Principal Information Security Engineer

About this Role The Principal Information Security Engineer is a highly influential, senior individual contributor who serves as the primary technical authority and strategic partner to Information Security leadership. This role plays a critical part in shaping, advancing, and operationalizing the enterprise security program--bridging strategy, risk, and execution across the organization. As a trusted advisor and hands-on technical leader, you will design and drive scalable security solutions, guide complex initiatives, and strengthen the bank's security posture in a highly regulated environment. Success in this role is defined by technical excellence, influence, execution, and program maturity--not by formal people management. In this Role You Will Act as the principal technical lead for the enterprise Information Security program Translate security strategy, risk decisions, and regulatory requirements into practical, repeatable technical solutions Provide technical leadership and prioritization across security initiatives and engineering efforts Serve as the primary escalation point for complex security engineering and architectural decisions Design, implement, and support security technologies including network security, vulnerability management, IAM, encryption, logging, and privileged access Embed security best practices into system design, infrastructure changes, and application implementations Partner with IT and business teams to assess risk and securely enable new technologies and integrations Support audits, regulatory exams, and security assessments through evidence collection and remediation planning Monitor security events and privileged activity; assist with incident response and investigation Mentor and guide team members through technical expertise, peer review, and knowledge sharing Contribute to the development and improvement of security policies, standards, and procedures Maintain awareness of emerging threats, security frameworks, and banking regulations Qualifications, Competencies and SkillsEducation & Experience Bachelor's degree in a technical or business-related field, or equivalent experience 7+ years of progressive experience in information security, security engineering, or related technical roles Proven ability to lead through influence, expertise, and collaboration without formal authority Certifications Security+ required CISSP, CISM, GIAC, or comparable advanced certifications strongly preferred Technical Competencies Deep understanding of security architecture, risk management, and defense-in-depth principles Experience with network security, IAM, endpoint security, vulnerability management, and logging/SIEM Knowledge of secure system design, threat modeling, and security testing practices Familiarity with regulatory and compliance frameworks applicable to banking and financial services Professional & Leadership Competencies Strong analytical and problem-solving skills Ability to communicate complex technical concepts to technical and non-technical audiences High degree of accountability, judgment, and discretion Ability to prioritize and execute in a fast-paced, regulated environment Collaborative mindset with the confidence to challenge and influence decisions constructively

Created: 2026-03-04