New

Staff Engineer II, Cyber - Threat and Vulnerability Management

Western Alliance Bancorporation
dental insurance, tuition assistance, 401(k)
United States, Arizona, Phoenix
Apr 23, 2026
Job Title: Staff Engineer II, Cyber - Threat and Vulnerability Management Location: CityScape What you'll do: Western Alliance Bank is seeking a passionate, experienced, and results-driven Cyber Engineer to help engineer, operationalize, and continuously mature a scalable, risk-based Threat & Vulnerability Management (TVM) program across hybrid environments, including on-premises infrastructure, cloud platforms, containerized workloads, and CI/CD pipelines. This role will collaborate with internal business partners and IT Tower Leads to proactively address ongoing vulnerability and configuration hardening issues to ensure rapid resolution. In this role you will foster a collaborative environment with focus on continuous mitigation and mitigation of cyber vulnerabilities. You'll be accountable to proactively recommend improvements to established processes while continuing to deliver high value in execution. You'll also create and deliver comprehensive project plans as well as remove any impediments, track overall project performance, specifically to analyze the successful completion of business short-term and long-term goals. As a Staff Engineer II - Cyber (Threat & Vulnerability Management), you will serve as a hands-on technical leader responsible for building, integrating, and automating vulnerability discovery, prioritization, remediation workflows, and security guardrails. This role partners closely with Cyber Defense, Cloud Engineering, Infrastructure, DevOps, Application, and Platform teams to reduce enterprise risk through measurable, engineering-led outcomes while operating within established governance and risk frameworks. Assist in the strategic direction and execution of the TVM program, covering cloud, infrastructure, application, container, and endpoint environments. Review and enforce CIS security baseline compliance across enterprise assets, including cloud workloads, servers, and endpoints. Integrate automated scanning and security controls into DevSecOps pipelines to detect and remediate vulnerabilities early in the development lifecycle. Work cross-functionally with Cloud Engineering, DevOps, Infrastructure, and IT to prioritize and remediate vulnerabilities based on business risk, exploitability, and regulatory requirements. Support the use and optimization of enterprise vulnerability scanning and compliance tools. Monitor emerging threats, zero-day vulnerabilities, and misconfigurations, and lead remediation and communication efforts accordingly. Produce reporting and metrics that provide visibility into vulnerability trends, patch compliance, and CIS benchmark adherence for technical and executive audiences. Contribute to cloud security governance, including the design and enforcement of security guardrails, Infrastructure-as-code (IaC) reviews, and automated compliance checks. Ensure alignment with regulatory standards (e.g., FFIEC, GLBA, PCI-DSS, NIST 800-53, ISO 27001) and drive continuous improvement in control effectiveness. Support a team of security analysts and engineers focused on vulnerability detection, analysis, and risk mitigation. What you'll need: 6+ years of related experience in cybersecurity or security engineering experience or similar field. Bachelor's degree in related field required. Previous leadership experience preferred. Advanced knowledge of general Financial Services or Banking is preferred. Advanced to expert experience with and knowledge of Vulnerability Management Systems, DAST Scanning, SAST, and SCA. Advanced to expert knowledge of patch management systems Advanced knowledge of NIST, MITRE and Administration of an IT Automation platform. Advanced Linux experience. Advanced automation skills (Python, PowerShell, Bash). Experience in regulated or highly controlled environments. Hands-on ServiceNow Vulnerability Response experience preferred. Risk-based vulnerability scoring expertise preferred. Advanced speaking and writing communication skills. Benefits you'll love: We offer all the important things you'd want - like competitive salaries, an ownership stake in the company, medical and dental insurance, time off, a great 401k matching program, tuition assistance program, an employee volunteer program, and a wellness program. In addition, you'll have the opportunity to bolster your business knowledge, learning the ins and outs of how successful companies operate and manage their finances, giving you invaluable hands-on experience to help grow your career! About the company: Western Alliance Bank is a wholly owned subsidiary of Western Alliance Bancorporation. Alliance Bank of Arizona, Alliance Association Bank, Bank of Nevada, Bridge Bank, First Independent Bank, and Torrey Pines Bank are divisions of Western Alliance Bank; Member FDIC. AmeriHome Mortgage is a Western Alliance Bank company. Western Alliance Bancorporation is committed to equal employment and will consider all qualified applicants without regard to race, sex, color, religion, age, nation origin, marital status, disability, protected veteran status, sexual orientation, gender identity or genetic information. Western Alliance Bancorporation is committed to working with and providing reasonable accommodations for individuals with disabilities. If you are an individual with a disability and require a reasonable accommodation to complete any part of the application process and/or need an alternative method of applying, please email HR@westernalliancebank.com or call 602-386-2488. When contacting us, please provide your contact information and state the nature of your accessibility issue. We will only respond to inquiries concerning requests that involve a reasonable accommodation in the application process. Western Alliance Bancorporation