSA): Tax-advantaged financial accounts are offered for employees to pay for eligible out-of-pocket expenses (health, dependent care, transit, and parking) with pre-tax dollars.
• 401(k) Retirement Savings Plan: Open Bank matches 100% of the first 6% of employees' contributions. Employees are eligible to participate on the first of the month following 90 days of employment.
• Paid Time Off (PTO): Employees begin to accrue PTO hours at the time of hire to use for vacation, illness, or other personal reasons.
• Employee Assistance Program (EAP): The EAP offers counseling sessions, online tools and resources, and legal and financial guidance for employees and their family.
• Company Paid Lunch: Open Bank provides company paid lunch twice a week.

To view current job openings, please visit Open Bank Careers Page: https://myopenbank.com/about/#