Nano BancSVP - Chief Information Security Officer
Jan. 2019 - Dec. 2022Irvine, California, United StatesDeveloped and executed a comprehensive Information Security and IT Risk Management strategy, addressing both current and emerging risks through rigorous testing and mitigation efforts. Led the establishment of a vendor management program, ensuring due diligence aligned with FFIEC guidelines for enhanced vendor security compliance. Authored the IT Strategic Plan for 2019-2022, incorporating detailed tactical and budget forecasts to guide future technology investments. Engaged with business unit leaders to evaluate new initiatives, assessing inherent risks and devising strategies for risk mitigation. Spearheaded security awareness and training campaigns, elevating organizational cybersecurity culture. Provided critical reports to the Board, steering committees, government agencies, and law enforcement, ensuring transparent communication of security posture and initiatives.
* Established comprehensive Information Technology and Information Security Policies and Procedures, creating a robust framework for organizational cybersecurity and governance. * Spearheaded the implementation of Steering Committees to enhance strategic oversight across critical areas, including IT, Policy and Standards, and Business Continuity/Disaster Recovery (BC/DR), fostering cross-functional collaboration and alignment with best practices. * Successfully conducted annual Disaster Recovery (DR) tests for more than 42 applications and network connections, ensuring compliance with FFIEC requirements and demonstrating resilience in critical system recoverability.