Principal Information Security Engineer
About The Position
The Principal Information Security Engineer is a highly influential, senior individual contributor who serves as the primary technical authority and strategic partner to Information Security leadership. This role plays a critical part in shaping, advancing, and operationalizing the enterprise security program--bridging strategy, risk, and execution across the organization. As a trusted advisor and hands‑on technical leader, you will design and drive scalable security solutions, guide complex initiatives, and strengthen the bank's security posture in a highly regulated environment. Success in this role is defined by technical excellence, influence, execution, and program maturity--not by formal people management.
Requirements
- Bachelor's degree in a technical or business‑related field, or equivalent experience
- 7+ years of progressive experience in information security, security engineering, or related technical roles
- Proven ability to lead through influence, expertise, and collaboration without formal authority
- Security+ required
- Deep understanding of security architecture, risk management, and defense‑in‑depth principles
- Experience with network security, IAM, endpoint security, vulnerability management, and logging/SIEM
- Knowledge of secure system design, threat modeling, and security testing practices
- Familiarity with regulatory and compliance frameworks applicable to banking and financial services
- Strong analytical and problem‑solving skills
- Ability to communicate complex technical concepts to technical and non‑technical audiences
- High degree of accountability, judgment, and discretion
- Ability to prioritize and execute in a fast‑paced, regulated environment
- Collaborative mindset with the confidence to challenge and influence decisions constructively
Nice To Haves
- CISSP, CISM, GIAC, or comparable advanced certifications strongly preferred
Responsibilities
- Act as the principal technical lead for the enterprise Information Security program
- Translate security strategy, risk decisions, and regulatory requirements into practical, repeatable technical solutions
- Provide technical leadership and prioritization across security initiatives and engineering efforts
- Serve as the primary escalation point for complex security engineering and architectural decisions
- Design, implement, and support security technologies including network security, vulnerability management, IAM, encryption, logging, and privileged access
- Embed security best practices into system design, infrastructure changes, and application implementations
- Partner with IT and business teams to assess risk and securely enable new technologies and integrations
- Support audits, regulatory exams, and security assessments through evidence collection and remediation planning
- Monitor security events and privileged activity; assist with incident response and investigation
- Mentor and guide team members through technical expertise, peer review, and knowledge sharing
- Contribute to the development and improvement of security policies, standards, and procedures
- Maintain awareness of emerging threats, security frameworks, and banking regulations
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
