Roseville, California, USA
2 days ago
Director Security Operations

Come join a company you can be proud to represent. 

The hiring range for this opportunity is $160,000 to $215,000 annually along with incentive opportunities, creating a competitive total compensation package based on our pay scale, and may be modified by location and is commensurate with qualifications and experience.

This position is eligible for hybrid or remote work. 

POSITION SUMMARY

Provides leadership and technical oversight of the Information Security Operations team. Safeguards the planning and implementation of Incident Response processes, fortifies technology defenses, analyzes technical and information processes, and resolves security breaches and vulnerability issues in a timely and accurate manner. Responsible for Information Security incident case management and directing the facilitation of Information Security table-top exercises and training to ensure quick and efficient response to Information Security Incidents.

MAJOR RESPONSIBILITIES

• Participate as an independent member of the Bank’s Information Technology team in governance processes of the organization’s security strategies.

• Provide oversight and leadership to the Bank’s Information Security Operations Security professionals.

• Contribute to the strategic design of the Bank’s Information Security Program to achieve business goals, prioritize defense plans, and coordinate the evaluation, deployment, and management of current and future security technologies.

• Develop, oversee, and maintain enforcement of policies, programs, procedures, and associated plans for system security logging and monitoring and incident response based on industry-standard best practices.

• Ensure the Bank’s Information Security Operations practices, are compliant under the laws (e.g., GLBA), rules and regulations of the FDIC, DFI, FRB, etc. 

• Develop, oversee, and maintain enforcement of policies, programs, and procedures, for information security and technology systems based on industry-standard best practices.

• Work closely with IT department on corporate technology development to fully secure information, computer, network, and processing systems.

• Review computer security system designs and their corresponding or associated software, including firewalls, intrusion detection systems, cryptography systems, and anti-virus software.

• Assist in developing, tracking, and controlling the security team’s annual operating and capital budgets for purchasing, staffing, and operations.

• Maintain a broad knowledge of best practices and trends in the field of Information Security, Physical Security, Networking, Incident Response, and Business Continuity

• Participate as the leader of the Bank’s Security Incident Response team, leading breach response and review of third-party breaches with potential impact to the Bank.

• Direct the use of tools and techniques for monitoring all technology systems to identify issues, events, or incidents.

• Direct and facilitate Information Security table-top exercises and training to identify and resolve gaps in policies, programs, and procedures.

• Monitor the environment for potential threats to the organization proactively and communicate with necessary stakeholders.

OTHER RESPONSIBILITIES

• Maintains a current understanding of Bank policies and procedures, in compliance with all state and federal laws, including but not limited to Bank Secrecy Act (SARs, OFAC), Information Security Guidelines (GLBA Privacy), Identity Theft Red Flags, and Unfair, Deceptive, Abusive Acts or Practices.

• Recommend and implement changes in security policies and practices in accordance with changes in local or federal law.

• Provide resolution to security problems in a cost-effective manner.  

• Communicate risks and recommendations to mitigate risks to senior management in non-technical, cost/benefit terms and in a relevant format so decisions can be made to ensure the security of information systems and information entrusted to the Bank. 

• Collaborate with IT leadership, compliance, and human resources to establish and maintain a system for ensuring that security and privacy policies are met.

• Participate in the Bank’s Management Technology Steering Committee

• Promote and oversee strategic security relationships between internal resources and external entities, including government, vendors, and partner organizations.

• Remain informed on trends and issues in the security industry, including current and emerging technologies and practices. Advise, counsel, and educate executive and management teams on their relative importance and financial impact.

• Define and communicate corporate plans, procedures, policies, and standards for the organization for acquiring, implementing, and operating new security systems, equipment, software, and other technologies.

EDUCATION, EXPERIENCE AND OTHER SKILLS REQUIRED

• Undergraduate degree in IT, Information Security or related field, graduate degree preferred. 

• 10 years of experience managing and/or directing IT and/or security operations.

• Experience working in the financial industry a plus.

• CISSP or CISM certification required.

• Additional security, audit, IT, or Risk certifications a plus (ex. CISA, CRISC, CGEIT, etc.).

• Experience with hardware, software, operating systems and programming.

• Proven experience in planning, organizing, and developing IT security and facility security system technologies.

• Experience in planning and executing security policies and standards development.

• Excellent knowledge of technology environments, including information security, building security, and defense solutions.

• Substantial exposure to data processing, hardware platforms, enterprise software applications, and outsourced systems.

• Good understanding of computer systems characteristics, features, and integration capabilities.

• Experience with systems design and development from business requirements analysis through to day-to-day management.

• Demonstrated ability to apply IT in solving security problems.

• Superior understanding of the organization’s goals and objectives.

PHYSICAL REQUIREMENTS

• May be required to lift up to 50 pounds.

COMPANY PROFILE

Established in 1975, Tri Counties Bank is a wholly-owned subsidiary of TriCo Bancshares (NASDAQ: TCBK) headquartered in Chico, California, with assets of nearly $10 billion and nearly 50 years of financial stability. Tri Counties Bank provides a unique brand of Service With Solutions® for communities throughout California with a breadth of personal, small business and commercial banking services, plus an extensive branch network, more than 37,000 surcharge-free ATMs nationwide, and advanced online and mobile banking.

Tri Counties Bank remains strong and profitable through our top-down commitment to our core values, sound business principles and responsible lending practices.

Our success is also based on our community engagement. We still believe in the vision of the helpful and caring community banker. As we grow and serve more communities, we become more involved, providing substantial financial and volunteer support to local economies and community organizations. We applaud our employees who roll up their sleeves to work and volunteer for a greater good in our communities.

Tri Counties Bank hires individuals who are qualified for the role and who represent the communities in which we serve. We look to place people in positions where they can best utilize their abilities and strengths, and where they are able to grow with the Bank.

Tri Counties Bank is an Affirmative Action and Equal Opportunity Employer, Race/Color/Religion/Sex/Sexual Orientation/Gender Identity/National Origin/Disability/Veteran.

Confirm your E-mail: Send Email