James Kim: AVP, Information Security Engineer II in Los Angeles, CA

• Manage, maintain, monitor, respond, and handle incidents/alerts from security tools including SIEM, IPS/IDS, Firewall, Email Filtering, Antivirus, and Endpoint Protection solutions. • Work closely with and with guidance from Information Security Officer to create policies and procedures for incident handling • Migrate email filtering system; create and manage new policies to reduce exposure and risk of malware and phishing attacks. Also manage and implement DLP rules to prevent sensitive data loss through email • Manage Proof of Concepts and implementations of security applications and tools; also assisted Team Lead with larger projects, POC's, and implementations • Assist in risk management processes for audit and Federal Regulators

• Contribute to incident response and incident handling by monitoring and responding to incidents/alerts from security tools including SIEM, Firewall, Email Filtering, Antivirus, and Endpoint Protection solutions • Implement and manage internet browsing sandbox solution to reduce overhead of remediating malware infections on endpoints • Integrate cloud file sharing solution with cloud based DLP to mitigate risk of sensitive data loss (NPI, PCI, PII) • Manage security policies for cloud file sharing solution • Re-architect AV solution to improve bandwidth bottlenecks at remote locations to ensure deployment of automated software and definition updates • Manage certificates for all servers and domains • Participate and assist to create guidelines for Business Continuity Plans and Disaster Recovery tests • Research and recommend new security technologies by actively engaging with providers and conducting proof of concepts

• Lead Identity and Access Management team; conduct weekly meetings and monitor progress of projects and day to day activities • Implement Single-Sign On solution; decreased overall ticket counts by 30% with the initiation and implementation SSO • Complete six (6) application integrations with single sign on solution • Implement two factor authentication for users with remote access • Implement additional access controls to further strengthen password complexity parameters for network user authentication on Active Directory and manage privileged accounts as guided by MSB • Research and remediate excessive access to file shares; restructure and redesign blanket access to file shares to comply with SOX and NSA audit requirements • Discover weaknesses in user access provisioning within security policies and restructure permissions and access controls according to recommendations as provided by regulators for all critical banking applications and Active Directory • Acquisition of Foster Bank (IL) in August 2013; Managed user access provisioning of 50+ applications for 300 end users

• Provide remote assistance to 50+ branch locations and 1000 users across the United States • Improve response time of support requests by up to 50%; Effectively completed and closed on average 400 tickets on a monthly basis • Provision, maintain, monitor, and periodically audit access to the network and across all 60+ operational and core banking applications to comply with SOX audits and regulators • Initiate and redesign HR onboarding process and procedures to create a more effective method of onboarding for both IT and HR • Manage and maintain Active Directory; Performed cleanup of OU’s and group memberships • Manage, maintain, create and redesign Group Policy Objects • Acquisition of Pacific International Bank (WA) in February 2013; Managed user access provisioning of 50+ applications for 200 end users

• Actively engage in duties of Desktop Manager and Applications Manager; ensure end to end user satisfaction between IT and the organization as a whole and maintain data confidentiality, integrity, and availability of critical business applications. • Manage and delegate assignments to team to ensure efficiency and efficacy of day to day operations. • Security administration of FISERV/ITI system; Provision and manage user access to all core banking applications including Active Directory • Project management of CRM and document imaging solutions • Assist in implementation of RFID key fob entry system at HQ and remote locations • Improve integration of critical transactional banking applications by collaborating with BSA, Wire, and Operations Admin Departments • Assist in management and design of responses to audit reviews conducted by KPMG, FDIC, and Internal Audit Departments

• Actively manage, maintain, monitor, and provision access to core banking applications • Monitor data feeds for core system on daily basis prior to business open and after closing to ensure integrity of data flow with FISERV/ITI • Initiate and manage POC’s and implementations of solutions to increase productivity and efficiency of a variety of business units • Manage software inventory and software purchases; initiated overhaul of out of date banking and operational software • Manage and coordinate migration of critical transaction capable applications • Assist in management of audit reviews conducted by KPMG, FDIC, and Internal Audit Department • Support application and system conversion during M&A of Chun Ha Insurance in 2007

• Effectively provide remote and on-site support for 27 branch locations across California for 650+ employees • Document and develop processes for hardware inventory management; initiated replacement of outdated hardware equipment • Manage IT Purchasing and ensure integrity of IT General Ledgers by collaborating with Accounting and A/P Departments • Manage OS conversion to Windows XP for 700 endpoints from a mixed Windows environment (Windows 95,98, 2000, and NT) • Gather and prepare documentation for auditors (internal, KPMG, Federal Regulators) to assist IT manager and • Heavily assist in hardware and application conversions during M&A of Pacific Union Bank in 2004