Information Security Analyst

People Drive Our Success


Are you enthusiastic, highly motivated, and have a strong work ethic? If yes, come join our team! At Cathay Bank – we strive to provide a caring culture that supports your aspirations and success. We believe people are our most valuable asset and we proudly foster growth and development empowering you to achieve your professional goals. We have thrived for 60 years and persevered through many economic cycles due to our team members’ drive and optimism. Together we can make a difference in the financial future of our communities.


Apply today!


What our team members are saying:


Video Clip 1

Video Clip 2

Video Clip 3


Learn more about us at cathaybank.com


GENERAL SUMMARY

This position is responsible for ensuring that the Bank’s Security operations and preventive controls are managed and maintained in accordance with established Information Security policies, standards and procedures, published regulations and industry best practices.
Primarily responsible for the constant review of vendor security controls in comparison with policies and industry frameworks, risk assessments, determination of control gaps and their remediation.

ESSENTIAL FUNCTIONS
• Performs vendor security risk assessments to determine inherent risk on proposed projects and assesses vendor security controls to determine residual risk.
• Evaluates the potential exposure to application security risks and threats based on industry security frameworks and recommends appropriate mitigation.
• Periodically assesses the information security controls design and execution applied by vendors for completeness and efficacy.
• Assesses vendor security practices including Information Security governance, Identity and access control, Incident monitoring and response, Vulnerability assessment and Penetration tests, Network Security and Endpoint Security, among others.
• Acts as liaison with Third Party Risk Management, Information Technology and business department Relationship Managers related to vendor risk assessments.
• Remediate audit and regulatory findings and recommendations related to Information Security and Vendor Risk Management.
• Participates in the implementation of Endpoint and Network Security solutions and monitors their correct usage.
• Supports the execution of Penetration tests, contacts the appropriate parties and arranges the information and resources needed.
• Supports the review of security baselines and ensures their implementation in network devices and endpoints.
• Supports the review of vulnerability management metrics and proposes improvements to the control process.

QUALIFICATIONS
Education:
• College degree in Information Technology or Information Security or equivalent.
• Security+, SSCP, CISSP, CISM or similar information security certifications preferred.

Experience:
• Minimum 3 years of experience in Information Security Risk, Information Security Operations or Security Auditing.
• Proven experience on third-party risk management and vendor security assessments.
• Proven experience operating and/or implementing SIEM, EDR/XDR, NAC, IDS/IPS, WAF, IAM, FW, AD, EntraID and AVs.
• Experience in securing and implementing policies for Cloud Technologies (M365, Azure, AWS) and the Microsoft (E5) technology stack including Microsoft Defender, Microsoft Intune or similar preferred.
• Experience working with Vendor Risk Management (VRM) applications preferred.
• Working knowledge of other security practices in the Endpoint Security, Network Security, Security Operations and Security Governance areas required.
Skills/Ability:
• Proven ability to initiate and manage projects.
• Excellent communication and problem-solving skills.
• Strong inter-personal communication and collaboration skills.
• Self-starter, highly motivated, and able to work with general supervision.

OTHER DETAILS

$29.33 – $42.07 / hour
Pay determined based on job-related knowledge, skills, experience, and location.
This position may be eligible for a discretionary bonus.


Cathay Bank offers its full-time employees a competitive benefits package which is a significant part of their total compensation. It is our goal to provide employees with a comprehensive benefits package to fit their needs which includes, coverage for medical insurance, dental insurance, vision insurance, life insurance, long-term disability insurance, and flexible spending accounts (FSAs), health saving account (HSA) with company contributions, voluntary coverages, and 401(k).

Cathay Bank may collect personal information from potential job candidates and applicants. For more information on how we handle personal information and your applicable rights, please review our Privacy Policy.

Cathay Bank is an Equal Opportunity and Affirmative Action Employer. We welcome applications for employment from all qualified candidates, regardless of race, color, ethnicity, ancestry, citizenship, gender, national origin, religion, age, sex (including pregnancy and related medical conditions, childbirth and breastfeeding), reproductive health decision-making, sexual orientation, gender identity and expression, genetic information or characteristics, disability or medical condition, military status or status as a protected veteran, or any other status protected by applicable law.

Click here to view the “Know Your Rights: Workplace Discrimination is Illegal” Poster:
Poster- English
Poster- Spanish
Poster- Chinese Traditional
Poster- Chinese Simplified


Cathay Bank endeavors to make www.CathayBank.comaccessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact, Mickey Hsu, FVP, Employee Relations Manager, at (626) 582-7370 or mickey.hsu@cathaybank.com. This contact information is for accommodation requests only and cannot be used to inquire about the status of applications.