FIND_THE_RIGHTJOB.

Temp-Senior Information Security Engineer

Dallas, United States

Introduction:

Since 1973, East West Bank has served as a pathway to success. With over 110 locations across the U.S. and Asia, we are the premier financial bridge between the East and West. Our teams of experienced, multi-cultural professionals help guide businesses and community members on both sides of the Pacific looking to explore new markets and create new opportunities, and our sustained growth and expertise in industries like real estate, entertainment and media, private equity and venture capital, and high-tech help build sustainable businesses and expand our associates’ potential for career advancement.

Headquartered in California, East West Bank (Nasdaq: EWBC) is a top-performing commercial bank with a strong foundation, an enterprising spirit and a commitment to absolute integrity. East West Bank gives people the confidence to reach further.

Overview:

The Information Security Principal Engineer possesses a strong technical background and understands risk, mitigation, and technical controls. This role will participate in establishing and maintaining a corporate wide information security management program to ensure that information assets are adequately protected. As an East West Bank employee, the information security principal engineer will be part of a growing and stable organization that provides career path development opportunities while serving a growing and profitable market. This position will lead the team to enhance and mature the security program.

Responsibilities:

Leads security-related projects from inception to successful completion and is capable of effectively coaching technology staff on appropriate security protocols and needs as they implement new technology into the organization.
Analyzes technologies and establishes highly effective processes and protocols to ensure comprehensive protection exists to prevent unauthorized entry into the company networks and systems.
Supports automation and orchestration to maximize team talent and reduce routine tasks.
Actively recruits and leads by example to create a culture where employees want to work.
Mentors security team and places a heavy emphasis on employee retention – people, first.
Develops IT security programs and recommends necessary changes to the information security team to ensure the company’s systems are fully compliant with all applicable regulatory requirements and privacy laws.
Provides periodic training to company employees on information security topics.
Support regulatory reviews, assessments as well and monitor and lead reporting and remediating identified control and regulatory issues
Help develop and maintain the bank’s IT Information Security Roadmap and project plan;
Develop, maintain, and participate in the bank’s IT and Enterprise Risk Departments’ governance committees
Identifies Information Security and risk strategies, goals, objectives, and metrics that are consistent with the strategic plan
Participates in recommending yearly budget for approval, and prudently manage resources within those budget guidelines. Works with other executives to prioritize security initiatives and spending based on appropriate risk management and/or financial methodology
Effectively manages the human resources of the organization according to authorized personnel policies and procedures that fully conform to current laws and regulations. Ensure staffing levels remain appropriate for the level of work and that staff have the necessary technical and professional skills and training to perform their job
Maintains relationships with Internal Audit, Senior Management, and related internal stakeholders. Ensures strong inter- and intra-departmental collaboration for the achievement of organizational goals
Maintains relationships with local, state and federal law enforcement and other related government agencies
Develop and implement a comprehensive security awareness and training program within the department and IT as well as for all business units, enterprise wide
Provides employees timely, candid and constructive feedback; assisting in the development of employees to their full potential and provides challenging opportunities that enhance employee career growth; recognize and reward employees for accomplishments. Assist in the development of appropriate talent pool to ensure adequate bench strength and succession planning
Architect and design solutions to implement security controls in order to mitigate risk
Review prosed project plan to assess the risk and involvement needed from the team.
Make security recommendations after reviewing architecture and design documentation for new projects and initiatives
This position will also require the candidate to be hands on and help engineering team with projects and initiatives
This position will manage a portion of the department function with a team ranging in levels from clerical to Vice President

Qualifications:

Experience with IDS/IPS/SIEM and related security tools and technologies such as Splunk, Splunk ES, DLP.
Experience with Vulnerability Management and network scanners.
Familiarity with Office 365 and Microsoft Windows operating systems and a wide range of security technologies, such as network security appliances, identity and access management systems, anti- malware solutions, automated policy compliance, logging and filtering tools, and desktop security solutions.
Knowledge of network infrastructure, including routers, switches, firewalls and associated network protocols and concepts.
Familiarity with router and firewall operations and maintenance.
Ability to interact with personnel at all levels and across all business units / organizations, and to understand business imperatives.
Understanding of core internet protocols (e.g., TCP/IP, DNS, SMTP, HTTP, etc.)
Experience working with security tools such as SIEM, vulnerability scanning, laptop data encryption, endpoint data protection, Data Loss Prevention and Classification, application pen testing, WAFs.
Experience with Linux is a plus
An undergraduate degree is required, preferably engineering related.

Additional Qualifications

Proven trustworthiness and history of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating well.
Analytical and problem-solving mindset.
Highly organized and efficient.

Education Requirements

Bachelor's degree in Computer Science or related field required, advanced degree (Masters level) preferred

Experience Requirements

Preferably 10+ years of technical hands-on security experience, technical proficiency in IT, Risk, Compliance, Information Security
Demonstrates a high level of flexibility.

Certification Requirements

Preferable, but not required: CISSP, CISA, CISM, CRISC, or related

Compensation: The base pay range for this position is USD $79,000.00/Yr. - USD $150,000.00/Yr. Exact offers will be determined based on job-related knowledge, skills, experience, and location.

Similar jobs