Senior IT Risk Manager

Introduction:

Since 1973, East West Bank has served as a pathway to success. With over 120 locations across the U.S. and Asia, we are the premier financial bridge between the East and West. Our teams of experienced, multi-cultural professionals help guide businesses and community members on both sides of the Pacific looking to explore new markets and create new opportunities, and our sustained growth and expertise in industries like real estate, entertainment and media, private equity and venture capital, and high-tech help build sustainable businesses and expand our associates’ potential for career advancement.

Headquartered in California, East West Bank (Nasdaq: EWBC) is a top performing commercial bank with an exclusive focus on the U.S. and Greater China markets. With a strong foundation, and enterprising spirit and a commitment to absolute integrity, East West Bank gives people the confidence to reach further.

Responsibilities:

• The role is responsible for overseeing and participating in the governance, risk management and compliance of technology-driven processes within the organization.
• Assist and monitor 1^st line management in identifying, assessing, monitoring, and controlling technology and security risks, and provide guidance on necessary mitigation measures.
• Ensure that technology-driven operational areas are aligned with the Enterprise Risk Management Framework and assist in increasing awareness of the bank’s risk management policies and practices.
• Support 2^nd and 3^rd line with the organization wide risk management activities and audits, with a focus on technology and security risk areas.
• Oversee the development and upkeep of technology and security polices, standards and procedures. Ensure compliance with corporate security policies, regulatory requirements, and adherence to best practices.
• Assess the adequacy and effectiveness of controls with technology related process/risk areas across the organization.
• Provide advice and recommendations on new technology solutions or IT initiatives, as it relates to risk management and compliance.

Qualifications:

• Bachelor’s degree or higher in Information Systems, Security or related and or equivalent combination of work experience.
• Minimum of 8 to 12 years of operations and technology governance, risk management, compliance, and audit.
• Expert knowledge of one of the more following compliance standards and frameworks: COBIT, NIST, GLBA, SOX, PCI ISO17999, & ISO27001.
• Expert knowledge of risk management tools and methodologies.
• Proficient in the design and implementation of effective information security and technology controls.
• Ability to re-engineer processes to improve governance, risk management and compliance practices with minimal oversight.
• Ability to draft policies, standards, and procedures.
• Experience within with regulatory exams, SOX, and internal & external audits.
• Ability to work collaboratively and independently.
• Demonstrated experience in developing and maintaining effective relationships with senior and mid-level management.
• Detail oriented with strong organizational and prioritization skills.
• Strong communication and writing skills.
• Ability to perform multiple projects simultaneously.
• Working knowledge of Microsoft Word, Excel, PowerPoint, Visio.

The base pay range for this position is USD $150,000.00/Yr. - USD $200,000.00/Yr. Exact offers will be determined based on job-related knowledge, skills, experience, and location.