Configuration Assurance Engineer II

TheConfiguration Assurance Engineer II positionis an individual contributorroleon the Enterprise Security Architecture team, aligned to the Bank's Secure Configuration Management program. The Engineer willbe responsible forensuring the Bank's core technologies are consistently and securely configured; and that drift from these configurations isidentified, tracked, and remediatedin a timely manner.

The ideal candidate willpossessa deep technical understanding of fundamental security principles, but also commonly used operating systems, database platforms, and/or cloud service providers.In addition, the candidate will employ a proactive, preventative, and collaborative mindset to partner with technology teams, converge on "the right" configurations, and ensure risk-oriented action.

This is a remote role that may be hired in several markets across the United States.

**Remote with ability to travel to Raleigh, North Carolina, Phoenix, Arizona or Morristown, New Jersey, on an as needed basis.

• Serve as a technical subject matter expert for secure configuration management across enterprise platforms, including servers, endpoints, cloud, and supporting infrastructure.
• In partnership with technology owners, define secure configuration baselines in alignment with Industry best practices,the threat landscape,operational realities/constraints,and the Bank's risk appetite.
• When tailoring isthought necessary,tactfully challenge the need through technical risk assessment, evaluation of alternative and/or compensating controls, andproviding recommendation(s).
• Administer, configure, and tuneautomated compliance toolstovalidatesecure configuration controls, ensureaccuratecoverage, and reduce false positives.
• Configure andmaintainsecure configuration policies withinautomated compliance tools, including mapping controls to internal standards and industry benchmarks.
• Identify, assess, and remediate realized or looming systemic issuesacross thespan of the program (e.g., fidelity of reporting; false positives)to includethe open-exchange offorwards-looking perspectives on tactical and strategic opportunities.

• BachelorsDegree and 4 years of experience in Cyber Securityor TechnologyengineeringOR High School Diploma or GED and 8 years of experience in Cyber Securityor Technologyengineering.

• Strong knowledge of core OS and DB technology platforms- demonstrable experience in hardening said technologies in an Enterprise environment.

• Demonstrated ability to pressure-test disabled or deviated configuration controls, assess security impact, and evaluate compensating controls

• Hands-on experience administering and tuningautomated compliance scanning tools, including configuration policy setup, scan validation, and results analysis.

• Experiencevalidatingsecure configuration remediation through technical evidence review.

• Working knowledge of scripting tools to support validation, troubleshooting, and automation.

• Excellent communication and documentation skills.

• Ability to work collaboratively with technical and non-technical stakeholders.

Preferred:

• 6+ years of experience supporting secure configuration management, system hardening, or security control validation.

• Experience working in the banking or financial services industry is a plus.

• Certifications such as Security+, SSCP, CISA, CISM, CISSP, CRISC.

• Knowledge of issue tracking and reporting tools like Jira or Confluence.

The base pay for this position is generally between $105,000 and $160,000. Actual starting base pay will be determined based on skills, experience, location, and other non-discriminatory factors permitted by law. For some roles, total compensation may also include variable incentives, bonuses, benefits, and/or other awards as outlined in the offer of employment.

This job posting is expected to remain active for 45 days from the initial posting date listed above. If it is necessary to extend this deadline, the posting will remain active as appropriate. Job postings may come down early due to business need or a high volume of applicants

Benefits are an integral part of total rewards and First Citizens Bank is committed to providing a competitive, thoughtfully designed and quality benefits program to meet the needs of our associates. More information can be found at https://jobs.firstcitizens.com/benefits.