Senior Security Engineer

Cybersecurity Engineer

Designs and develops advanced technical and cybersecurity capabilities across all phases of the software development lifecycle, including threat modeling, security testing, and penetration testing. Plans, builds, and enhances cybersecurity technologies by baselining systems, analyzing trends, and preparing for future requirements to deliver reliable, scalable, and secure technology solutions with major impact on the job area.

Essential Duties and Responsibilities Following is a summary of the essential functions for this job. Other duties may be performed, both major and minor, which are not mentioned below. Specific activities may change from time to time.

• Designs and implements advanced cybersecurity solutions that protect critical assets within the job area, contributing to the technical approach for complex implementations while aligning to established strategies and patterns.
• Performs and enhances threat modeling, security testing, and penetration testing for high-risk platforms and services in scope, applying innovative techniques to uncover and remediate significant vulnerabilities.
• Integrates and configures information security technologies in production environments, defining and improving configuration patterns, automation, and handoff processes for the assigned domain.
• Serves as a key technical point of escalation for challenging security issues, diagnosing recurring problems and creating reusable solutions that improve how the team operates.
• Assesses emerging security threats, tools, and architectural options, and provides recommendations that shape technical plans, priorities, and goals for the job area.
• Collaborates with product and engineering teams to apply modern security architecture, secure-by-design practices, and governance controls throughout the local development lifecycle.
• Develops and maintains security baselines, guardrails, and control patterns for systems and applications in the area of responsibility, contributing to approaches that support regulatory and policy compliance.
• Leads the technical execution of major incident response and forensic activities within the job area, coordinating tasks, leveraging tooling effectively, and suggesting improvements to playbooks and processes.
• Provides guidance, coaching, and technical training to other security engineers, leading code and design reviews and sharing best practices that elevate team capability.
• Leads large or complex security engineering initiatives within the job area, delegating work to lower-level technical professionals, reviewing outputs, and ensuring delivery meets agreed objectives.

Qualifications

Required Qualifications: The requirements listed below are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

• Bachelor's degree or equivalent education, training, and work-related experience.
• Minimum of 7 years of experience in security engineering or related cybersecurity roles.
• Deep specialized knowledge in cybersecurity principles, theories, and concepts.
• Proven experience in software development lifecycle security practices.
• Deep knowledge of threat modeling, security testing, and penetration testing.
• Experience implementing and managing complex information security technologies.

Preferred Qualifications:

• Master's degree or MBA and ten years of experience or an equivalent combination of education and work experience.
• Banking or financial services experience.
• Other security certifications (e.g. CCNA Security, GSEC, GCED, GPPA, etc.)
• Other technical Certifications (e.g. CCNA, RHCE, MCSE, etc.)
• Certification in Information Security Management (e.g. Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC) or Certified Information Security Manager (CISM)), or related security certification(s)

Truist is an Equal Opportunity Employer that does not discriminate on the basis of race, gender, color, religion, citizenship or national origin, age, sexual orientation, gender identity, disability, veteran status, or other classification protected by law. Truist is a Drug Free Workplace.