Cybersecurity Resilience Principal Engineer

Truist Bank • Charlotte, NC, United States • $200k - $250k / year • 4w ago

The position is described below. If you want to apply, click the Apply Now button at the top or bottom of this page.

Regular or Temporary: Regular

Language Fluency: English (Required)

Work Shift: 1st shift (United States of America)

Please review the following job description:

We are currently seeking a strong Cyber Resilience Principal Engineer. In this role, you will possess extensive expertise in safeguarding organizations against cyber threats by developing, implementing, and managing strategies that support the ability to anticipate, withstand, recover, and adapt to cyber crises. With a deep understanding of regulatory frameworks such as GDPR, NIST, ISO 27001, and sector-specific guidelines, you will partner with key stakeholders to conduct thorough risk assessments, identify vulnerabilities, and advise on incident response and recovery strategies.

ESSENTIAL DUTIES AND RESPONSIBILITIES

Support the development and implementation of cybersecurity resilience strategies, policies, and procedures to safeguard the organization's systems, networks, and data against cyber threats and attacks.
Define and prioritize resilience objectives, goals, and initiatives aligned with organizational priorities and risk appetite.
Assist team with incident response and recovery efforts in the event of cybersecurity incidents or breaches.
Contribute to the development of incident response plans, playbooks, and procedures to ensure a timely and effective response to security incidents.
Develop and implement strategies to remediate identified vulnerabilities and mitigate security risks effectively.
Lead security awareness and training programs to educate employees and stakeholders on cybersecurity best practices, policies, and procedures.
Collaborate with internal stakeholders, business units, and external partners to align cybersecurity resilience efforts with business objectives, regulatory requirements, and industry standards.
Serve as a subject matter expert to regulatory agencies, auditors, and other external entities on cybersecurity resilience matters.
Drive continuous improvement and innovation in cybersecurity resilience capabilities through the adoption of emerging technologies, best practices, and industry standards.
Evaluate and recommend new tools, technologies, and methodologies to enhance the organization's cybersecurity posture.
Prepare and present regular reports, metrics, and dashboards on cybersecurity resilience performance, incidents, and trends.
Provide actionable recommendations and insights to senior management to support informed decision-making and risk management.
Conduct cybersecurity risk assessments and vulnerability assessments to identify and prioritize security risks, weaknesses, and gaps in the organization's infrastructure, systems, and applications.

Required Qualifications:

Bachelor's degree and ten years of experience in development or application support or an equivalent combination of education and work experience.
In-depth knowledge in information systems and ability to identify, apply, and implement best practices.
Understanding of key business processes and competitive strategies related to the IT function.
Ability to plan and manage projects.
Ability to solve complex problems by applying best practices.
Ability to provide direction and mentor less experienced teammates.
Ability to interpret and convey complex, difficult, or sensitive information.

Preferred Skills:

Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field or ten years of experience in various cybersecurity disciplines.
Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM).
Other relevant certifications from organizations like SANS, EC-Council, or (ISC)².
Significant experience (typically 10+ years) in cybersecurity roles with increasing levels of responsibility.
Experience leading teams or projects focused on cybersecurity resilience, incident response, or business continuity.
Experience working with regulatory compliance requirements (e.g., GDPR, HIPAA, NIST, ISO 27001) related to cybersecurity resilience.
Advanced understanding of cybersecurity principles, practices, and technologies.
Proficiency in risk assessment methodologies and techniques.
Familiarity with cloud security, network security, and application security concepts.
Ability to analyze complex technical issues and provide strategic solutions.
Excellent communication skills, with the ability to effectively convey technical information to both technical and non-technical stakeholders.
Strong problem-solving and decision-making abilities.
Ability to work collaboratively in a team environment and effectively manage projects and resources.
Flexibility and adaptability to respond to evolving cybersecurity threats and challenges.

General Description of Available Benefits for Eligible Employees of Truist Financial Corporation: All regular teammates (not temporary or contingent workers) working 20 hours or more per week are eligible for benefits, though eligibility for specific benefits may be determined by the division of Truist offering the position.

Truist supports a diverse workforce and is an Equal Opportunity Employer.

#J-18808-Ljbffr