Senior Information Security Engineer

Introduction

Since 1973, East West Bank has served as a pathway to success. With over 120 locations across the U.S. and Asia, we are the premier financial bridge between the East and West. Our teams of experienced, multi-cultural professionals help guide businesses and community members on both sides of the Pacific looking to explore new markets and create new opportunities, and our sustained growth and expertise in industries like real estate, entertainment and media, private equity and venture capital, and high-tech help build sustainable businesses and expand our associates’ potential for career advancement. Headquartered in California, East West Bank (Nasdaq: EWBC) is a top performing commercial bank with an exclusive focus on the U.S. and Greater China markets. With a strong foundation, and enterprising spirit and a commitment to absolute integrity, East West Bank gives people the confidence to reach further.

Overview

The Information Security Engineer will participate in establishing and maintaining a corporate wide information security management program to ensure that information assets are adequately protected. We are seeking a highly skilled Cloud / Network, SIEM, and DLP Security Engineer to join our team. This role will be responsible for ensuring the security of our cloud infrastructure, managing our Security Information and Event Management (SIEM) systems, and implementing Data Loss Prevention (DLP) strategies.

Responsibilities

• Cloud/Network Security:
  • Implement and maintain security measures to protect cloud-based systems. Ensure compliance with security standards and best practices in cloud environments like AWS, Azure, or GCP.
  • Develop strategies and plans to achieve security requirements and address identified risks.
  • Evaluate and respond to alerts and events from security tools, including tuning configurations, developing event response documentation, and escalating as needed.
• SIEM Management:
  • Manage and monitor SIEM systems.
  • Engineer, build, and maintain logging infrastructure to support the SIEM and Security Operations team’s business.
• DLP Implementation:
  • Develop and implement DLP strategies to prevent unauthorized data access or data loss. Monitor and mange DLP systems to ensure data security.
  • Develop DLP rules to support a changing and growing environment.
  • Maintain DLP technology, configure policies, and compile reports for analytics.
  • Work with vendors to support DLP technology, including troubleshooting and upgrading.
• Risk Assessment:
  • Conduct regular risk assessments to identify potential threats and vulnerabilities. Develop strategies to mitigate these risks.
• Security Training:
  • Provide training and guidance to teams on cloud security, SIEM management, and DLP best practices
• Other:
  • Document security procedures and configurations. Maintain engineering and security documentation.
  • Design and implement security measures, policies, and procedures to protect systems and networks against unauthorized access, data
  • breaches, and other security incidents.
  • Collaborate with other IT teams to implement security controls and best practices.
  • Stay informed about the latest security threats and trends to proactively mitigate risks.
  • Collaboration and Communication: Work closely with development, operations, and other IT teams to promote a security-first culture.
  • Communicate security risks and recommendations effectively to technical and non-technical stakeholders.
  • Reporting: prepare regular reports on KRI and KPIs.

Qualifications

• Bachelor’s degree in Information Technology, Computer Science, or Cyber Security related field.
• Minimum of 5 years of security engineering experience with a passion for information security; technical certifications are a plus.
• In-depth knowledge of risk assessment methods and technologies.
• Proficient use of various tools and techniques including Cloud/container Security solution such as Prisma Cloud, Wiz, Lacework for Cloud, or InsightVM.
• Proficient use of Data Loss Prevention tools such as Digital Guardian, Forcepoint, or Netrwix data governance
• Proficient use of Security Information Event Management Solution (SIEM) such as Splunk, LogRhythm, InsightIDR.
• Automation experience, ability to script and optimize workflows.
• Hands-on experience with Linux.
• Documentation: ability to document processes, requirements, and changes.
• Excellent communication and interpersonal skills, with the ability to collaborate effectively with stakeholders at all levels of the organization.
• Strong analytical and problem-solving abilities, with a keen attention to detail and a commitment to excellence.
• Proven trustworthiness and history of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating well.
• Analytical and problem-solving mindset.
• Highly organized and efficient. Ability to work independently and as part of a team in a fast-paced, dynamic environment.

Preferred Certifications & Skills:Certification such as CCSP, CISSP, CEH, or CISAFamiliarity with cloud environments like AWS, Azure, or GCP.

Compensation

The base pay range for this position is USD $110,000.00/Yr. - USD $150,000.00/Yr. Exact offers will be determined based on job-related knowledge, skills, experience, and location.