Principal Information Security Engineer

Make banking a Fifth Third better

We connect great people to great opportunities. Are you ready to take the next step? Discover a career in banking at Fifth Third Bank.

Position not available for immigration sponsorship

GENERAL FUNCTION:

The Principal Information Security Engineer (ISE) is responsible for defining, architecting, delivering, and supporting enterprise security tools in collaboration with the IS and IT teams. This role also involves contributing to a wide range of Information Security (IS) projects and supporting the ongoing operations of the IS department, with a focus on Zero Trust strategies, Web Application Firewalls, and perimeter and endpoint detection and prevention controls. The Principal ISE plays a key role in shaping a holistic security program across both data center and cloud environments, ensuring layered defenses that prevent and detect attacks from the outermost edge to the endpoint. This expertise will be leveraged to identify opportunities and prioritize initiatives that reduce organizational risk. Technologies that make up the holistic program include, but are not limited to:

• Web Application Firewalls (WAF)
• Bot mitigation platforms
• API Gateways
• Zero Trust Network Access (ZTNA)
• Intrusion Detection and Prevention Systems (IDPS)
• Data Loss Prevention (DLP)
• Proxy solutions
• Extended Detection and Response (XDR) tools
• Anti-malware solutions
• Firewalls
• Log management systems
• Identity platforms

ESSENTIAL DUTIES & RESPONSIBILITIES:

• Mentor more junior members of the team.
• Contribute to and enhance the bank's perimeter security program.
• Define security requirements for the implementation of new technologies that enhance preventive and detective capabilities
• Serve as a security engineer/architect/ consultant on projects.
• Participate in conducting security research and threat modeling, make recommendations to the IS/IT teams and oversee their implementation.
• Advance the Bank's operational security posture by maintaining and enhancing standards, procedures, and guidelines that proactively address emerging technologies and evolving threat landscapes. Particularly in the areas of Zero Trust, perimeter defense, and adaptive control frameworks.
• Assist in conducting risk assessments to evaluate the effectiveness of existing controls and determine the impact of proposed changes to business processes, applications and systems.
• Threat analysis / Response: create, monitor, interpret and respond to detections from Cyber Criminals, BOT attacks, Network attacks, DDoS L3-L7, Cloud.
• Develop Zero Trust (ZT) strategy and architectural patterns, establish baseline and enhanced access policies for remote and internal users following ZT best practices
• Provide Tier 3 operational support for complex issues related to Web Application Firewalls (WAF), bot mitigation platforms, and Zero Trust Network Access (ZTNA) solutions, ensuring rapid resolution and continuous improvement of perimeter defense capabilities.
• Seeking and maintaining knowledge (cross/up skill) of current and upcoming IT security technologies.
• Awareness of latest and common security threats and technology trends.
• Knowledge of virtualization and containerization technologies.

SUPERVISORY RESPONSIBILITIES: None.

MINIMUM KNOWLEDGE, SKILLS & ABILITIES REQUIRED:

• Bachelor's degree in Computer Science/Information Systems or equivalent combination of education and experience. Master's degree a plus.
• Industry Standard Certifications such as, but not limited to: SANS certifications, ISC2 CISSP, and AWS are preferred.
• Must be able to communicate ideas both verbally and in writing to management, business and IT sponsors, and technical resources in language that is appropriate for each group.
• Eight+ years of IT work experience relevant to the position, including at least six years in a hands-on information security engineering or analyst position.
• Experience working with and supporting Linux and Windows systems.
• Solid conceptual understanding of distributed computing principles.
• Working knowledge of application and data security concepts, best practices, and common vulnerabilities.
• Financial industry experience is a plus.
• Excellent ability to diagnose and troubleshoot accessibility issues.

#LI-TY1

Fifth Third Bank, National Association is proud to have an engaged and inclusive culture and to promote and ensure equal employment opportunity in all employment decisions regardless of race, color, gender, national origin, religion, age, disability, sexual orientation, gender identity, military status, veteran status or any other legally protected status.