Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Western Alliance Bank

Principal Engineer I, Cyber IT Security Governance

Western Alliance Bank

Principal Engineer I in Cyber - IT Security Governance at Western Alliance Bank. Driving cybersecurity governance and risk management initiatives with AI-driven solutions in complex environments.

Posted 6/3/2026full-timePhoenix • Arizona, Ohio, Texas • 🇺🇸 United StatesLeadWebsite

Tech Stack

Tools & technologies
Cyber SecurityPython

About the role

Key responsibilities & impact
  • Serve as a senior individual contributor responsible for leading and advancing the organization’s cybersecurity governance, risk management, and maturity initiatives
  • Drive complex, cross-functional initiatives that embed secure, compliant, and scalable practices into technology, data, and AI solutions
  • Design and implement governance frameworks, control structures, and engineering-enabled solutions that enhance the effectiveness, consistency, and automation of risk assessments, RCSAs, and control monitoring
  • Act as both a governance and technical authority, partnering closely with engineering, data, and risk teams
  • Own and lead cybersecurity governance initiatives spanning risk identification, control design, policy management, and maturity improvement
  • Drive execution of cybersecurity Risk & Control Self‑Assessments (RCSAs)
  • Partner with technology, security, and risk teams to drive improved and sustained maturity gains
  • Maintain traceability between risks, controls, assessment results, and remediation activities
  • Lead the development, maintenance, and rationalization of cybersecurity policies, standards, and procedures in alignment with industry best practices
  • Design, document, and maintain cyber risk statements, control descriptions, and control narratives suitable for audits and regulatory exams
  • Track and report on control performance, risk posture, and remediation progress using defined metrics and governance forums
  • Manage complex projects requiring coordination across IT, Information Security, ERM, Privacy, and Audit
  • Act as a trusted advisor to senior leaders on risk posture, maturity trends, and program health
  • Develop and maintain automation solutions to improve efficiency of risk assessments, control testing, and evidence collection
  • Drive integration of AI and automation into RCSA, CRI assessments, and risk reporting processes to improve scalability, consistency, and accuracy

Requirements

What you’ll need
  • 8+ years of related experience in Cybersecurity, Information Security Governance, IT Risk, or Enterprise Risk Management
  • Bachelor’s degree in Information Systems, Computer Science, Cybersecurity, Risk Management, or a related field
  • Masters or MBA in related field preferred
  • Advanced to expert experience with: Cyber Risk Management frameworks (NIST CSF, CRI Profile, FFIEC, ISO 27001 principles)
  • RCSAs, risk identification, control design, and residual risk assessment
  • Policy, standard, and procedure lifecycle management
  • Regulatory and audit engagement support in a financial services environment
  • Strong ability to translate complex technical and regulatory concepts into clear, defensible documentation
  • Proven experience managing cross functional initiatives with competing priorities
  • Expert speaking and writing communication skills
  • Demonstrated experience leveraging or governing AI/ML, automation, or advanced analytics within cybersecurity, risk, or compliance domains preferred
  • Strong understanding of data architectures, data flows, and system integrations, with the ability to assess associated cyber and privacy risks preferred
  • Familiarity with emerging regulatory expectations related to AI, model risk, and data usage in financial services preferred
  • Working knowledge of software engineering or scripting practices (e.g., Python, PowerShell, automation workflows) to support scalable governance solutions preferred
  • Strong analytical mindset with the ability to use data and automation to enhance risk identification, monitoring, and reporting preferred
  • Relevant industry certifications (e.g., CISA, CRISC, CISSP, CISM, CGEIT, ITIL) preferred.

Benefits

Comp & perks
  • competitive salaries
  • an ownership stake in the company
  • medical and dental insurance
  • time off
  • a great 401k matching program
  • tuition assistance program
  • an employee volunteer program
  • a wellness program

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
Cyber Risk Management frameworksNIST CSFCRI ProfileFFIECISO 27001 principlesRCSAsrisk identificationcontrol designresidual risk assessmentsoftware engineering
Soft Skills
strong analytical mindsetexpert speaking skillswriting communication skillsability to translate complex conceptsproven experience managing cross functional initiativesability to assess associated cyber and privacy risksstrong ability to document defensiblyability to use data and automationtrusted advisorcoordination across teams
Certifications
CISACRISCCISSPCISMCGEITITIL