- Leads and manages the information security risk management program, ensuring the identification, tracking, and timely remediation of information security related risk issues.
- Serves as the lead central point of contact and subject matter expert in area of information security risk management methodology and practice. Works closely with bank business units to ensure management of information security risk issues, including operation and vendor risk associated with acquisition of new technologies.
- Drives operational excellence by establishing and maintaining procedures, standards, and operational workflows, seeking continuous improvement opportunities, and ensuring effective management reporting. Oversees planning and recommendations of changes based on new or changing business requirements or evolving technology.
- Leads and manages information security and corporate technology governance program, ensuring policies and applicable procedures are complete and comprehensive, that new governance requirements are addressed, and that governance is kept up-to-date.
- Leads IT controls and compliance functions. Ensures coordination of annual internal audits, cybersecurity tabletop exercises, regulatory examinations, and alignment with Corporate Compliance function. Supervises team members to ensure adherence to corporate policy, regulatory requirements, and accepted best practices.
- Manages the security awareness program, ensuring that all employees and contractors understand the bank's information security program and policies. Meets with business units and information security coordinators to ensure specific business needs are understood and addressed. Administers testing and remediation tracking as needed.
- Responsible for the management of all employees in the section including staffing and scheduling, compensation, performance management, training and development. Responsible for the timely and effective management of Human Resources forms and documents relevant to immediate staff. Leads the team by inspiring engagement and increasing the capabilities of others to optimize business results.
- Actively mentor and train teammates on Information Security processes, governance, and frameworks.
- Works cross-functionally with team members to support and drive a collaborative team environment.
- Generates innovative ideas and challenge the status quo.
- Establishes team goals and works with direct reports on strategies for executing and measuring process.
- Maintains a strong understanding of the products, services, and activities of business units as well as Information Security principles and practices. Leverages that understanding to provide consulting, guidance, and education to stakeholders.
- Understands regulatory requirements related to BOH's portfolio, and represents IT risk management during internal, customer, or regulatory audits/assessments.
- Assists in the selection and tailoring of approaches, methods and tools to support service offering or industry projects.
- Demonstrates a general knowledge of market trends, competitor activities, as they align with BOH's strategic direction.
- Builds and nurtures positive working relationships across the bank with the intention of enabling agility, cost effectiveness and delivery as they support our customer experience goals and initiatives.
- Performs other miscellaneous responsibilities and duties as assigned.
- Bachelor's degree from an accredited institution or equivalent work related experience.
- Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), and/or Certified Information Security Auditor (CISA), Certified Ethical Hacker (CEH), Project Management Professional (PMP), and/or SANS Global Information Assurance Certification (GIAC) certifications (or equivalent) preferred.
- Minimum 7 to 8 years of increasingly responsible positions in information security/ information technology, risk management, IT control design and management, and/or financial services compliance-related work experience with all levels of technical professionals and management.
- Minimum 4 years of team leadership/supervisory/management experience supervising and mentoring technical professionals.
- Ability to problem solve and identify solutions to information security risks appropriately based on business context and risk significance.
- Experience in developing new risk and/or compliance and auditing management functions and capabilities within large, complex environments.
- Proven track record of cross-functional collaboration, especially in building a security-first culture focused on enabling business needs.
- Demonstrated proficiency and expertise with personal computers in a networked environment and Microsoft applications (Outlook, Word, Excel, Access, and PowerPoint) or similar software. Knowledge of or ability to use Bank software and systems.
- Utilize strong verbal and written communication skills across all levels of the organization.
- Ability to express complex ideas in concise and simple terms.
- Strong project management and organizational skills required to execute and complete projects on time. Ability to simultaneously manage multiple projects and assignments with varying deadlines.
- Possess strong analytical, quantitative, and problem solving skills to identify business and process improvement opportunities and risks, implement procedural change, and establish internal controls.
- Ability to build strong working relationships and partnerships across organization with a collaborative and consultative approach.
- Effective interpersonal skills and collaborative management style to include teamwork, team building, conflict management, negotiating and problem solving skills.
- Able to work flexible hours including holidays, weekends and evenings as needed
-
Manager, IT Security Risk
3 weeks ago
TEKsystems Honolulu, United StatesUnder the direction of the Manager, responsible for the maintenance of the Information Security governance, risk, and compliance program and related policies. This position will lead and manage the design, build and identification of information security risks, improvement of inf ...
-
Manager, IT Security Risk
1 week ago
TEKsystems Honolulu, United StatesTEKsystems · Manager, IT Security Risk & Controls · Honolulu , · Hawaii · Apply Now · Under the direction of the Manager, responsible for the maintenance of the Information Security governance, risk, and compliance program and related policies. This position will lead and ma ...
-
Manager, IT Security Risk
3 weeks ago
TEKsystems Honolulu, HI, United StatesUnder the direction of the Manager, responsible for the maintenance of the Information Security governance, risk, and compliance program and related policies. This position will lead and manage the design, build and identification of information security risks, improvement of inf ...
-
Manager IT Security Risk
2 weeks ago
Bank of Hawaii Honolulu, United StatesJob Description · Under the direction of the Manager, responsible for the maintenance of the Information Security governance, risk, and compliance program and related policies. This position will lead and manage the design, build and identification of information security risks, ...
-
VP Information and Security Risk Management
22 hours ago
Highmark Health Honolulu, United StatesLocation field must contain 'city, state' or a zip code to perform a radius search (e.g., · Denver, CO · or · City and state must be separated by a comma followed by a space (e.g., · Houston, TX ) · Highmark Health · VP Information and Security Risk Management · in · Honol ...
-
Insurance salesman
1 week ago
Eclipse Enterprises Honolulu, United StatesCustomer Service Representative (m/f/d) in-house position, full-time · Leipzig JOIN US THIS IS WHO WE ARE The GGW Group is one of the largest independent and owner-managed insurance brokers in Germany. As an expert in insurance and risk management, the GGW Group, with ten locati ...
-
Senior CyberSecurity Analyst
6 days ago
SAIC Honolulu, United States Full timeDescription · SAIC has an opportunity for a Senior Cybersecurity Analyst documenting security controls and creating Authority to Operate (ATO) packages. The scope of work for the position includes principal-level Cybersecurity leadership supporting INDOPACOM J73. · NOTE: This po ...
-
Senior CyberSecurity Analyst
15 hours ago
SAIC Honolulu, United States Full timeDescription · SAIC has an opportunity for a Senior Cybersecurity Analyst in Honolulu, HI documenting security controls and creating Authority to Operate (ATO) packages. The scope of work for the position includes principal-level Cybersecurity leadership supporting INDOPACOM J73. ...
-
Senior CyberSecurity Analyst
1 week ago
SAIC Honolulu, United States Full timeDescription · SAIC has an opportunity for a Senior Cybersecurity Analyst documenting security controls and creating Authority to Operate (ATO) packages. The scope of work for the position includes principal-level Cybersecurity leadership supporting INDOPACOM J73. · NOTE: This po ...
-
Capability Area Lead
3 weeks ago
MITRE Honolulu, United States Full timeWhy choose between doing meaningful work and having a fulfilling life? At MITRE, you can have both. That's because MITRE people are committed to tackling our nation's toughest challenges—and we're committed to the long-term well-being of our employees. MITRE is different from mos ...
-
LP Multi-Site Lead
3 days ago
Amazon Services LLC Honolulu, United States Full timeThe Loss Prevention Multi-Site Lead is a key leadership position within the Amazon Loss Prevention Team. If you are curious and want to challenge your conventional view of an LP role in a very unconventional space, this role within Amazon will provide that challenge The Loss Prev ...
-
DCE Cybersecurity Analyst
3 weeks ago
IMC (Innovative Management Concepts, Inc) Honolulu, United StatesThe DCE Cyber Security Analyst is responsible for all areas of IT cybersecurity and assisting the USARPAC G61 (CSPMO) in managing missions intended to preserve the ability to utilize blue cyberspace capabilities and protect data, networks, cyberspace-enabled devices, and other de ...
-
Facility Security Officer
6 days ago
MITRE Honolulu, United States Full timeWhy choose between doing meaningful work and having a fulfilling life? At MITRE, you can have both. That's because MITRE people are committed to tackling our nation's toughest challenges—and we're committed to the long-term well-being of our employees. MITRE is different from mos ...
-
Risk Management Lead
4 days ago
Booz Allen Hamilton Honolulu, United StatesRisk Management LeadKey Role: · Lead risk assessment activities, applying subject matter expertise to develop and execute strategies, plans, and processes to capture, investigate, and assess performance, quality, cost, schedule, personnel, and contract and subcontract management ...
-
Risk Management Lead
1 day ago
Booz Allen Hamilton Honolulu, United StatesRisk Management LeadKey Role: · Lead risk assessment activities, applying subject matter expertise to develop and execute strategies, plans, and processes to capture, investigate, and assess performance, quality, cost, schedule, personnel, and contract and subcontract management ...
-
Homeland Defense Force Protection Planner
3 weeks ago
Booz Allen Hamilton Honolulu, United States Full timeJob Number: R0195579 · Homeland Defense Force Protection PlannerKey Role: · Conduct antiterrorism and risk management assessment for an Army client. Evaluate antiterrorism plans, policies, and procedures related to risk management and emergency response at the senior executive le ...
-
Homeland Defense Force Protection Planner
5 hours ago
Booz Allen Hamilton Honolulu, United States Full timeHomeland Defense Force Protection PlannerKey Role: · Conduct antiterrorism and risk management assessments for an Army client. Evaluate antiterrorism plans, policies, and procedures related to risk management and emergency response at the senior executive level. Manage the applic ...
-
Homeland Defense Force Protection Planner
4 days ago
Booz Allen Hamilton Honolulu, United States Full timeHomeland Defense Force Protection PlannerKey Role: · Conduct antiterrorism and risk management assessment for an Army client. Evaluate antiterrorism plans, policies, and procedures related to risk management and emergency response at the senior executive level. Manage the applica ...
-
Database Administrator
2 weeks ago
Alakaina Foundation Family of Companies Honolulu, United StatesDESCRIPTION OF RESPONSIBILITIES: · Provide enterprise class relational database management system administration and analysis support for disparate database systems and architecture. · Install, maintain, deploy, manage, and harden DMBS; troubleshoot and remediate issues; and re ...
-
Safety Analyst
2 weeks ago
Boys & Girls Clubs of America Honolulu, United StatesOverview · Boys & Girls Clubs of America is the nation's premier youth development organization. Our programs, training and services impact nearly 4 million children and teens every year. We are always looking for qualified professionals with a passion for improving young lives, ...
Manager IT Security Risk - Honolulu, United States - Bank of Hawaii
Description
Job Description
Under the direction of the Manager, responsible for the maintenance of the Information Security governance, risk, and compliance program and related policies.
This position will lead and manage the design, build and identification of information security risks, improvement of information security awareness through education and training, and management of the Information Security and ID Theft program.
Provides subject matter expertise in area of risk management methodology, security awareness, information technology (IT) controls management, and compliance management; seeking ways to continuously improve function to ensure strong security posture.
Assists in business units' compliance with applicable laws, regulations, regulatory requirements and Bank policies and procedures, including but not limited to those related to Gramm-Leach-Bliley, Fair Banking, Anti-Money Laundering laws and regulations, Bank Secrecy Act, and USA PATRIOT Act.
Responsibilities
IT Risk Management
Leadership
Subject Matter Expertise
Miscellaneous
Qualifications
Education:
Experience:
Technical Skills:
Other Job Qualifications:
As a Bank of Hawaii employee, you ensure (or assist with ensuring) compliance with applicable laws, regulations, regulatory requirements and Bank policies and procedures, including but not limited to those related to Fair Banking, Anti-Money Laundering laws and regulations, Bank Secrecy Act and USA PATRIOT Act.