Since 1973, East West Bank has served as a pathway to success. With over 120 locations across the U.S. and Asia, we are the premier financial bridge between the East and West. Our teams of experienced, multi-cultural professionals help guide businesses and community members on both sides of the Pacific looking to explore new markets and create new opportunities, and our sustained growth and expertise in industries like real estate, entertainment and media, private equity and venture capital, and high-tech help build sustainable businesses and expand our associates’ potential for career advancement.
Headquartered in California, East West Bank (Nasdaq: EWBC) is a top performing commercial bank with an exclusive focus on the U.S. and Greater China markets. With a strong foundation, and enterprising spirit and a commitment to absolute integrity, East West Bank gives people the confidence to reach further.
The Information Security Engineer will participate in establishing and maintaining a corporate wide information security management program to ensure that information assets are adequately protected. We are seeking a highly skilled Cloud / Network, SIEM, and DLP Security Engineer to join our team. This role will be responsible for ensuring the security of our cloud infrastructure, managing our Security Information and Event Management (SIEM) systems, and implementing Data Loss Prevention (DLP) strategies.
Responsibilities Cloud/Network Security:Implement and maintain security measures to protect cloud-based systems. Ensure compliance with security standards and best practices in cloud environments like AWS, Azure, or GCP.Develop strategies and plans to achieve security requirements and address identified risks.Evaluate and respond to alerts and events from security tools, including tuning configurations, developing event response documentation, and escalating as needed.SIEM Management:
Manage and monitor SIEM systems.Engineer, build, and maintain logging infrastructure to support the SIEM and Security Operations team’s business.DLP Implementation:
Develop and implement DLP strategies to prevent unauthorized data access or data loss. Monitor and mange DLP systems to ensure data security.Develop DLP rules to support a changing and growing environment.Maintain DLP technology, configure policies, and compile reports for analytics.Work with vendors to support DLP technology, including troubleshooting and upgrading.Risk Assessment:
Conduct regular risk assessments to identify potential threats and vulnerabilities. Develop strategies to mitigate these risks.Security Training:
Provide training and guidance to teams on cloud security, SIEM management, and DLP best practicesOther:
Document security procedures and configurations. Maintain engineering and security documentation.Design and implement security measures, policies, and procedures to protect systems and networks against unauthorized access, data breaches, and other security incidents.Collaborate with other IT teams to implement security controls and best practices.Stay informed about the latest security threats and trends to proactively mitigate risks.Collaboration and Communication: Work closely with development, operations, and other IT teams to promote a security-first culture. Communicate security risks and recommendations effectively to technical and non-technical stakeholders.Reporting: prepare regular reports on KRI and KPIs. Qualifications Bachelor’s degree in Information Technology, Computer Science, or Cyber Security related field.Minimum of 5 years of security engineering experience with a passion for information security; technical certifications are a plus.In-depth knowledge of risk assessment methods and technologies.Proficient use of various tools and techniques including Cloud/container Security solution such as Prisma Cloud, Wiz, Lacework for Cloud, or InsightVM.Proficient use of Data Loss Prevention tools such as Digital Guardian, Forcepoint, or Netrwix data governanceProficient use of Security Information Event Management Solution (SIEM) such as Splunk, LogRhythm, InsightIDR.Automation experience, ability to script and optimize workflows.Hands-on experience with Linux.Documentation: ability to document processes, requirements, and changes.Excellent communication and interpersonal skills, with the ability to collaborate effectively with stakeholders at all levels of the organization.Strong analytical and problem-solving abilities, with a keen attention to detail and a commitment to excellence.Proven trustworthiness and history of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating well.Analytical and problem-solving mindset.Highly organized and efficient. Ability to work independently and as part of a team in a fast-paced, dynamic environment.
Preferred Certifications & Skills:
Certification such as CCSP, CISSP, CEH, or CISA
Familiarity with cloud environments like AWS, Azure, or GCP.
East West Bank is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other legally protected status. Reasonable accommodations for disability are provided to applicants and employees in accordance with applicable law. Application FAQs
Software Powered by iCIMS
www.icims.com