Principal Engineer - Proxy Team

About The Position

Requirements

• 8–12+ years of experience in cybersecurity engineering, incident response, cloud or on-premise proxy tools, internet access and control, or related fields.
• Bachelor’s degree in Information Systems-related field, or equivalent education and related training.
• Deep expertise with modern proxy internet access and control platforms (e.g., Zscaler, Forcepoint, etc.).
• Strong understanding of web proxy technologies and protocols, SSL inspection, URL filtering, PAC file management, AI and ML detection and protection strategy, Secure Access Service Edge, Zero Trust Architecture, firewall integrations, operating systems, network fundamentals, and security architecture.
• Proven experience driving strategy or leading enterprise-scale security initiatives.
• Excellent communication skills with the ability to influence senior stakeholders and translate technical concepts into business impact.
• Strong business and financial acumen and effective communication skills
• Ability to establish strong relationships within the technical community.
• Ability to serve as a visionary concerning future technological capabilities and operational scenarios; ability to create new business models and technologies.
• Ability to create, manage and drive change.
• Ability to unify activities within the technology community, coordinating with other businesses and engineering organizations, as needed.

Nice To Haves

• Fifteen years of industry recognized experience and leadership
• Financial industry experience
• Experience with scripting/automation (PowerShell, Python), cloud security (AWS/Azure), and SOAR/SIEM integrations.

Responsibilities

• Strategic Leadership & Ownership Serve as the strategic owner of the organization’s Proxy internet access and control platforms, ensuring tools are fully leveraged, optimized, and aligned with enterprise risk-management goals.
• Define and evolve the Proxy internet access and control roadmap, identifying future capabilities, technology gaps, and opportunities for automation and innovation.
• Provide expert analysis and recommendations on strategic direction, investment needs, and emerging threats that impact Proxy internet access and control.
• Technical Expertise & Architecture Architect and maintain scalable, resilient Proxy internet access and control solutions across diverse operating systems and environments.
• Lead technical deep dives, threat modeling, and architecture reviews to ensure continuous improvement and coverage expansion.
• Oversee integration of Proxy internet access and control with SIEM, SOAR, vulnerability management, asset inventory, EDR and other core security platforms.
• Detection, Response, and Operations Guide the creation, tuning, and lifecycle management of access control policy within the Proxy internet access and control tools.
• Partner with incident response teams to ensure rapid containment and remediation of Proxy internet access and control threats.
• Conduct advanced investigations and root-cause analyses for complex or high-severity incidents.
• Governance, Standards, and Best Practices Establish and maintain Proxy internet access and control standards, policies, and hardening guidelines.
• Evaluate and report on Proxy internet access and control, performance metrics, detection efficacy, and risk trends.
• Ensure the Proxy internet access and control program aligns with regulatory requirements, security frameworks, and organizational risk controls.
• Collaboration & Leadership Act as a senior advisor to engineering, operations, and leadership teams on Proxy internet access and control strategy.
• Mentor engineers and analysts, fostering a culture of continuous learning and operational excellence.
• Lead cross-functional initiatives to enhance enterprise resilience and reduce endpoint attack surface.

Benefits

• All regular teammates (not temporary or contingent workers) working 20 hours or more per week are eligible for benefits, though eligibility for specific benefits may be determined by the division of Truist offering the position.
• Truist offers medical, dental, vision, life insurance, disability, accidental death and dismemberment, tax-preferred savings accounts, and a 401k plan to teammates.
• Teammates also receive no less than 10 days of vacation (prorated based on date of hire and by full-time or part-time status) during their first year of employment, along with 10 sick days (also prorated), and paid holidays.
• Depending on the position and division, this job may also be eligible for Truist’s defined benefit pension plan, restricted stock units, and/or a deferred compensation plan.