The position is described below. If you want to apply click the Apply Now button at the top or bottom of this page. After you click Apply Now and complete your application youll be invited to create a profile which will let you see your application status and any communications. If you already have a profile with us you can log in to check status.

Need Help

If you have a disability and need assistance with the application you can request a reasonable accommodation. Send an email to Accessibility (accommodation requests only; other inquiries wont receive a response).

Regular or Temporary:

Language Fluency: English (Required)

Work Shift:

Please review the following job description:

Essential Functionsand Responsibilities

Following is a summary of the essential functions for this job. Other duties may be performed both major and minor which are not mentioned below. Specific activities may change from time to time.

• Partner closely with lines of business and internal IT teams to thoughtfully evaluate initiatives releases and projects ensuring technical and cybersecurity requirements are clearly understood and aligned to businessobjectives.

• Serve as a trusted advisor by researching and translating business needs into practicalriskawaretechnical solutions through collaboration with internal delivery and application teams solution providers and subject matter experts.

• Clearly communicate and document findings recommended solutions impact analysis and associated risks in a manner tailored for senior leadership andCSuiteaudiences.

• Lead issue management and remediation efforts within Archer ensuring issues are accurately documented ownership is clear and remediation plans are actionable measurable and effectively tracked through resolution.

• Document cybersecurity findings and remediation strategies withexecutivelevelclarity balancing technical accuracy with business context to support informeddecisionmaking.

• Oversee and perform qualitative and quantitative analysis to help guide program strategy and inform bothneartermexecution andlongertermplanning.

• Provide informed recommendations on cybersecurity projects and initiatives incorporating an understanding of the Technology Delivery Lifecycle/Software Delivery Lifecycle (TDLC/SDLC) frameworks and how security controls are integrated throughout the lifecycle.

• Demonstrate working knowledge of foundational cybersecurity controls and practices such as SAST DAST penetration testing identity and access management (IAM) and relatedriskreductiontechniques.

• Consult with business leaders to help design refine and mature processes and procedures that strengthen security resilience and regulatory alignment.

• Maintain awareness of enterprise technology infrastructure standards and strategic directionleveragingthis understanding to guide partners toward secure scalable solutions that support overall business goals.

What Success Looks Like in the First 612 Months

• Actively engages withlines of businessand security teams to understand initiatives in-flight and directly support projects with clear actionable cybersecurity guidance.

• Takes ownership of issue management within Archer including drafting findings coordinating with control owners defining remediation actions and following up to drivetimelyissue closure.

• Personallydevelops andmaintainsclearwellstructuredfindings and remediation documentation that can be used both operationally and inexecutivelevelreadouts with minimal rework.

• Participateshandsonin reviews of business application requests and releases. applying an understanding of TDLC/SDLC processes toidentifygaps risks and improvement opportunities early in the lifecycle.

• Actively reviews and evaluates cybersecurity controls and assessment outputs such as SAST DAST penetration testing and IAM findings helping teams interpret results and prioritize remediation efforts.

• Performs detailed analysis to support cybersecurity initiatives turning assessment results metrics and trend data into practical recommendations that improve execution and risk reduction.

• Works directly with business and technology partners to clarify expectations refine processes and close gaps in procedures rather than relying solely on escalation paths.

• Builds credibility through consistentfollowthrough responsiveness and the ability to balance risk management expectations withrealworlddelivery constraints.

Qualifications

Required Qualifications:

The requirements listed below are representative of the knowledgeskilland/or abilityrequired. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

• Bachelors degree in business administration technology related field or equivalent education and related training

• Five years ofdemonstratedprogressive experience in Cybersecurity experience

• Foundational knowledge of cybersecurity terms conceptsdisciplinesand frameworks

Preferred Qualifications:

• Knowledge of financial services industry and all applicable regulations and industry standards

• Cyber security certifications such aSecurity CISA CEH area plus

• Basic familiarity withGitLab SaaSandCI/CD pipelinesincluding an understanding of how security controls and testing activities integrate into the software delivery lifecycle.

• Advanced familiarity with Archer (preferred) ServiceNow (preferred)IBM OpenPagesor other Governance Risk and Compliance (GRC) platform

Other Job Requirements / Working Conditions

Sitting

Constantly (More than 50% of the time)

Visual / Audio / Speaking

Able to access and interpret client information received from the computer and able to hear and speak with individuals in person and on the phone.

Manual Dexterity / Keyboarding

Able to work standard office equipment including PC keyboard and mouse copy/fax machines and printers.

Availability

Able to work all hours scheduled including overtime as directed by manager/supervisor and required by business need.

Travel

Minimal and up to 10%

General Description of Available Benefits for Eligible Employees of Truist Financial Corporation: All regular teammates (not temporary or contingent workers) working 20 hours or more per week are eligible for benefits though eligibility for specific benefits may be determined by the division of Truist offering the offers medical dental vision life insurance disability accidental death and dismemberment tax-preferred savings accounts and a 401k plan to teammates. Teammates also receive no less than 10 days of vacation (prorated based on date of hire and by full-time or part-time status) during their first year of employment along with 10 sick days (also prorated) and paid holidays. For more details on Truists generous benefit plans please visit our Benefits site. Depending on the position and division this job may also be eligible for Truists defined benefit pension plan restricted stock units and/or a deferred compensation plan. As you advance through the hiring process you will also learn more about the specific benefits available for any non-temporary position for which you apply based on full-time or part-time status position and division of work.

Truist is an Equal Opportunity Employer that does not discriminate on the basis of race gender color religion citizenship or national origin age sexual orientation gender identity disability veteran status or other classification protected by law. Truist is a Drug Free Workplace.

EEO is the Law E-Verify IER Right to Work