Principal Engineer III - Cyber Security

Job Title:

Principal Engineer III Cyber Security

Location:

CityScape

What youll do:

The Principal Engineer III reports within the office of the CISO organization directly to the Business Information Security Officer. The resource is responsible for ensuring that our operational designs processes procedures and technology are deployed in manner that meet cyber security standards and cyber resiliency goals in order to defend from and recover from cyberattack. From within the BISO org. the resource will represent the CISO team during business project initiation technology architecture design and lifecycle management of the banks technology and security infrastructure providing data security oversight guidance security consulting and compliance assessment functions. This position supports the banks Information Security and resiliency goals via the ownership of mandatory project security risk assessment processes. The position also works to ensure compliance to Swift Fedline FFIEC Security Handbooks NIST CSF GLBA and PCI requirements. This position requires a subject matter expert who will provide thought leadership and collaborate with various stakeholders across the WAB enterprise.

• Engage with business and IT project teams to enforce security standards offer solutions to applicable security risks and ensure resiliency is built into new project or applications design engineering and implementations.
• Engage with the Information Technology Risk Committee to review and opine on requested exceptions and risk acceptance rationale.
• Actively drive security data privacy business continuity and disaster recovery resiliency goals in project and product deployments as part of project teams and Architectural Standard Board.
• Provide oversight review and approval of technology readiness checklist as a member of the Technical Review Board.
• Drive technical discussions review and approve control evidence during the CRI Cybersecurity assessment process.
• Work within the CISO team as technical expert during risk control inventory and risk control selfassessment and control testing.
• Perform annual Swift and Fedline selfassessment and attestation processes according to industry requirements.
• Coordinate with SRC compliance to respond to external partner/investor security inquiries.
• Maintain the mapping of threat and control relationships within MITRE Attack framework.
• Contributes to the continual development and supports of information security policies and standards.
• Supports organizations requirements for evidence and control testing during internal and external audit and Federal Reserve examinations.
• Supports team in the management of security measures and controls over existing operating systems including configuration management and CIS Standards.
• Contribute to the development and refinement of key risk indicators and metrics to measure the effectiveness of the cyber security program.

What youll need:

• 12 years of experience in Information Technology or Security in a largescale Fortune 100 financial services and or $100B asset size bank.
• Bachelors degree in related field required; Masters or MBA in related field preferred.
• Advanced knowledge of general Financial Services or Banking is preferred.
• Extensive background in technology infrastructure and architecture design and engineering with a focus on Security and Operational Resiliency and risk mitigation techniques.
• Expert understanding that downstream businesscritical processes are dependent on the availability and reliability of data designs new (and refactors existing) cyber defense auditing and access platforms to meet growth by scaling service reliability requirements and problem management. Knowledge of applicable regulatory and legal compliance obligations rules and regulations industry standards and practices.
• Expert understanding and experience working with downstream businesscritical processes that are dependent on the availability and reliability of data designing new (and refactor existing) cyber defense auditing and access platforms through scaling service reliability requirements and problem management. Knowledge of applicable regulatory and legal compliance obligations rules and regulations industry standards and practices.
• Expert experience or knowledge of 4 or more of the following: NIST MITRE any IT Automation platform SOAR Firewall IAM platform SIEM or cloud cyber defense platform. Experience gathering operational reports on utilization capacity performance and anomalies to drive improvements.
• Experience in data networking authentication Azure / AWS cloud management vulnerability and CIS compliance management web application firewalls network segmentation/zoning load balancing.
• Excellent analytical and problemsolving skills with the ability to assess complex situations and develop effective solutions.
• Exceptional communication and interpersonal skills with the ability to influence and collaborate with stakeholders at all levels.
• Strong leadership and project management skills with experience leading crossfunctional teams.
• Combination of Cloud Technology Generic Computing and Cyber Security certifications.

Benefits youll love:
We offer all the important things youd want like competitive salaries an ownership stake in the company medical and dental insurance time off a great 401k matching program tuition assistance program an employee volunteer program and a wellness program. In addition youll have the opportunity to bolster your business knowledge learning the ins and outs of how successful companies operate and manage their finances giving you invaluable handson experience to help grow your career!

About the company:

Western Alliance Bank is a wholly owned subsidiary of Western Alliance Bancorporation. Alliance Bank of Arizona Alliance Association Bank Bank of Nevada Bridge Bank First Independent Bank and Torrey Pines Bank are divisions of Western Alliance Bank; Member FDIC. AmeriHome Mortgage is a Western Alliance Bank company.

Western Alliance Bancorporation is committed to equal employment and will consider all qualified applicants without regard to race sex color religion age nation origin marital status disability protected veteran status sexual orientation gender identity or genetic information. Western Alliance Bancorporation is committed to working with and providing reasonable accommodations for individuals with disabilities. If you are an individual with a disability and require a reasonable accommodation to complete any part of the application process and/or need an alternative method of applying please email or call. When contacting us please provide your contact information and state the nature of your accessibility issue. We will only respond to inquiries concerning requests that involve a reasonable accommodation in the application process.

Western Alliance Bancorporation