Western Alliance Bancorporation - Chandler, AZ
posted 4 days ago
About the position
Western Alliance Bank's (WAB) Security Monitoring Center is responsible for continuously monitoring our network and systems for suspicious activity, identifying potential security threats, investigating incidents, and responding quickly to neutralize cyberattacks. This includes analyzing security alerts, conducting incident response, documenting findings, implementing mitigations, and reporting to stakeholders. We are seeking a passionate, experienced, and results-driven staff engineer to build, maintain, and support technologies that will not only allow the Security Monitoring Center to continue its mission critical function but also allow us to grow and mature as we take on the challenge of building a robust Insider Risk program. This person will work alongside a team of talented engineers and be responsible for timely execution of work objectives and deliverables. Must be comfortable both challenging the ideas of others and having their own solutions challenged as part of ensuring that we are implementing the best possible solutions for WAB. Not only must you be tech savvy, but also be capable of providing high-quality work documentation wherever it is applicable, including but not limited to: graphs, flow diagrams, engineering runbooks, and change procedures.
Responsibilities
- Continuously monitor network and systems for suspicious activity.
- Identify potential security threats and investigate incidents.
- Respond quickly to neutralize cyberattacks.
- Analyze security alerts and document findings.
- Implement mitigations and report to stakeholders.
- Build, maintain, and support technologies for the Security Monitoring Center.
- Coordinate activities with other SMC Engineers to drive accuracy and improve MTTR.
- Automate cyber analysis and enrichment.
Requirements
- Bachelor's Degree in a Cybersecurity or Computer Science Program or related area of focus from a 4-year college or university.
- Minimum of five (5) years of Information Technology experience.
- Three (3) years of experience in information security engineering, security risk and compliance management, security project management, security policy management, and other security practices.
- Three (3) years of experience using scripting techniques (Python, Powershell, Rest API, VB, Ruby, etc.) to automate tasks.
- Two (2) years of experience in evaluating, installing, configuring, and maintaining at least 2 of the following security tools: IDS, IPS, SIEM, DLP, Proxy, Firewall, Endpoint forensics, disk encryption, GRC, Vulnerability scanner, sandbox, SOAR.
- Two (2) years of experience administrating a SIEM, with Elastic Stack SIEM being a plus.
- Experience with interpreting and analyzing packet captures via Wireshark.
Nice-to-haves
- RHCSA, RHCSE, CCNA, Microsoft, Azure, AWS, VMWare, or related technology training or certifications.
- CISSP, CISA, CISM, GIAC, GCIH, Security+ or related certifications.
Benefits
- Competitive salaries
- Ownership stake in the company
- Medical and dental insurance
- Time off
- Great 401k matching program
- Tuition assistance program
- Employee volunteer program
- Wellness program
