Farmers and Merchants Bank of Long Beach

Information Security Engineer

Farmers and Merchants Bank of Long Beach · Seal Beach, California, United States · $114K–$194K/yr

Banking · 501-1,000 employees

5 h ago
Senior (5-10 yrs) Full-time United States
Log in to apply, save this posting, or score it against your profile with AI.

About the role

The Information Security Engineer is responsible for implementing and optimizing security controls across on-premises and cloud environments to protect the Bank's technology infrastructure. This includes managing security technologies, responding to incidents, and developing automation to enhance detection and response capabilities.

What they look for

Information Security Engineering Cloud Security Network Security Incident Response Vulnerability Management SIEM Python PowerShell Azure Microsoft 365 Identity and Access Management Firewall Management Security Automation Risk Assessment Threat Detection Compliance

Requirements

Requires a Bachelor's degree in a technical field and 7-9 years of progressive experience in information security or systems administration. Candidates should have strong hands-on experience with Azure, SIEM tools, and network security, with preferred certifications like CISSP or CCSP.

Full description

Job Summary

The Information Security Engineer is a hands-on technical professional responsible for implementing, engineering, and continuously optimizing information security controls across the Bank's technology environment. Operating with a high degree of autonomy, this role focuses on designing, deploying, and operationalizing security solutions that protect the organization while supporting business objectives, regulatory requirements, and evolving threat landscapes.

Working closely with the Chief Information Security Officer (CISO), Information Security Architect, and cross-functional IT stakeholders, the Information Security Engineer translates security requirements into effective technical controls and solutions. The position plays a key role in strengthening the Bank's security posture through risk assessments, security architecture enhancements, control validation, and continuous improvement initiatives.

This role requires a strong balance of operational excellence and strategic thinking. The successful candidate will proactively identify security gaps, develop automation opportunities, enhance detection and response capabilities, and drive security maturity across the organization. Participation in after-hours support for critical security incidents and production issues may be required.

Key Responsibilities

  • Engineer, implement, and maintain information security controls across on-premises and cloud environments, including Microsoft Azure and Microsoft 365.
  • Translate security requirements, policies, and architectural designs into scalable, operationally effective security solutions.
  • Configure, manage, and optimize security technologies, including firewalls, web application firewalls (WAF), intrusion detection and prevention systems (IDS/IPS), endpoint protection platforms, and Security Information and Event Management (SIEM) solutions.
  • Monitor and respond to escalated security events and alerts; perform incident investigation, containment, remediation, and post-incident analysis.
  • Develop and maintain automation solutions using scripting and programming languages such as Python and PowerShell to improve detection, response, reporting, and operational efficiency.
  • Conduct vulnerability assessments, validate security control effectiveness, and support remediation efforts to reduce organizational risk.
  • Analyze system logs, security telemetry, and network traffic to identify malicious activity, attack patterns, and emerging threats.
  • Collaborate with Information Technology teams, vendors, and security leadership to implement, enhance, and maintain security capabilities.
  • Support security architecture initiatives by providing technical expertise and implementation guidance.
  • Assist with risk assessments and provide recommendations to strengthen the Bank’s overall security posture.
  • Provide technical guidance and mentorship to Information Security Analysts and contribute to the ongoing development of team capabilities.
  • Maintain accurate and complete documentation, including system configurations, operational procedures, incident records, and technical standards.
  • Adhere to established change management, operational, and security procedures.
  • Stay informed of emerging cybersecurity threats, vulnerabilities, technologies, and industry best practices.

Key Responsibilities – On-Call Support

  • Participate in an on-call rotation to support security incidents, critical alerts, and production issues.
  • Ensure timely response, investigation, escalation, and resolution in accordance with established service level expectations.
  • Provide after-hours support for critical security events, operational issues, and emergency situations.
  • Remain available to assist with high-priority incidents outside scheduled on-call periods when business need or risk severity warrants.

Compliance Responsibilities

  • Comply with all applicable federal and state banking regulations, internal policies, and security standards.
  • Support compliance efforts related to: • Bank Secrecy Act (BSA)
  • Anti-Money Laundering (AML)
  • Office of Foreign Assets Control (OFAC)
  • Customer Identification Program (CIP)
  • Financial Elder Abuse reporting requirements
  • Information security and data privacy regulations
  • Support internal audits, external audits, and regulatory examinations by providing technical evidence, documentation, and subject matter expertise.
  • Ensure security controls, processes, and monitoring activities align with regulatory expectations, industry standards, and organizational policies.
  • Assist in validating the effectiveness of security controls through testing, reviews, and remediation tracking.
  • Maintain appropriate records and documentation to demonstrate compliance with applicable regulatory and security requirements.

Required Knowledge

  • Strong understanding of core information security domains, principles, controls, and industry best practices.
  • Demonstrated ability to assess security risks and implement effective technical security controls across enterprise environments.
  • Hands-on experience implementing, configuring, and managing:
  • Firewalls and network security technologies
  • Web Application Firewalls (WAF)
  • Intrusion Detection and Prevention Systems (IDS/IPS)
  • Endpoint Detection and Response (EDR) and endpoint security platforms
  • Security Information and Event Management (SIEM) solutions such as Splunk, Sumo Logic, Microsoft Sentinel, or similar platforms
  • Vulnerability management and security scanning tools

Systems Administration & Infrastructure

Experience with:

Windows and Linux server administration

  • Enterprise network technologies, including: • TCP/IP
  • DNS
  • DHCP
  • Network segmentation
  • Routing and switching fundamentals.
  • Microsoft Active Directory administration
  • Identity and Access Management (IAM)
  • User provisioning, access reviews, and privileged access controls

Cloud & Modern Workplace Security

Working knowledge of:

  • Microsoft Azure security services and cloud security best practices
  • Microsoft 365 security controls and administration
  • Microsoft Intune
  • Conditional Access, identity protection, and endpoint management solutions
  • Cloud monitoring and security posture management concepts

Security Operations & Threat Detection

  • Experience with security logging, monitoring, alert triage, and detection engineering.
  • Ability to analyze security logs, event data, and network packet captures to identify malicious activity and attack patterns.
  • Understanding of common attack techniques including: • SQL Injection
  • Cross-Site Scripting (XSS)
  • Credential attacks
  • Malware activity
  • Lateral movement techniques
  • Privilege escalation attempts.

Security Frameworks & Governance

Familiarity with:

  • NIST Cybersecurity Framework (NIST CSF)
  • CIS Critical Security Controls
  • Secure configuration standards and baseline management
  • System hardening methodologies.
  • Security assessment and control validation practices

Automation & Development

  • Experience developing scripts and automation using Python, PowerShell, or similar technologies.
  • Ability to automate operational, monitoring, and security response processes to improve efficiency and reduce risk.

Database Security

  • Understanding of Microsoft SQL Server security concepts, including: • Authentication and authorization
  • Database access controls
  • Auditing and logging
  • Security configuration best practices
  • Vulnerability identification and remediation

Knowledge, Skills, and Abilities

  • Strong analytical, troubleshooting, and problem-solving skills with the ability to assess complex technical issues and develop effective solutions.
  • Effective verbal and written communication skills, including the ability to clearly document technical findings, recommendations, and operational procedures.
  • Ability to explain technical concepts, security risks, and remediation strategies to both technical and non-technical stakeholders.
  • Demonstrated ability to manage multiple priorities, projects, and competing deadlines in a fast-paced environment.
  • Strong attention to detail and commitment to accuracy, consistency, and quality in all aspects of work.
  • Ability to work independently with minimal supervision while effectively collaborating across teams and organizational functions.
  • Strong interpersonal skills with the ability to build productive working relationships with technology teams, business partners, vendors, auditors, and leadership.
  • Proven ability to exercise sound judgment and make timely decisions during operational issues and security incidents.
  • Adaptability and resilience in responding to changing business needs, evolving threats, and emerging technologies.
  • Continuous learning mindset with a commitment to professional development and staying current on cybersecurity threats, trends, tools, and best practices.
  • Ability to maintain confidentiality and manage sensitive information with professionalism and discretion.
  • Customer service orientation with a focus on balancing security, operational effectiveness, and business objectives.

Equipment Operated

  • Operates standard electronic computers and customary office equipment required to perform essential job functions.
  • Use of equipment is required, with or without reasonable accommodation, in accordance with the Americans with Disabilities Act (ADA) and the California Fair Employment and Housing Act (FEHA).

Physical Requirements & Work Environment

The physical demands and work environment characteristics described below are representative of those that must be met by an employee to successfully perform the essential functions of this position. Nothing in this description is intended to limit the availability of reasonable accommodation under applicable law.

  • Ability to perform repetitive movements associated with office and computer-based work.
  • Ability to sit and or stand for extended periods of time to perform essential job functions.
  • Ability to lift, carry, or move objects weighing up to 25 pounds, with or without reasonable accommodation.
  • Ability to use hands and fingers to manage, manipulate, or feel objects and operate standard office equipment.
  • Work is primarily performed in an office environment with a controlled temperature and standard office conditions.

Education and Experience

  • Bachelor's degree in Computer Science, Information Security, Cybersecurity, Information Technology, or a related discipline; equivalent combination of education and relevant work experience may be considered.
  • Minimum of 7–9 years of progressive experience in information security, systems administration, infrastructure engineering, or a related technical field.
  • Demonstrated experience designing, implementing, and supporting enterprise security controls and technologies in complex environments.
  • Experience working within regulated industries, preferably financial services or banking environments.
  • Proven ability to independently manage security initiatives, operational responsibilities, and incident response activities.

Preferred Certifications

One or more of the following industry-recognized certifications are preferred:

  • CISSP (Certified Information Systems Security Professional)
  • SSCP (Systems Security Certified Practitioner)
  • CCSP (Certified Cloud Security Professional)
  • GCIH (GIAC Certified Incident Handler)
  • CEH (Certified Ethical Hacker)
  • Other relevant certifications from ISC², GIAC, CompTIA, Microsoft, or equivalent organizations

Preferred Qualifications

  • Microsoft Azure Security Engineer Associate (AZ-500) or equivalent cloud security certification.
  • Experience implementing, integrating, and administering enterprise security solutions across on-premises and cloud environments.
  • Experience with cloud security architecture, governance, and operational security practices.
  • Exposure to penetration testing, red team exercises, adversary simulation, or security assessment activities.
  • Familiarity with threat hunting methodologies and advanced detection engineering practices.
  • Experience supporting regulatory compliance initiatives, audits, and security assessments within a financial institution.
  • Knowledge of modern cybersecurity threats, attack techniques, and defensive strategies.

Minimum Absence Requirement

Some positions within the Bank have been designated as sensitive positions due to access to critical systems, records, or processes. In accordance with Bank policy and sound internal‑control practices, employees in sensitive positions are required to complete a mandatory consecutive absence from essential duties each calendar year to support segregation of duties and independent review.

The required absence will be scheduled in coordination with management to ensure continuity of operations. Administration of absence, including paid or unpaid status, will comply with all applicable federal, state, and local wage and hour and leave laws, including California requirements.

Required Minimum Absence for This Position: Two (2) Consecutive Weeks

Officer Title Eligibility

For qualified positions, the Bank may designate an Officer Title based on the role’s job level, scope of responsibility, and alignment with established competency frameworks. Eligibility for an Officer Title designation is contingent upon the employee meeting defined competency, performance, and experience requirements and is governed by applicable Bank policies, governance standards, and required approval processes.

  • This position is not eligible for an Officer Title.

Compensation

The listed range represents the full compensation range for this position. Placement within the range will be determined based on factors including skills, relevant experience, job‑related qualifications, geographic location, and internal equity, in accordance with Bank compensation policies.

  • Exempt Salary Range: $113,880 – $193,960 per year

Disclaimer

This job description is intended to describe the general nature and level of work being performed and is not intended to be an exhaustive list of all duties, responsibilities, or qualifications. Employees may be required to perform other duties as assigned, consistent with business needs and applicable law.

Farmers and Merchants Bank of Long Beach reserve the right to modify, amend, or discontinue job duties or requirements at any time. Nothing in this job description creates a contract of employment, either express or implied, or alters the at‑will nature of employment.

07.06.26