Information Security Engineer III

Overview This is a remote role that may be hired in several markets across the United States. This position ensures the technological and digital security of the Bank at a high level of ability and technical expertise. Mitigates exposure to cyber threats, security risks, and unauthorized access. Assesses organizational networks, applications, or systems for potential vulnerabilities. Protects assets and information through a variety of methods, resolving security issues or incidents as they arise. Maintains a strong knowledge of industry practices, technology, and evolving threats in order to enhance defenses for the Bank's information systems and resources. May oversee less experienced associates in the work group. Responsibilities Technical Security - Administers tools or processes that secure assigned technical areas and data. Participates in security audits, identifies security gaps, and develops and implements risk mitigation solutions. Ensures compliance with necessary protocols, configurations, or procedures. Analysis - Identifies and evaluates potential sensitive data exfiltration in the Bank's networks, applications, or systems. Compiles data from internal sources. Maintains a Sensitive Data Catalog and Data Protection Handling Requirements across the enterprise. Develops complex solutions and process improvements. Security Expertise - Maintains a current knowledge of technology, emerging threats, and security trends within the assigned technical area. Advise on the development, enhancement, and monitoring of Insider Threat, Data Loss Prevention, Data Classification teams and its technologies. Provides guidance on appropriate data protection methodologies. Acts as a consultative resource to business and corporate functions on data loss policies and the bank’s associates. Leads projects and serves as a resource to other business units. Governance – Provides guidance on data protection strategies and tactical approaches for the enterprise. Assists in drafting the enterprise standards and reviews and recommends business requested exceptions via a risk-based framework. Ensures compliance with all applicable requirements and service standards. Business Strategy - Assists senior leadership in the development of security policies, standards, and strategies. Qualifications Bachelor's degree with a minimum of 6 years of experience in systems engineering, networking or information security technologies -OR- High school diploma or GED with a minimum of 10 years of experience in systems engineering, networking or information security technologies Preferred Skill(s) : Knowledge of data security practices, procedures. monitoring and alert tools (SCCM, SCOM, and Splunk), and risk management standards Knowledge of Active Directory administration and user provisioning, Domain Name System, Group Policy Objects, New Technology File System permissions, File Shares, SharePoint, Domain controllers, Lightweight Directory Access Protocol, data loss prevention technologies, encryption technologies, and single sign on technologies Knowledge of Identity and Access Management concepts and technologies Ability to clearly communicate risks, threats, and vulnerabilities identified during assessments. This job posting is expected to remain active for 45 days from the initial posting date listed above. If it is necessary to extend this deadline, the posting will remain active as appropriate. Job postings may come down early due to business need or a high volume of applicants The base pay for this position is generally between $115,000 and $169,000. Actual starting base pay will be determined based on skills, experience, location, and other non-discriminatory factors permitted by law. For some roles, total compensation may also include variable incentives, bonuses, benefits, and / or other awards as outlined in the offer of employment. Benefits are an integral part of total rewards and First Citizens Bank is committed to providing a competitive, thoughtfully designed and quality benefits program to meet the needs of our associates. More information can be found at benefits.Technical Security - Administers tools or processes that secure assigned technical areas and data. Participates in security audits, identifies security gaps, and develops and implements risk mitigation solutions. Ensures compliance with necessary protocols, configurations, or procedures. Analysis - Identifies and evaluates potential sensitive data exfiltration in the Bank's networks, applications, or systems. Compiles data from internal sources. Maintains a Sensitive Data Catalog and Data Protection Handling Requirements across the enterprise. Develops complex solutions and process improvements. Security Expertise - Maintains a current knowledge of technology, emerging threats, and security trends within the assigned technical area. Advise on the development, enhancement, and monitoring of Insider Threat, Data Loss Prevention, Data Classification teams and its technologies. Provides guidance on appropriate data protection methodologies. Acts as a consultative resource to business and corporate functions on data loss policies and the bank’s associates. Leads projects and serves as a resource to other business units. Governance – Provides guidance on data protection strategies and tactical approaches for the enterprise. Assists in drafting the enterprise standards and reviews and recommends business requested exceptions via a risk-based framework. Ensures compliance with all applicable requirements and service standards. Business Strategy - Assists senior leadership in the development of security policies, standards, and strategies. Bachelor's degree with a minimum of 6 years of experience in systems engineering, networking or information security technologies -OR- High school diploma or GED with a minimum of 10 years of experience in systems engineering, networking or information security technologies Preferred Skill(s) : Knowledge of data security practices, procedures. monitoring and alert tools (SCCM, SCOM, and Splunk), and risk management standards Knowledge of Active Directory administration and user provisioning, Domain Name System, Group Policy Objects, New Technology File System permissions, File Shares, SharePoint, Domain controllers, Lightweight Directory Access Protocol, data loss prevention technologies, encryption technologies, and single sign on technologies Knowledge of Identity and Access Management concepts and technologies Ability to clearly communicate risks, threats, and vulnerabilities identified during assessments. This job posting is expected to remain active for 45 days from the initial posting date listed above. If it is necessary to extend this deadline, the posting will remain active as appropriate. Job postings may come down early due to business need or a high volume of applicants The base pay for this position is generally between $115,000 and $169,000. Actual starting base pay will be determined based on skills, experience, location, and other non-discriminatory factors permitted by law. For some roles, total compensation may also include variable incentives, bonuses, benefits, and / or other awards as outlined in the offer of employment. Benefits are an integral part of total rewards and First Citizens Bank is committed to providing a competitive, thoughtfully designed and quality benefits program to meet the needs of our associates. More information can be found at benefits.

Information Security Engineer • North Carolina, United States, US