Principal Engineer I - Cyber

Job Title:

Principal Engineer I - Cyber

Location:

Block 23

What you'll do:

As a Principal Security Engineer I - Cyber shapes the technical direction of network security infrastructure and services. They define and deliver the engineering roadmap, driving continuous improvement and maturity.
With extensive experience in Cybersecurity and risk management frameworks, they bridge control objectives and evidence. They excel in technical writing, creating and maintaining architecture diagrams, standard operating procedures, and other documentation.
This role involves close collaboration with Enterprise Architecture and regular presentations to review boards. The engineer mentors and leads a team of engineers, fostering growth and ensuring high performance. They also participate in an on-call rotation and manage service-impacting activities outside of normal business hours, adhering to change management processes. Some travel may be required.

• Responsible for design, development, and maintenance of systems in support of cyber defense, audit, and access technology platforms while planning and implementing aspects with senior network architects, enterprise architect, server architects and the network and InfoSec teams.
• Write and maintain detailed engineering processes, procedures, and standards, ensuring compliance with security frameworks and best practices.
• Perform on-going optimization of the cyber defense, audit and access technologies to ensure adequate capacity, availability, and scalability.
• Achieve OKRs & KPIs for service availability and performance, providing advanced support for incident, problem, and change management using ITIL methodologies.
• Architect, design, and enhance network infrastructure and services, focusing on security, scalability, reliability, and performance optimization.
• Follows a disciplined approach to developing solutions, ensuring all work done is accounted for and accurately represented (as to what is currently deployed to Dev/Test/Prod) under source control. Daily Incident Management responsibilities will include troubleshooting routing, firewall, device issues, documenting troubleshooting steps and providing status updates to incident management.
• Collaborate with IT Governance, Risk, Compliance, and Audit teams to ensure security objectives are met, and evaluate and recommend cutting-edge technology solutions.
• Lead and execute complex IT projects, including network deployments, migrations, and acquisitions, while driving standardization and reducing complexity.
• Create and maintain comprehensive engineering documentation, and participate in business continuity and disaster recovery planning and testing.
• Provide 24x7 on-call support as needed, utilizing monitoring and analysis tools to ensure network security and performance, and perform other technical duties as assigned.

What you'll need:

• Bachelor's degree in Computer Science, Information Technology or a related field, complemented by 7+ years of IT engineering experience, with a focus on mentoring and leading other engineers, and ongoing professional development and leadership roles.
• Previous leadership experience preferred.
• Advanced knowledge of general Financial Services or Banking is preferred.
• Advanced to expert understanding and experience working with downstream business-critical processes that are dependent on the availability and reliability of data, designing new (and refactor existing) cyber defense, auditing, and access platforms through scaling, service reliability requirements and problem management.
• Knowledge of applicable regulatory and legal compliance obligations, rules and regulations, industry standards and practices.
• Advanced to expert understanding and experience working with logging infrastructure concepts:syslog; log parsing; log de-duping; methods for log pulling; RFC 5424; CEF Format; JSON; key value pair format; log enrichment; log maintenance; log troubleshooting.
• Deep experience with and understanding of load balancers, DNS, SMTP, etc. for troubleshooting application functionality.
• Experience with collocated data center, disaster recovery, and redundant network designs and architecture.
• Advanced to expert experience or knowledge of 2 or more of the following: NIST of MITRE (and the administration of either or any IT Automation platform), SOAR, Firewall, IAM platform, SIEM, or cloud cyber defense platform.
• Experience gathering operational reports on utilization, capacity, performance, and anomalies to drive improvements.
• Professional certifications with Cisco, Palo Alto, or similar, showcasing expertise in mission-critical, regulated networks
• Expertise in security frameworks and controls such as HIPAA, PCI, SOX, CIS, NIST, and ISO, with a strong background in solution architecture and technical leadership.
• Advanced knowledge of enterprise networking, including IP routing, packet switching, and data flow analysis, with in-depth experience in Palo Alto firewalls, Cisco Firepower firewalls, and Cisco AnyConnect VPN.
• Experience with Cloudflare, managing domain security, WAF, DDoS, and proxy services, along with extensive experience in Microsoft Azure or AWS public clouds.
• Proven track record in ITIL ITSM environments using ServiceNow, proficient with diagramming software such as Microsoft Visio and Lucidchart.
• Experience with SASE platforms, Cisco Identity Services Engine (ISE), and skilled in using monitoring and analysis tools like SolarWinds, Netbrain, LiveAction, ThousandEyes, AppDynamics, and ELK.
• Excellent communication skills, interfacing with IT leadership, business stakeholders, and technical teams, with experience in Perl, Python, or PowerShell being a plus.
• within finance or healthcare.
• Professional (OSCP), GIAC Security Essentials (GSEC), GIAC Certified Incident Handler (GCIH), Certified Cloud Security Professional (CCSP), Certified in Risk and Information Systems Control (CRISC).
• GENERIC COMPUTING - 1 or more of the following required: CompTIA A+, CompTIA Linux+, CompTIA Network+, Comptia Server+, CompTIA IT Fundamentals, Microsoft Certified: Identity and Access Administrator Associate, Microsoft Certified: Security, Compliance, and Identity Fundamentals, Microsoft Certified: Windows Server Hybrid Administrator Associate, Microsoft Certified: Azure Network Engineer Associate, RHCSA, RHCE, RHCS - Linux Performance Tuning, RHCS-Identity Management, RHCS-Linux Diagnostics and Troubleshooting, RHCS-Developing automation with Ansible.

Benefits you’ll love:
We offer all the important things you'd want — like competitive salaries, an ownership stake in the company, medical and dental insurance, time off, a great 401k matching program, tuition assistance program, an employee volunteer program, and a wellness program. In addition, you’ll have the opportunity to bolster your business knowledge, learning the ins and outs of how successful companies operate and manage their finances, giving you invaluable hands-on experience to help grow your career!

About the company:

Western Alliance Bank is a wholly owned subsidiary of Western Alliance Bancorporation. Alliance Bank of Arizona, Alliance Association Bank, Bank of Nevada, Bridge Bank, First Independent Bank, and Torrey Pines Bank are divisions of Western Alliance Bank; Member FDIC.  AmeriHome Mortgage is a Western Alliance Bank company.

Western Alliance Bancorporation is committed to equal employment and will consider all qualified applicants without regard to race, sex, color, religion, age, nation origin, marital status, disability, protected veteran status, sexual orientation, gender identity or genetic information. Western Alliance Bancorporation is committed to working with and providing reasonable accommodations for individuals with disabilities. If you are an individual with a disability and require a reasonable accommodation to complete any part of the application process and/or need an alternative method of applying, please email HR@westernalliancebank.com or call 602-386-2488.  When contacting us, please provide your contact information and state the nature of your accessibility issue.  We will only respond to inquiries concerning requests that involve a reasonable accommodation in the application process.

© Western Alliance Bancorporation