Sign In
 [New User? Sign Up]
Mobile Version

Information Security Risk and Controls Manager

Bank of Hawaii

Oahu, HI
Job Code:
  • Financial Services
Bank of Hawaii
  • Save Ad
  • Email Friend
  • Print
  • Research Salary

Job Details

Information Security Risk and Controls Manager-1700332

Bank of Hawaii
In 1897, Bank of Hawaii was the first chartered and incorporated bank in the Republic of Hawaii. We’ve been here from territorial days, growing and changing with Hawaii. Today, we are the largest independent bank in Hawaii – a result of knowing our business and community, and always staying ahead of change. At Bank of Hawaii, we think of ourselves as forward thinking pace setters. We are constantly finding creative ways to deliver leading edge financial services to our customers.  Now, we’re embracing change with our new 21st century banking.


It’s our IT team who helps us succeed in offering first class service in new and innovative ways.  As a member of the Information Technology community, you will be among the very best in your profession in an environment that places a high value on integrity, innovation and teamwork.  It motivates us to be decisive, work together to solve problems, and never settle for less than best.


Does this sound like you?
Are you ambitious?  Want to make a difference in how your company operates? Are you a change leader?  Do you thrive in an environment that leverages your abilities as a technology champion?  Are you a self-starter and a forward thinker?  If you love challenges, relish complexity, and have moxie, consider applying your unique talents with a Hawaii banking leader – Bank of Hawaii.  Here you can be at the forefront of whatever you do. Welcome to your tomorrow!


A day in your life as an Information Security Risk and Controls Manager
Under the direction of the Chief Information Security Officer, this position manages the Information Security risk management and governance program, ensuring identification, tracking, and remediation of information security risk issues and implementation and compliance with related policies, procedures, and regulations.  Provides leadership and subject matter expertise in area of risk management methodology, security awareness, incident management, IT controls management, IT disaster recovery planning, and compliance management, and seeks ways of continuously improving function to ensure strong security posture.  Assists in business units’ compliance with applicable laws, regulations, regulatory requirements and Bank policies and procedures, including but not limited to those related to Gramm-Leach-Bliley, Anti-Money Laundering laws and regulations, Bank Secrecy Act, and USA PATRIOT Act.  In addition, this position is responsible for demonstrating the Excellence in Sales/Service (ESS) philosophy by participating in and practicing ESS disciplines and behaviors. 


We’ll give you these important responsibilities…

  • Manages information security risk management program, ensuring the identification, tracking, and timely remediation of information security related risk issues.  Serves as subject matter expert in area of information security risk management methodology and practice.  Works closely with bank business units to ensure management of information security risk issues, including operation and vendor risk associated with acquisition of new technologies.  Drives operational excellence by establishing and maintaining procedures, standards, and operational workflows, seeking continuous improvement opportunities, and ensuring effective management reporting.  Oversees planning and recommendations of changes based on new or changing business requirements or evolving technology.
  • Manages information security and corporate technology governance program, ensuring policies and applicable procedures are complete and comprehensive, that new governance requirements are addressed, and that governance is kept up to date.
  • Manages IT controls, compliance, and disaster recovery planning functions.  Ensures coordination of annual internal audits and regulatory examinations, and alignment with Corporate Compliance function. Supervises team members to ensure adherence to corporate policy, regulatory requirements, and accepted best practices.
  • Managed the bank’s incident response program, ensuring that the program is kept current, and that members of the incident response team and senior managers receive regular training and participate in incident management exercises.
  • Manages the security awareness program, ensuring that all employees and contractors understand the bank’s information security program and policies.  Meets with business units and information security coordinators to ensure specific business needs are understood and addressed.  Administers testing and remediation tracking as needed.
  • Responsible for the management of all employees in the section including staffing and scheduling, compensation, performance management, training and development.  Goal is to attract and retain a quality team and motivate them to achieve management business objectives while maintaining a favorable employee relations climate.  Responsible for the timely and effective management of Human Resources forms and documents relevant to immediate staff.  Leads the team by inspiring engagement and increasing the capabilities of others to optimize business results.
  • Manages department projects, ensuring compliance with project management standards and processes and performs all other miscellaneous responsibilities and duties as assigned.


…if you come to us with these qualifications…


  • Bachelor’s degree from an accredited institution or equivalent work related experience. 
  • Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), and/or Certified Information Security Auditor (CISA), Certified Ethical Hacker (CEH), Project Management Professional (PMP), and/or SANS Global Information Assurance Certification (GIAC) certifications (or equivalent) preferred.



  • Minimum 7 – 8 years of increasingly responsible positions in information security/information technology, risk management, and/or financial services compliance-related work experience with all levels of technical professionals and management.   
  • Also requires at least 5 years of team leadership/supervisory/management experience supervising and mentoring technical professionals. 
  • Significant process management/project management experience preferred. 
  • Requires a broad knowledge of information security best practices, IT controls implementation, software development lifecycle, and awareness of new approaches and techniques in information security technology. 


Technical Skills: 

  • Demonstrated proficiency and expertise with personal computers in a networked environment and Microsoft applications (Outlook, Word, Excel, Access, and PowerPoint) or similar software. 
  • Knowledge of or ability to use Bank software and systems.   
  • Knowledge of or hands-on experience administering identity and access management systems preferred. 


Other Job Qualifications: 

  • Ability to build strong working relationships and partnerships across organization with a collaborative and consultative approach. 
  • Possess strong analytical, quantitative, and problem solving skills to identify business and process improvement opportunities and risks, implement procedural change, and establish internal controls. 
  • Strong project management and organizational skills required to execute and complete projects on-time. 
  • Ability to simultaneously manage multiple projects and assignments with varying deadlines. 
  • Possess strong intellectual curiosity and business acumen. 
  • Must be a self-starter with the ability to work independently. 
  • Utilize strong verbal and written communication skills across all levels of the organization. 
  • Ability to express complex ideas in concise and simple terms.  
  • Effective interpersonal skills and collaborative management style to include teamwork, team building, conflict management, negotiating and problem solving skills.  
  • Able to work flexible hours including holidays, weekends and evenings as needed or assigned. 
  • Must be able to provide own transportation or to operate a vehicle with a valid driver’s license, and commute as required. 
  • Able to travel off-island as necessary.

All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of any legally protected classification including race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, or protected veteran status.  Bank of Hawaii takes affirmative action in support of its policy to advance in employment legally recognized individuals including minorities, women, protected veterans and individuals with disabilities.

Job Function Information Technology
Primary Location Hawaii-Oahu
Schedule Full-time
Job Posting Jul 26, 2017, 8:31:49 AM
Unposting Date Ongoing
Powered By

Featured Jobs [ View All ]