Principal Engineer III - Cyber Security

Company: Disability Solutions
Location: Phoenix
Posted on: April 3, 2025

Job Description:

Job Title:Principal Engineer III - Cyber SecurityLocation:CityScapeWhat you'll do:The Principal Engineer III reports within the office of the CISO organization directly to the Business Information Security Officer. The resource is responsible for ensuring that our operational designs, processes, procedures and technology are deployed in manner that meet cyber security standards and cyber resiliency goals in order to defend from and recover from cyber-attack. From within the BISO org. the resource will represent the CISO team during business project initiation, technology architecture, design and lifecycle management of the bank's technology and security infrastructure providing data security oversight, guidance, security consulting and compliance assessment functions. This position supports the banks Information Security and resiliency goals via the ownership of mandatory project security risk assessment processes. The position also works to ensure compliance to Swift, Fedline, FFIEC Security Handbooks, NIST CSF, GLBA and PCI requirements. This position requires a subject matter expert who will provide thought leadership and collaborate with various stakeholders across the WAB enterprise.

• Engage with business and IT project teams to enforce security standards, offer solutions to applicable security risks and ensure resiliency is built into new project or applications design, engineering, and implementations.
• Engage with the Information Technology Risk Committee to review and opine on requested exceptions and risk acceptance rationale.
• Actively drive security, data privacy, business continuity and disaster recovery resiliency goals in project and product deployments as part of project teams and Architectural Standard Board.
• Provide oversight, review and approval of technology readiness checklist as a member of the Technical Review Board.
• Drive technical discussions, review and approve control evidence during the CRI Cybersecurity assessment process.
• Work within the CISO team as technical expert during risk control inventory and risk control self-assessment and control testing.
• Perform annual Swift and Fedline self-assessment and attestation processes according to industry requirements.
• Coordinate with SRC compliance to respond to external partner/investor security inquiries.
• Maintain the mapping of threat and control relationships within MITRE Attack framework.
• Contributes to the continual development and supports of information security policies and standards.
• Supports organizations requirements for evidence and control testing during internal and external audit and Federal Reserve examinations.
• Supports team in the management of security measures and controls over existing operating systems including configuration management, and CIS Standards.
• Contribute to the development and refinement of key risk indicators and metrics to measure the effectiveness of the cyber security program.What you'll need:
  • 12 + years of experience in Information Technology or Security in a large-scale Fortune 100 financial services and or $100B + asset size bank.
  • Bachelor's degree in related field required; Masters or MBA in related field preferred.
  • Advanced knowledge of general Financial Services or Banking is preferred.
  • Extensive background in technology infrastructure and architecture, design and engineering with a focus on Security and Operational Resiliency and risk mitigation techniques.
  • Expert understanding that downstream business-critical processes are dependent on the availability and reliability of data, designs new (and refactors existing) cyber defense, auditing, and access platforms to meet growth by scaling, service reliability requirements and problem management. Knowledge of applicable regulatory and legal compliance obligations, rules and regulations, industry standards and practices.
  • Expert understanding and experience working with downstream business-critical processes that are dependent on the availability and reliability of data, designing new (and refactor existing) cyber defense, auditing, and access platforms through scaling, service reliability requirements and problem management. Knowledge of applicable regulatory and legal compliance obligations, rules and regulations, industry standards and practices.
  • Expert experience or knowledge of 4 or more of the following: NIST, MITRE, any IT Automation platform, SOAR, Firewall, IAM platform, SIEM, or cloud cyber defense platform. Experience gathering operational reports on utilization, capacity, performance and anomalies to drive improvements.
  • Experience in data networking, authentication, Azure / AWS cloud management, vulnerability and CIS compliance management, web application firewalls, network segmentation/zoning, load balancing.
  • Excellent analytical and problem-solving skills, with the ability to assess complex situations and develop effective solutions.
  • Exceptional communication and interpersonal skills, with the ability to influence and collaborate with stakeholders at all levels.
  • Strong leadership and project management skills, with experience leading cross-functional teams.
  • Combination of Cloud Technology, Generic Computing, and Cyber Security certifications.Benefits you'll love:We offer all the important things you'd want - like competitive salaries, an ownership stake in the company, medical and dental insurance, time off, a great 401k matching program, tuition assistance program, an employee volunteer program, and a wellness program. In addition, you'll have the opportunity to bolster your business knowledge, learning the ins and outs of how successful companies operate and manage their finances, giving you invaluable hands-on experience to help grow your career!About the company:Western Alliance Bank is a wholly owned subsidiary of Western Alliance Bancorporation. Alliance Bank of Arizona, Alliance Association Bank, Bank of Nevada, Bridge Bank, First Independent Bank, and Torrey Pines Bank are divisions of Western Alliance Bank; Member FDIC. AmeriHome Mortgage is a Western Alliance Bank company.Western Alliance Bancorporation is committed to equal employment and will consider all qualified applicants without regard to race, sex, color, religion, age, nation origin, marital status, disability, protected veteran status, sexual orientation, gender identity or genetic information. Western Alliance Bancorporation is committed to working with and providing reasonable accommodations for individuals with disabilities. If you are an individual with a disability and require a reasonable accommodation to complete any part of the application process and/or need an alternative method of applying, please email HR@westernalliancebank.com or call 602-386-2488. When contacting us, please provide your contact information and state the nature of your accessibility issue. We will only respond to inquiries concerning requests that involve a reasonable accommodation in the application process. - Western Alliance Bancorporation

Keywords: Disability Solutions, Phoenix , Principal Engineer III - Cyber Security, Engineering , Phoenix, Arizona