IT Security Risk and Compliance Analyst jobs in United States
cer-icon
Apply on Employer Site
company-logo

Bank of the Orient · 4 weeks ago

IT Security Risk and Compliance Analyst

positionSan Francisco, CA
timeFull-time
remoteOnsite
seniorityMid Level
money$69K/yr - $87K/yr
date4+ years exp

Bank of the Orient is an independent Asian Community Bank serving the financial needs of Bay Area communities for over 54 years. They are seeking an IT Security Risk and Compliance Analyst responsible for deploying, monitoring, and enhancing the bank's security and risk management programs while collaborating with the IT team to maintain a secure enterprise environment.

BankingCustomer ServiceFinanceFinancial ServicesInformation Technology
check
H1B Sponsor Likelynote

Responsibilities

Support the maintenance and improvement of bank's Information Security, Risk and Compliance programs and its supporting technologies to effectively address information technology and vendor risks in alignment with the organization's risk appetite and ensure regulatory compliance
Perform risk analysis and partner with stakeholders to create treatment plans that achieve an acceptable level of risk
Develop and analyze reports and alerts to identify control gaps and propose changes to improve the bank's security, risk and compliance posture
Document and monitor the implementation of controls for technology and business project plans
Lead and coordinate incident response activities for all IT security incidents and conduct root cause analysis and document lessons learned reviews to ensure continuous process improvement
Conduct and manage the delivery of information security awareness training for employees, contractors, board members, and other third parties as appropriate and facilitate/promote activities to foster information privacy and security awareness culture within the bank
Maintain current knowledge of applicable federal and state privacy and security laws and accreditation standards, and monitor advancements in information privacy and security technologies to ensure organizational adaptation and compliance
Support the maintenance of the Bank's vendor management lifecycle phases from on-boarding, periodic monitoring, risk assessments, and termination
Collaborate with business owners and other internal stakeholders to ensure vendor risks are properly identified and controls are in place to mitigate risk and minimize financial, regulatory, and reputational exposure. Effectively communicate and collaborate with business owners and support their third party strategic initiatives
Liaise with cross-functional Subject Matter Experts and/or stakeholders to ensure vendor engagements are compliant with bank policies and regulatory guidance
Performing periodic reviews of network user and group access and business applications
Responsible and/or serve as backup for the operations and monitor of the Enterprise Output Manager system. This includes transferring files to third party applications and/or vendors and ensuring all daily, weekly and monthly report jobs have completed successfully
Responsible for report administration within the IT delivery and support and security system. This includes writing reports and providing support to business end users and managements
Utilize business applications/tools to perform duties including updating and sharing policy and procedure documentation with stakeholders
Participate and coordinate with vendors for network application administration. This includes performing application upgrades and providing support for end users
Demonstrates quality customer service principles with internal and external customers consistently
Prepare presentation and reports for executive and Board level review and perform other duties and special projects as assigned

Qualification

Information SecurityRisk ManagementCompliance ProgramsGRC ToolsDatabase ManagementNetwork SecurityAnalytical SkillsTroubleshooting SkillsBilingualCommunication SkillsOrganizational Skills

Required

Bachelor's degree in information technology or related major and 4+ years equivalent work experience
Knowledge of IP concepts, and Microsoft and Linux Operating Systems is required
Must be able to understand and execute instructions in English accurately and efficiently, verbally and in writing
Ability to effectively work with all areas of the Bank and outside vendors
Good troubleshooting, analytical, and organization skills with attention to detail
Knowledge of commonly used concepts, practices, and procedures within the regulated financial services industry
Requires the ability to build on the training and experience received and to extrapolate the knowledge gained in the past to understand and solve new problems
Requires the ability to work well under limited direct supervision
Familiar with various peripheral devices such as printers, routers, switches and other equipment found in an IT environment

Preferred

Experience with databases and report query tools is preferred
Knowledge and work experience with industry information security and GRC tools is preferred
Bilingual a plus

Benefits

401(k)
401(k) matching
Dental insurance
Employee assistance program
Health insurance
Life insurance
Paid time off
Vision insurance

Company

Bank of the Orient

twittertwitter
company-logo
Bank of the Orient is a bank specializing in personal and business solutions.
dateFounded in 1971
location
San Francisco, California, USA
people-size51-200 employees
web-link
http://bankorient.com

H1B Sponsorship

Bank of the Orient has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2024 (1)
2023 (2)
2021 (4)
2020 (3)

Funding

Current Stage
Growth Stage

Leadership Team

leader-logo
John Curtis
President and Chief Executive Officer
linkedin
Company data provided by crunchbase