Information Security Operations & Awareness, MD

FHLBank San Francisco

New Hired from FHLBank San Francisco

Job Description:

If this job matches your qualifications, please send your application directly through our latest Job site in San Francisco, CA
(Financial District/South Beach area). Indeed, every job is not easy to apply because it must meet several qualifications and requirements that we must meet in accordance with the standard criteria of the FHLBank San Francisco who are looking for potential candidates to work. Good job information Information Security Operations & Awareness, MD below matches your qualifications.

Job Description:


Responsible for operational compliance of Information Security policies, standards, and strategies defined by the Corporate Information Security Officer (CISO). Manage the Security Operations team, security monitoring and reporting on the Bank’s Defense in Depth tool suite, Security Awareness Program, and Incident Response Management processes and related tools.

Collaborate with Security Architecture & Engineering and the CISO to develop and maintain the risk-based Information Security strategy, roadmap, and architecture in alignment with business objectives and risk appetite. Serve as an interface between strategic and tactical security risk management activities and the work of the technology-focused staff within the Information Security organization.

Major Accountabilities:

Strategic Planning:

  • Partner with the CISO to develop operational requirements and implement a strategy to continue the maturation of Security Operations, Security Monitoring and Reporting, Security Awareness, Security Information & Event Management, and Incident Response Management processes.
  • Partner with the CISO to maintain the department’s information security risk profile in alignment with the Bank’s risk appetite which includes security threat and vulnerability defenses; reviews and audits and penetration testing; and control validation for key security monitoring assets.
  • Collaborate with the Security Architecture & Engineering lead to manage the process of gathering, analyzing, and assessing the current and future security threat landscape; provide IT Risk and Compliance with a realistic overview of security risks and threats in the enterprise environment.
  • Effectively manage a staff of information security professionals; provide leadership, support and development programs for team members.

Security Operations, Monitoring, and Reporting:

  • Lead the Security Operations team that is responsible for ongoing security activities and projects related to the detection, analysis, containment, and eradication of security threats, attacks, and system vulnerabilities that impact the availability, integrity, and confidentiality of Bank information.
  • Manage the operations of the Bank’s Identity and Access Management tools, controls, and monitoring processes to enforce least privileged access, role based security, and periodic entitlement validation.
  • Partner with the CISO, Technology Solutions and Services, and Enterprise Risk Management to develop, manage, and coordinate security incident management processes that include detection, response, and reporting, to protect corporate IT assets, including non-public information, intellectual property, fixed assets, and the company’s reputation.
  • Perform ongoing security monitoring and report on compliance with organizational security policies and standards and ensure compliance with applicable laws, regulations (e.g. the Sarbanes-Oxley Act), and policies to minimize or eliminate risk and audit findings.
  • Partner with IT Risk to complete periodic security risk assessments and initiate any corrective actions that are needed.
  • Lead the Information Security Incident Response process and team
  • Provide periodic security reporting to the Technology and Enterprise Risk Committees

Security Awareness

  • Create and maintain role-based security awareness training for high risk job functions
  • Develop and deliver security awareness training materials for Bank employees and contractors
  • Monitor and report on security awareness training compliance and program champions
  • Maintain relationships in the security technology industry to stay current on evolving technologies enabling effective and efficient solution delivery.



  • Bachelor’s degree in Computer Science or the equivalent work experience is required.
  • Eight years or more prior work experience as a manager of information or cyber security is required.
  • Must have a working knowledge of information management systems: networking, operating systems, database management systems, user identity and access control systems, firewalls and intrusion detection systems, and security monitoring and reporting systems.
  • Must have working knowledge of security vulnerability detection tools and processes
  • Must have working knowledge of incident response techniques and vulnerability remediation
  • Must have experience with operational security architecture design and management
  • Must have experience with common information security management frameworks.
  • Must have threat intelligence and analysis experience
  • Track record of planning and executing complex work efforts.
  • Strong interpersonal communication, analysis, and writing skills.
  • Strong leadership skills including ability to work effectively with business unit managers and IS engineering and IS operations staff and the ability to lead and develop talent in a matrixed reporting environment.


  • Experience in financial or banking services industry highly desirable.
  • Information security certifications, such as CISSP, CISM, or equivalent preferred. Information systems auditing certification such as CISA or GISA is highly desirable.
  • Prior management experience is preferred.
  • Experience developing and maintaining information security policies, standards, processes, guidelines, and procedures for financial services preferred.

SALARY RANGE: $250K – $265K

The Federal Home Loan Bank of San Francisco is an Equal Employment Opportunity employer and is committed to a diverse workforce. We value and actively seek to recruit, develop, and retain individuals with varied backgrounds and experiences reflecting the full diversity of the communities that we serve. It is the policy of the Bank to comply with all applicable laws concerning the employment of persons with disabilities.

How To Apply :

After reading and knowing the criteria and minimum qualification requirements that have been explained from the job info Information Security Operations & Awareness, MD in the office San Francisco, CA
(Financial District/South Beach area) above, then the jobseeker who feels that he has not met requirements include education, age, etc. and are really interested in the latest job vacancy Full-time above, it should be as soon as possible to complete and compile a job application file such as a job application letter, CV or curriculum vitae and transcripts and other complements as described above, in order to register and participate in the admission selection for new employees at the company in question, sent via the link below.

Other Information :

  • Country : US

To apply for this job please visit » Send Now