Information Security Analyst

About the position

The Information Security Analyst position at Cathay Bank is a critical role responsible for managing and maintaining the Bank's security operations in alignment with established Information Security policies, regulations, and industry best practices. This role primarily focuses on the administration, operations, and maintenance of the Security Information and Event Management (SIEM) solution, along with other security tools. The analyst will support incident response activities and perform log data analysis to secure the Bank's information and systems, which include Microsoft Windows Active Directory, financial business applications, network and communications security monitoring, endpoint security tools, and data loss prevention tools. In this position, the analyst will tune the SIEM and other security tools to minimize false positives, assess current security gaps, and identify improvements to enhance the security posture of the organization. The role requires the administration of SIEM configurations as dictated by the Security Operation Center, as well as the adaptation and development of new analyses in response to emerging threats and intelligence. The analyst will also ensure compliance with baseline configuration standards and recommend enhancements as necessary, while overseeing the installation, maintenance, and monitoring of preventive security solutions such as antimalware, security gateways, firewalls, and SIEM solutions. Additionally, the Information Security Analyst will assist in security assessments and vulnerability remediation efforts, collaborating closely with vendors to troubleshoot and optimize the current security toolsets. The role involves gathering performance and compliance data from Information Security and IT sources and interacting with managed security services operations to ensure a robust security framework is maintained.