Team Lead, Sr. Security Operations Engineer

About The Position

Requirements

• 7+ years of experience in cybersecurity engineering, security architecture, or advanced network security roles.
• Hands-on expertise with NAC implementation, ZTNA solutions, network segmentation, firewall modernization, and datacenter security.
• Strong understanding of authentication, authorization, and identity management principles.
• Experience securing cloud or hybrid environments (Azure/AWS/GCP).
• Excellent communication skills and ability to partner with technical and non-technical stakeholders.
• Must be eligible to work in the U.S. without requiring sponsorship now or in the future.

Nice To Haves

• Experience in financial services or other regulated industries.
• Relevant certifications such as PCNSE, PCNSA, CISSP, CCSP, CCNA, GSEC, GCIH, GCIA, or similar.
• Experience with threat modeling, secure design reviews, and architecture governance processes.
• Familiarity with automation/scripting for security tasks (Python, PowerShell, Ansible, etc.).
• Knowledge of cloud services and their attack surface.

Responsibilities

• Lead the secure design and architecture of enterprise security solutions supporting major projects such as NAC deployment, ZTNA rollout, network segmentation, firewall redesign, and datacenter modernization.
• Develop and maintain detailed security architecture diagrams, design documents, and implement runbooks.
• Evaluate and define technical security requirements for new systems, platforms, and integrations.
• Serve as the security engineering lead for cross-functional project teams, ensuring alignment with Customers Bank’s security strategy and compliance requirements.
• Design and provide consultative support for Bank IT's implementation of ZERO Trust models across users, devices, networks and applications.
• Collaborate with infrastructure and networking teams to implement least-privilege segmentation strategies.
• Support datacenter migration projects by defining secure connectivity, workload isolation, and inter-environment trust models.
• Provide expert guidance on enterprise firewall modernization, next-gen firewall policy restructuring, and traffic flow analysis.
• Oversee configuration and tuning of network security controls including IPS/IDS, WAF, Secure Web Gateways, and endpoint security platforms.
• Enhance security monitoring and detection use cases related to new security architectures.
• Ensure solutions adhere to regulatory and industry standards (FFIEC, FDIC, NIST, ISO 27001, PCI, etc.).
• Participate in risk assessments, architecture reviews, and threat modeling sessions for new and existing technology initiatives.
• Develop documentation, standards, and operational procedures aligned with best practices.
• Evaluate emerging technologies and recommend improvements to strengthen the bank’s security posture.
• Mentor junior engineers and serve as an internal subject-matter expert for security best practices.
• Contribute to post-implementation reviews and lessons-learned processes to enhance future project delivery.