Cathay Bank · 2 hours ago
AVP, Information Security Engineer
Rancho Cucamonga, CA
Full-time
Onsite
Mid, Senior Level
$100K/yr - $120K/yr
5+ years expCathay Bank is a financial institution that values its team members and fosters a supportive culture. The AVP, Information Security Engineer will be responsible for designing and implementing the Bank's Information Security infrastructure, conducting risk assessments, and managing security projects to protect the Bank's data and assets.
BankingFinanceFinancial Services
Responsibilities
Participate in Business and Information Technology projects to recommend security controls and solutions applicable. Provide recommendations for security infrastructure, developing security plans and standards
Manage trade-offs and determine cost-benefits between new tools to be implemented to the current security stack, and improve existing tools by reconfiguring, repurposing, or training. Identify and evaluate opportunities for process improvement
Maintain strong technical security skills that follow the current market trends to work on both cloud and on-prem based solutions
Serve as Subject Matter Expert (SME) across technical information security domains
Identify and assess vulnerabilities and risks to enterprise applications infrastructure and data. Develop and implement technical solutions to counter vulnerabilities and risks
Track current and emerging security threats, design and implement security solutions to mitigate them
Propose scope, design, and supervise the execution of the penetration test program to reach defined objectives
Review and propose improvements to email, endpoint and network security
Implement the enterprise data loss prevention program by identifying and proposing controls on data loss channels
Ensure that security systems and tools such as firewalls, web filtering, EDR, XDR, NAC for adequate coverage and periodically reassess configurations and security controls for improvements
Maintain information security systems and tools such as CASB, DLP, MDM and WAF and periodically review configurations
Establish, plan, and manage overall program and goals for the system security requirements and baseline configurations
Participate in efforts to remediate audit and regulatory findings and recommendations related to Information Security
Define and implement solutions to meet compliance requirements, including but not limited to: Sarbanes-Oxley, Payment card industry standards, and state and federal regulations
Qualification
Required
College degree in Information Technology or Information Security or equivalent
Requires one or more of the following certifications CISSP, CISM, CRISC, CISA, Security+, EnCE, CEH, OSCP, GIAC
5+ years experience in Information Security Operations or Information Security Risk Management, preferably in the financial services industry
3+ years experience in Security Engineering or Security Architecture role operating and/or implementing SIEM, EDR/XDR, NAC, IDS/IPS, WAF, IAM, FW, AD, EntraID and AVs
Proven experience in securing and implementing policies for Cloud Technologies (M365, Azure, AWS) and the Microsoft (E5) technology stack including Microsoft Defender, Microsoft Intune or similar
Experience defining and/or reviewing firewall rules and IDS/IPS topology and configurations
Experience in defining or participating in penetration tests and/or attack simulation exercises and implementing remediation plans
Strong understanding of networking, communication, and secure email protocols (TCP/IP, UDP, SSL/TLS, IPSEC, SPF, DKIM, DMARC, DNSSEC, etc.)
Proven ability to initiate and manage projects
Self-starter, highly motivated, and able to work with general supervision
Strong documentation skills to include presentations to technical audiences and to business-driven departments
Strong interpersonal communication and collaboration skills
Must be available to respond to emergencies in support of incident investigations carried out by the Security Operations team, or for troubleshooting security tools
Combination of strong troubleshooting, technical and communication skills
Preferred
Splunk and Microsoft certifications preferred
Experience configuring and managing a Security Information and Event Management (SIEM) platform is highly preferred
Governance or oversight of a third-party risk management program experience preferred
Experience implementing tools and policies for Data Loss Prevention, Cloud Access Security Broker (CASB) and Insider Threat Management tools preferred
Experience with Secure Development Life Cycle (SDLC) practices and application security testing, including implementation and use of static and dynamic application security testing platforms preferred
Experience performing and assessing the effectiveness of vulnerability management program and performing security assessments of internal and external systems based on industry standards preferred
Benefits
Medical insurance
Dental insurance
Vision insurance
Life insurance
Long-term disability insurance
Flexible spending accounts (FSAs)
Health saving account (HSA) with company contributions
Voluntary coverages
401(k)
Company
Cathay Bank
Cathay Bank is a financial services company originally founded to support Los Angeles’ growing Chinese American community. It is a sub-organization of Cathay General Bancorp.
1001-5000 employees
H1B Sponsorship
Cathay Bank has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2020 (1)
Funding
Current Stage
Late StageLeadership Team
Chang Liu
President & Chief Operating Officer
Bob Romero
SVP/CIO
Recent News
Morningstar.com
2025-11-10
The Real Deal
2025-10-26
Company data provided by crunchbase