Senior IT Vulnerability Management Engineer

Introduction

Since 1973, East West Bank has served as a pathway to success. With over 120 locations across the U.S. and Asia, we are the premier financial bridge between the East and West. Our teams of experienced, multi-cultural professionals help guide businesses and community members on both sides of the Pacific looking to explore new markets and create new opportunities, and our sustained growth and expertise in industries like real estate, entertainment and media, private equity and venture capital, and high-tech help build sustainable businesses and expand our associates’ potential for career advancement. Headquartered in California, East West Bank (Nasdaq: EWBC) is a top performing commercial bank with an exclusive focus on the U.S. and Asia markets. With a strong foundation, and enterprising spirit and a commitment to absolute integrity, East West Bank gives people the confidence to reach further.

Overview

We are currently seeking a Senior IT Operations Vulnerability Management Engineer.

 

As an East West Bank employee, you will be part of a growing and stable organization that provides career path development opportunities while serving a growing and profitable market.

Responsibilities

• Investigate new and emerging security vulnerabilities from vendors and RSS feeds
• Research implication of security vulnerabilities
• Investigate the best method to apply security changes to remediate vulnerabilities for applications, network devices, servers, and desktops
• Design and develop automated security standards for IT Operations and Development teams
• Design and configure vulnerability management solutions on various technologies and platforms
• Manage security and operations related projects providing regularly scheduled status reports and updates
• Create threat, risk and vulnerability assessments including notifications within current product line.
• Build vulnerability reporting and dashboards for management and support teams
• Maintain security posture through constant security scanning and validations

Qualifications

• Minimum of 5 years work experience utilizing Patch Management solutions for Microsoft, Linux, and 3rd party products such as Adobe, Java and Apache using Microsoft Configuration Management, Intune, Ansible, or Ivanti (Endpoint Mgr., Neurons, Security Controls).
• Minimum 5 years work experience using scripting languages (Bash, Python, Ruby, PowerShell)
• Minimum 3 years work experience with API, Swagger & Oauth
• Minimum of 5 years work experience with Vulnerability Assessment tools: Nessus, Qualys, Arctic Wolf, Nexpose, Metasploit, Kali Linux
• Minimum of 3 years work experience cloud and container platforms with emphasis on security (Azure, AWS, Kubernetes, Docker, Ansible)
• Minimum of 5 years work experience with Network Assessment tools: Extrahop, NMAP, Nipper, Wireshark, TCP dump
• Minimum of 5 years work experience identifying security threats, and developing procedures to remediate identified threats
• 3 years PKI/Certificate Automation Management experience (Venafi, Appviewx, Digicert)
• Linux and Windows Server Administration Skills (Advanced)
• Database Administration & Reporting (1 year, SQL, Oracle)
• Infrastructure Architecture and Design Knowledge (3 years)
• Networking Protocol Skills (Intermediate)
• Cisco/Juniper network device experience preferred
  • Core router and switch experience
    • IOS upgrades
    • Router and Switch configuration experience
• Excellent verbal and written communication
• Industry experience with financial institutions preferred

Compensation

The base pay range for this position is USD $38.00/Hr. - USD $58.00/Hr. Exact offers will be determined based on job-related knowledge, skills, experience, and location.

Salary : $38 - $58