Staff Engineer II - Cyber

Job Title:

Staff Engineer II - Cyber

Location:

CityScape

What you'll do:

Western Alliance Bank’s (WAB) Security Monitoring Center is responsible for continuously monitoring our network and systems for suspicious activity, identifying potential security threats, investigating incidents, and responding quickly to neutralize cyberattacks. This includes analyzing security alerts, conducting incident response, documenting findings, implementing mitigations, and reporting to stakeholders.

We are seeking a passionate, experienced, and results-driven staff engineer to build, maintain, and support technologies that will not only allow the Security Monitoring Center to continue its mission critical function but also allow us to grow and mature as we take on the challenge of building a robust Insider Risk program.

This person will work alongside a team of talented engineers and be responsible for timely execution of work objectives and deliverables. Must be comfortable both challenging the ideas of others and having their own solutions challenged as part of ensuring that we are implementing the best possible solutions for WAB. Not only must you be tech saavy, but also be capable of providing high-quality work documentation wherever it is applicable, including but not limited to: graphs, flow diagrams, engineering runbooks, and change procedures.

This role reports to the Manager of the Security Monitoring Center Engineering team. This position is ONSITE only and you must be currently residing or willing to relocate to Phoenix, AZ area.

• Solid understanding of logging infrastructure concepts: syslog; log parsing; log de-duping; methods for log pulling; RFC 5424; CEF Format; JSON; key value pair format; log enrichment; log maintenance; log troubleshooting.
• Demonstrative SIEM administration. A solid understanding of and administrative experience with of Elastic Stack is a plus (aka: elasticsearch; elk; Elastic Logstash Kibana; ElasticCloud) is a plus.
• Demonstrative SOAR administration and playbook authoring. A solid understanding of and administrative experience with Palo Alto XSOAR is a plus.
• Coordinate activities with other SMC Engineers to drive accuracy, improve MTTR, and automate cyber analysis and enrichment.
• Solid understanding and demonstrative experience with Python, Powershell, and Bash.
• Capable of operating entirely day-to-day on a Linux platform.

What you'll need:

• Bachelor’s Degree in a Cybersecurity or Computer Science Program or related area of focus from a 4-year college or university and a minimum of five (5) years of Information Technology experience.
• The five (5) years of experience should include a combination of:
  • Three (3) years of experience in information security engineering, security risk and compliance management, security project management, security policy management, and other security practices.
  • Three (3) years of experience using scripting techniques (Python, Powershell, Rest API, VB, Ruby, etc.) to automate tasks.
  • Two (2) years of experience in evaluating, installing, configuring, and maintaining at least 2 of the following security tools (IDS, IPS, SIEM, DLP, Proxy, Firewall, Endpoint forensics, disk encryption, GRC, Vulnerability scanner, sandbox, SOAR).
• Two (2) years of experience administrating a SIEM. Elastic Stack SIEM is a plus.
• Experience with interpreting and analyzing packet captures via Wireshark.
• RHCSA, RHCSE, CCNA, Microsoft, Azure, AWS, VMWare, or related technology training or certifications are a plus.
• CISSP, CISA, CISM, GIAC, GCIH, Security+ or related certifications are a plus

Benefits you’ll love:
We offer all the important things you'd want — like competitive salaries, an ownership stake in the company, medical and dental insurance, time off, a great 401k matching program, tuition assistance program, an employee volunteer program, and a wellness program. In addition, you’ll have the opportunity to bolster your business knowledge, learning the ins and outs of how successful companies operate and manage their finances, giving you invaluable hands-on experience to help grow your career!

About the company:

Western Alliance Bank is a wholly owned subsidiary of Western Alliance Bancorporation. Alliance Bank of Arizona, Alliance Association Bank, Bank of Nevada, Bridge Bank, First Independent Bank, and Torrey Pines Bank are divisions of Western Alliance Bank; Member FDIC.  AmeriHome Mortgage is a Western Alliance Bank company.

Western Alliance Bancorporation is committed to equal employment and will consider all qualified applicants without regard to race, sex, color, religion, age, nation origin, marital status, disability, protected veteran status, sexual orientation, gender identity or genetic information. Western Alliance Bancorporation is committed to working with and providing reasonable accommodations for individuals with disabilities. If you are an individual with a disability and require a reasonable accommodation to complete any part of the application process and/or need an alternative method of applying, please email HR@westernalliancebank.com or call 602-386-2488.  When contacting us, please provide your contact information and state the nature of your accessibility issue.  We will only respond to inquiries concerning requests that involve a reasonable accommodation in the application process.

© Western Alliance Bancorporation