Information Security Analyst
Rancho Cucamonga, CA, USA
Req #2252
Tuesday, May 14, 2024
GENERAL SUMMARY
This position is responsible for ensuring that the Bank's security operations is managed and maintained in accordance with established Information Security policies, published regulations and industry best practices.
Primarily responsible for the administration, operations and maintenance of the Security Information and Event Management (SIEM) solution and other security tools.
This position supports incident response activities and log data analysis to secure the information and systems, including but not limited to : Microsoft Windows Active Directory, financial business applications, network and communications security monitoring, endpoint security tools and data loss prevention tools.
ESSENTIAL FUNCTIONS
- Tunes SIEM and other security tools to reduce false positives. Assesses and addresses current gaps. Identifies improvements and creates plans towards maturity.
- Administers configuration of SIEM and other security tools as required by the Security Operation Center.
- Adapts and develops new analysis in response to emerging threats and intelligences.
- Supports incident response activities. Analyzes security events, incidents, log data analysis to secure the information and systems, including but not limited to : Microsoft Windows Active Directory, financial business applications, network and communications security monitoring, endpoint security tools and data loss prevention tools.
- Ensures compliance with published baseline configuration standards and recommends enhancements as required.
- Ensures the appropriate installation, maintenance, and monitoring of approved rules for preventive security solutions including antimalware, security gateways, firewalls and SIEM solutions.
- Assists in security assessment and vulnerability assessment remediation efforts. Participates in developing corrective actions based on the assessment's findings and identified vulnerabilities.
- Works closely with vendors to troubleshoot and to enhance the current security toolsets to their optimal potential.
- Gathers performance and compliance data / metrics from IS and IT sources.
- Interacts with managed security services operations.
QUALIFICATIONS
- Education :
- BS / MS in Information Technology or Business Administration preferred, or equivalent business experience.
- Information Security and SIEM-related training required. Security+, SSCP or CISSP certifications preferred.
- Experience :
- 3+ years' experience in a Security Operations team.
- 2+ years' experience with Security Information and Event Management (SIEM) solutions.
- Working knowledge on operating and monitoring network and endpoint security solutions.
- Understanding of industry security frameworks such as NIST CSF, CIS and OWASP.
- Experience with Threat Intelligence platforms and Cloud Security tools preferred.
- Experience with Regex and custom scripting preferred.
- Experience with SIEM administration, configuration, tuning preferred.
- Skills / Ability :
- Excellent communication and problem-solving skills.
- Strong Inter-personal communication and collaboration skills.
- Self-starter and open for learning opportunities.
- Ability to train and mentor colleagues with less experience.
OTHER DETAILS
$26.44 - $40.86 / hour
Please ensure you read the below overview and requirements for this employment opportunity completely.
Pay determined based on job-related knowledge, skills, experience, and location.
Cathay Bank offers its full-time employees a competitive benefits package which is a significant part of their total compensation.
It is our goal to provide employees with a comprehensive benefits package to fit their needs which includes, coverage for medical insurance, dental insurance, vision insurance, life insurance, long-term disability insurance, and flexible spending accounts (FSAs), health saving account (HSA) with company contributions, voluntary coverages, and 401(k).
Cathay Bank is an Equal Opportunity and Affirmative Action Employer. We believe in diversity, equity, and inclusion in the workplace.
We welcome applications for employment from all qualified candidates, regardless of race, color, ethnicity, ancestry, citizenship, gender, national origin, religion, age, sex (including pregnancy and related medical conditions, childbirth and breastfeeding), reproductive health decision-making, sexual orientation, gender identity and expression, genetic information or characteristics, disability or medical condition, military status or status as a protected veteran, or any other status protected by applicable law.
J-18808-Ljbffr