Network and Cloud Security Architect
East West Bancorp - San Marino, CA
posted 3 days ago
About the position
As we continue to evolve our digital infrastructure and expand our services in the cloud, we are seeking a highly skilled Security Architect with deep expertise in both cloud and network security to join our dynamic team. This role is pivotal in ensuring the confidentiality, integrity, and availability of our critical banking systems and customer data. The Security Architect provides expert guidance for addressing current security issues and has the foresight to see where the industry is headed and proactively deliver optimal secure solutions. You will be responsible for designing, implementing, and maintaining robust security solutions with a strong focus on network security and cloud-based solutions. Working closely with business, IT and security teams, you will develop and execute comprehensive security strategies to safeguard our environments against cyber threats and ensure compliance with industry regulations. The ideal candidate will have a strong background in network, cloud technologies and cybersecurity, along with a deep understanding of the unique security challenges facing the banking industry. The architect is expected to think like an adversary and identify how solutions should evolve as the threat landscape changes. This is a senior-level role, contributes to the company IT security strategy and roadmap. The architect possesses strong communication and organizational skills, and the ability to guide less experienced coworkers. The architect provides technical leadership to delivery and solution design team members. The role requires the ability to speak confidently in front of large groups and with corporate management, vendors, and service providers. You will work with many diverse and dynamic teams, including security engineering, IT infrastructure, application development, security operations, security audit and end users.
Responsibilities
- Collaborate with stakeholders to define security requirements and design secure cloud architectures that meet the bank's business objectives.
- Conduct risk assessments and security reviews of cloud environments, identifying potential vulnerabilities and recommending risk mitigation strategies.
- Develop and implement cloud security policies standards, and procedures to ensure compliance with regulatory requirements such as PCI-DSS, GDPR, and FFIEC.
- Design and implement access controls, encryption mechanisms, and other security measures to protect sensitive data in transit and at rest.
- Assess, evaluate, design, configure and deploy security tools and technologies for monitoring, detection, and incident response in cloud environments, including SIEM, IDS/IPS, and DLP solutions.
- Provide guidance and support to development teams on secure coding practices, threat modeling, and security testing methodologies.
- Stay informed about emerging threats, vulnerabilities, and security best practices in the cloud computing and banking industries and make recommendations for continuous improvement.
- Collaborate with internal audit and compliance teams to ensure that cloud security controls are effectively implemented and maintained.
- Participate in security incident response activities, including investigation, analysis, and remediation of security incidents and breaches.
- Serve as a subject matter expert on cloud security matters, providing training and mentorship to other team members and stakeholders as needed.
- Act as consultant to CISO and IT Leadership, mentor other Cybersecurity staff and establish a working relationship with partners and peers.
Requirements
- Bachelor's degree in Computer Science, Information Security, or related field; Master's degree preferred.
- Preferably 12+ years of technical hands-on IT experience; 7+ years of experience in cybersecurity roles, with a focus on designing and implementing security solutions for cloud environments.
- Strong understanding of cloud computing concepts and architectures, particularly AWS, Azure, Tencent, etc.
- Strong understanding of network security concepts, solutions and layered security design.
- Knowledge of regulatory requirements and industry standards relevant to the banking sector, such as PCI-DSS, GLBA, and Basel III.
- Experience with security assessment tools, penetration testing techniques, and security frameworks such as NIST Cybersecurity Framework or ISO 27001.
- Relevant certifications such as CISSP, CCSP, AWS Certified Security Specialty, Azure Solutions Architect Expert, or equivalent, preferred.
- Excellent communication and interpersonal skills, with the ability to collaborate effectively with stakeholders at all levels of the organization.
- Strong analytical and problem-solving abilities, with a keen attention to detail and a commitment to excellence.
- Ability to work independently and as part of a team in a fast-paced, dynamic environment.
- Demonstrates strong analytical skills and is effective at interpreting and applying applicable regulations.
Benefits
- Competitive salary based on experience and location.
