FREE ACCESS
5,000–10,000 jobs/day
See all jobs on JobTailor
Search thousands of fresh jobs every day.
Discover
- Fresh listings
- Fast filters
- No subscription required
Create a free account and start exploring right away.
Engineer I – Cyber, Third Party Risk Engineer
Western Alliance BankCybersecurity Engineer responsible for third-party risk assessments at Western Alliance Bank. Analyzing vendor environments to validate security controls and assess risks in alignment with regulatory standards.
Tech Stack
Tools & technologiesCloudCyber SecurityFirewallsPython
About the role
Key responsibilities & impact- Responsible for reviews of vendor environments, AI‑enabled capabilities, automated assessment outputs, and cloud architectures
- Supports Western Alliance Bank’s Third‑Party Cyber Risk program by identifying material risks, validating security controls, and ensuring alignment with regulatory standards, internal cyber requirements, and enterprise AI governance patterns
- Perform cybersecurity assessments of third‑party vendors, focusing on common security domains, including cloud security, IAM, application security, data protection, network security, DevSecOps, and incident response
- Analyze automated assessment results, SOC reports, policies, procedures, penetration tests, and AI‑related documentation to validate evidence accuracy and completeness
- Identify, document, and assess cyber control gaps in third-party environments; request clarification or supplemental evidence where needed; and record planned remediation plans
- Track remediation progress, escalate unresolved issues, and support incident response activities involving third‑party providers
- Produce high-quality cyber risk findings, summaries, and executive reporting
- Partner with Subject Matter Experts (SMEs) to develop accurate, timely responses to due-diligence inquiries from credit rating agencies, customers, and prospective clients
- Respond to incoming cyber due diligence requests from credit rating agencies, prospective and current bank clients
- Identify and support opportunities to enhance program maturity through the use of automation, AI, reporting, and other capabilities
Requirements
What you’ll need- 2+ years of experience in cybersecurity, vendor risk management, or security engineering, preferably within a regulated industry
- Bachelor's degree in related field required
- Entry level knowledge of general Financial Services or Banking is preferred
- Entry level to intermediate understanding of Python, PowerShell, Firewall, Proxies, SSL/TLS, Secure Mail Gateways, Application Firewalls, NAC, Vulnerability Scanners, EDR, SIEM and Bash
- Solid understanding of authentication protocols SAML, SSO, SOAR and LDAP
- Entry level to intermediate knowledge of major security frameworks (ISO 27001/27002, NIST CSF, NIST SP 800‑53, SOC reports, SIG/SCA)
- Experience reviewing SOC audits, automated assessment outputs, and technical risk evidence
- Entry level to intermediate knowledge of NIST, MITRE and Administration of either or all of an IT Automation platform, SOAR, Firewall, IAM platform, SIEM, cloud cyber defense platform etc
- Intermediate written and verbal communication skills, with the ability to work independently and collaborate effectively across teams
Benefits
Comp & perks- competitive salaries
- ownership stake in the company
- medical and dental insurance
- time off
- great 401k matching program
- tuition assistance program
- employee volunteer program
- wellness program
ATS Keywords
✓ Tailor your resumeApplicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
cybersecurityvendor risk managementsecurity engineeringPythonPowerShellFirewallProxiesSSL/TLSapplication firewallsNAC
Soft Skills
written communicationverbal communicationindependent workcollaboration
Certifications
Bachelor's degreeISO 27001NIST CSFNIST SP 800-53