Find AVP, Information Security Engineer Job in Rancho Cucamonga, Capellen | Snaprecruit

Find AVP, Information Job in Rancho Cucamonga, Capellen
image
  • Snapboard
  • Activity
  • Reports
  • Campaign
Welcome ,

AVP, Information Security Engineer

  • ... Rancho Cucamonga, Capellen, United States
  • ... Full time
  • ... Salary: 130000 per year
  • Posted on: Feb 29, 2024       Expires on: Apr 14, 2024

AVP, Information Security Engineer   

JOB TITLE:

AVP, Information Security Engineer

JOB TYPE:

Full-time

JOB LOCATION:

Rancho Cucamonga Capellen United States

JOB DESCRIPTION:

People Drive Our Success

Are you enthusiastic, highly motivated, and have a strong work ethic? If yes, come join our team! At Cathay Bank we strive to provide a caring culture that supports your aspirations and success.
We believe people are our most valuable asset and we proudly foster growth and development empowering you to achieve your professional goals.
We have thrived for 60 years and persevered through many economic cycles due to our team members drive and optimism.
Together we can make a difference in the financial future of our communities.


Apply today!

What our team members are saying:
Video Clip 1

Video Clip 2

Video Clip 3

Learn more about us at cathaybank.
com

GENERAL SUMMARY
This position is responsible for designing, implementing, and supporting the Banks Information Security infrastructure and protecting its data and assets in accordance with established Information Security and Bank policies, published regulations and industry best practices.

Responsibilities include performing risk assessments of the banks network, applications, and endpoint activity, and manage security projects to implement security controls or tools to mitigate cyber risk, ensuring that the Banks network and data are secure in accordance with Bank, IT, and IS Policies.


ESSENTIAL FUNCTIONS

Core areas of responsibility include:

  • Participate in Business and Information Technology projects to recommend security controls and solutions applicable.
    Provide recommendations for security infrastructure, developing security plans and standards.
  • Manage trade-offs and determine cost-benefits between new tools to be implemented to the current security stack, and improve existing tools by reconfiguring, repurposing, or training.
    Identify and evaluate opportunities for process improvement.
  • Maintain strong technical security skills that follow the current market trends to work on both cloud and on-prem based solutions.
  • Serve as Subject Matter Expert (SME) across technical information security domains.
  • Identify and assess vulnerabilities and risks to enterprise applications infrastructure and data.
    Develop and implement technical solutions to counter vulnerabilities and risks.
  • Track current and emerging security threats, design and implement security solutions to mitigate them.
  • Implement the enterprise data loss prevention program by identifying and proposing controls on data loss channels.
  • Review and improve the Insider Threat Management program, determining data protection needs and implementing technical security controls.
  • Ensure that security systems and tools such as firewalls, web filtering, EDR, XDR, NAC for adequate coverage and periodically reassess configurations and security controls for improvements.
  • Maintain information security systems and tools such as, CASB, DLP, MDM and WAF and periodically review configurations.
  • Establish, plan, and manage overall program and goals for the system security requirements and baseline configurations.
  • Participate in efforts to remediate audit and regulatory findings and recommendations related to Information Security.
  • Define and implement solutions to meet compliance requirements, including but not limited to: Sarbanes-Oxley, Payment card industry standards, and state and federal regulations.

REQUIRED QUALIFICATIONS
Education: College degree in Information Technology or Information Security or equivalent
Certification: Requires one or more of the following certifications CISSP, CISM, CRISC, CISA, Security+, EnCE, CEH, OSCP, GIAC.
Splunk and Microsoft certifications preferred.


Experience:

  • 5+ years experience in Information Security Operations or Information Security Risk Management, preferably in the financial services industry.
  • 3+ years experience in a Security Engineering or Security Architecture role operating and/or implementing SIEM, EDR/XDR, NAC, IDS/IPS, WAF, IAM, FW, AD, EntraID and AVs.
  • Proven experience in securing and implementing policies for Cloud Technologies (M365, Azure, AWS) and the Microsoft (E5) technology stack including Microsoft Defender, Microsoft Intune or similar.
  • Proven experience implementing tools and policies for Data Loss Prevention, Cloud Access Security Broker (CASB) and Insider Threat Management tools.
  • Experience defining and reviewing firewall and IDS/IPS topology and configurations.
  • Strong understanding of networking, communication, and secure email protocols (TCP/IP, UDP, SSL/TLS, IPSEC, SPF, DKIM, DMARC, DNSSEC, etc)
  • Experience configuring and managing a Security Information and Event Management (SIEM) platform highly preferred.
  • Governance or oversight of a third-party risk management program experience preferred.
  • Participation in penetration tests and/or attack simulation exercises preferred.
  • Experience with Secure Development Life Cycle (SDLC) practices and application security testing, including implementation and use of static and dynamic application security testing platforms preferred.
  • Experience performing and assessing the effectiveness of vulnerability management program and performing security assessments of internal and external systems based on industry standards preferred.
Skills/Ability:
  • Proven ability to initiate and manage projects.
  • Self-starter, highly motivated, and able to work with general supervision.
  • Strong documentation skills including presentations to technical audiences and to business-driven departments.
  • Strong interpersonal communication and collaboration skills.
  • Must be available to respond to emergencies in support of incident investigations performed by the Security Operations team, or for troubleshooting of security tools.
  • Combination of strong troubleshooting, technical and communication skills.

OTHER DETAILS

$110K $130K / year
Pay determined based on job-related knowledge, skills, experience, and location.


Cathay Bank offers its full-time employees a competitive benefits package which is a significant part of their total compensation.
It is our goal to provide employees with a comprehensive benefits package to fit their needs which includes, coverage for medical insurance, dental insurance, vision insurance, life insurance, long-term disability insurance, and flexible spending accounts (FSAs), health saving account (HSA) with company contributions, voluntary coverages, and 401(k).


Cathay Bank may collect personal information from potential job candidates and applicants.
For more information on how we handle personal information and your applicable rights, please review our Privacy Policy.


Cathay Bank is an Equal Opportunity and Affirmative Action Employer.
We believe in diversity, equity, and inclusion in the workplace.
We welcome applications for employment from all qualified candidates, regardless of race, color, ethnicity, ancestry, citizenship, gender, national origin, religion, age, sex (including pregnancy and related medical conditions, childbirth and breastfeeding), reproductive health decision-making, sexual orientation, gender identity and expression, genetic information or characteristics, disability or medical condition, military status or status as a protected veteran, or any other status protected by applicable law.


Click here to view the EEO is the Law poster in English.
Poster- English
Click here to view the EEO is the Law supplement in English.
Supplement- English

Clic aqu para ver la EEO es la Ley pster en espaol.
Poster- Spanish
Clic aqu para ver la EEO es la Ley suplemento en espaol.
Supplement- Spanish

EEOPoster- Chinese
EEO\"Supplement- Chinese

Cathay Bank endeavors to make www.
CathayBank.
com accessible to any and all users.
If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact, Mickey Hsu, FVP, Employee Relations Manager, at (626) 582-7370 or mickey.
hsu@cathaybank.
com.
This contact information is for accommodation requests only and cannot be used to inquire about the status of applications.

Position Details

POSTED:

Feb 29, 2024

EMPLOYMENT:

Full-time

SALARY:

130000 per year

SNAPRECRUIT ID:

S-1709846169-44ec6d6d820c69fbc7e16b7bf0657b23

LOCATION:

Capellen United States

CITY:

Rancho Cucamonga

Job Origin:

jpick2

Jobcon Logo
A job sourcing event
In Dallas Fort Worth
Aug 19, 2017 9am-6pm
All job seekers welcome!

Similar Jobs

AVP, Information Security Engineer    Apply

Click on the below icons to share this job to Linkedin, Twitter!

People Drive Our Success

Are you enthusiastic, highly motivated, and have a strong work ethic? If yes, come join our team! At Cathay Bank we strive to provide a caring culture that supports your aspirations and success. We believe people are our most valuable asset and we proudly foster growth and development empowering you to achieve your professional goals. We have thrived for 60 years and persevered through many economic cycles due to our team members drive and optimism. Together we can make a difference in the financial future of our communities.

Apply today!

What our team members are saying:
Video Clip 1

Video Clip 2

Video Clip 3

Learn more about us at cathaybank.com

GENERAL SUMMARY
This position is responsible for designing, implementing, and supporting the Banks Information Security infrastructure and protecting its data and assets in accordance with established Information Security and Bank policies, published regulations and industry best practices.
Responsibilities include performing risk assessments of the banks network, applications, and endpoint activity, and manage security projects to implement security controls or tools to mitigate cyber risk, ensuring that the Banks network and data are secure in accordance with Bank, IT, and IS Policies.

ESSENTIAL FUNCTIONS

Core areas of responsibility include:

  • Participate in Business and Information Technology projects to recommend security controls and solutions applicable. Provide recommendations for security infrastructure, developing security plans and standards.
  • Manage trade-offs and determine cost-benefits between new tools to be implemented to the current security stack, and improve existing tools by reconfiguring, repurposing, or training. Identify and evaluate opportunities for process improvement.
  • Maintain strong technical security skills that follow the current market trends to work on both cloud and on-prem based solutions.
  • Serve as Subject Matter Expert (SME) across technical information security domains.
  • Identify and assess vulnerabilities and risks to enterprise applications infrastructure and data. Develop and implement technical solutions to counter vulnerabilities and risks.
  • Track current and emerging security threats, design and implement security solutions to mitigate them.
  • Implement the enterprise data loss prevention program by identifying and proposing controls on data loss channels.
  • Review and improve the Insider Threat Management program, determining data protection needs and implementing technical security controls.
  • Ensure that security systems and tools such as firewalls, web filtering, EDR, XDR, NAC for adequate coverage and periodically reassess configurations and security controls for improvements.
  • Maintain information security systems and tools such as, CASB, DLP, MDM and WAF and periodically review configurations.
  • Establish, plan, and manage overall program and goals for the system security requirements and baseline configurations.
  • Participate in efforts to remediate audit and regulatory findings and recommendations related to Information Security.
  • Define and implement solutions to meet compliance requirements, including but not limited to: Sarbanes-Oxley, Payment card industry standards, and state and federal regulations.

REQUIRED QUALIFICATIONS
Education: College degree in Information Technology or Information Security or equivalent
Certification: Requires one or more of the following certifications CISSP, CISM, CRISC, CISA, Security+, EnCE, CEH, OSCP, GIAC. Splunk and Microsoft certifications preferred.

Experience:

  • 5+ years experience in Information Security Operations or Information Security Risk Management, preferably in the financial services industry.
  • 3+ years experience in a Security Engineering or Security Architecture role operating and/or implementing SIEM, EDR/XDR, NAC, IDS/IPS, WAF, IAM, FW, AD, EntraID and AVs.
  • Proven experience in securing and implementing policies for Cloud Technologies (M365, Azure, AWS) and the Microsoft (E5) technology stack including Microsoft Defender, Microsoft Intune or similar.
  • Proven experience implementing tools and policies for Data Loss Prevention, Cloud Access Security Broker (CASB) and Insider Threat Management tools.
  • Experience defining and reviewing firewall and IDS/IPS topology and configurations.
  • Strong understanding of networking, communication, and secure email protocols (TCP/IP, UDP, SSL/TLS, IPSEC, SPF, DKIM, DMARC, DNSSEC, etc)
  • Experience configuring and managing a Security Information and Event Management (SIEM) platform highly preferred.
  • Governance or oversight of a third-party risk management program experience preferred.
  • Participation in penetration tests and/or attack simulation exercises preferred.
  • Experience with Secure Development Life Cycle (SDLC) practices and application security testing, including implementation and use of static and dynamic application security testing platforms preferred.
  • Experience performing and assessing the effectiveness of vulnerability management program and performing security assessments of internal and external systems based on industry standards preferred.
Skills/Ability:
  • Proven ability to initiate and manage projects.
  • Self-starter, highly motivated, and able to work with general supervision.
  • Strong documentation skills including presentations to technical audiences and to business-driven departments.
  • Strong interpersonal communication and collaboration skills.
  • Must be available to respond to emergencies in support of incident investigations performed by the Security Operations team, or for troubleshooting of security tools.
  • Combination of strong troubleshooting, technical and communication skills.

OTHER DETAILS

$110K $130K / year
Pay determined based on job-related knowledge, skills, experience, and location.

Cathay Bank offers its full-time employees a competitive benefits package which is a significant part of their total compensation. It is our goal to provide employees with a comprehensive benefits package to fit their needs which includes, coverage for medical insurance, dental insurance, vision insurance, life insurance, long-term disability insurance, and flexible spending accounts (FSAs), health saving account (HSA) with company contributions, voluntary coverages, and 401(k).

Cathay Bank may collect personal information from potential job candidates and applicants. For more information on how we handle personal information and your applicable rights, please review our Privacy Policy.

Cathay Bank is an Equal Opportunity and Affirmative Action Employer. We believe in diversity, equity, and inclusion in the workplace. We welcome applications for employment from all qualified candidates, regardless of race, color, ethnicity, ancestry, citizenship, gender, national origin, religion, age, sex (including pregnancy and related medical conditions, childbirth and breastfeeding), reproductive health decision-making, sexual orientation, gender identity and expression, genetic information or characteristics, disability or medical condition, military status or status as a protected veteran, or any other status protected by applicable law.

Click here to view the EEO is the Law poster in English. Poster- English
Click here to view the EEO is the Law supplement in English.Supplement- English

Clic aqu para ver la EEO es la Ley pster en espaol. Poster- Spanish
Clic aqu para ver la EEO es la Ley suplemento en espaol.Supplement- Spanish

EEOPoster- Chinese
EEO\"Supplement- Chinese

Cathay Bank endeavors to make www.CathayBank.com accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact, Mickey Hsu, FVP, Employee Relations Manager, at (626) 582-7370 or mickey.hsu@cathaybank.com. This contact information is for accommodation requests only and cannot be used to inquire about the status of applications.

Loading
Please wait..!!