[Remote] Cyber Security Engineer III - Data Protection Governance (Remote)
Note: The job is a remote job and is open to candidates in USA. First Citizens Bank is committed to ensuring the technological and digital security of their operations. The Cyber Security Engineer III will mitigate exposure to cyber threats and protect sensitive data through governance and data lifecycle management while advising on security policies and strategies.
Responsibilities
- Administers tools or processes that secure assigned technical areas and data
- Participates in security audits, identifies security gaps, and develops and implements risk mitigation solutions
- Ensures compliance with necessary protocols, configurations, or procedures
- Identifies and evaluates potential sensitive data exfiltration in the Bank's networks, applications, or systems
- Compiles data from internal sources
- Understands general industry best practices for data protection handling across enterprise domains
- Develops complex solutions and process improvements
- Maintains a current knowledge of technology, emerging threats, and security trends within the assigned technical area
- Advise on the development, enhancement, and monitoring of Insider Threat, Data Loss Prevention, Data Classification teams and its technologies
- Provides guidance on appropriate data protection methodologies
- Acts as a consultative resource to business and corporate functions on data loss policies and the bank’s associates
- Leads projects and serves as a resource to other business units
- Provides guidance on data protection strategies and tactical approaches for the enterprise
- Assists in reviewing and drafting the enterprise standards
- Reviews and recommends business requested exceptions via a risk-based framework
- Ensures compliance with all applicable requirements and service standards
- Assists senior leadership in the development of security policies, standards, and strategies
Skills
- Bachelor's degree with a minimum of 6 years of experience in systems engineering, networking or information security technologies -OR- High school diploma or GED with a minimum of 10 years of experience in systems engineering, networking or information security technologies
- Knowledge of data security practices, procedures, monitoring and alert tools (SCCM, SCOM, and Splunk), and risk management standards
- Knowledge of Active Directory administration and user provisioning, Domain Name System, Group Policy Objects, New Technology File System permissions, File Shares, SharePoint, Domain controllers, Lightweight Directory Access Protocol, data loss prevention technologies, encryption technologies, and single sign on technologies
- Knowledge of Identity and Access Management concepts and technologies
- Ability to clearly communicate risks, threats, and vulnerabilities identified during assessments
Benefits
- Variable incentives, bonuses, benefits, and/or other awards as outlined in the offer of employment
Company Overview
Company H1B Sponsorship