Fifth Third BankRemote
Lead Staff Infosec - Platform Engineer
United States
Full-time
6 days ago
$82,000 - $172,000 USD
No H1B
Key skills
Information SecurityAgile LeadershipRisk AssessmentZero Trust ArchitectureIT Application OwnershipInformation Security ToolsIndustry Standard CertificationsMentoringCross-functional CollaborationContinuous LearningCommunication SkillsAgileCollaborationZero TrustFirewall
About this role
Fifth Third Bank is a financial institution that connects great people to great opportunities. They are seeking a Lead Information Security Engineer (ISE) responsible for managing InfoSec tools and ensuring operational stability while aligning with security policies and regulatory frameworks.
Responsibilities:
- Serve as Product Owner for one or more InfoSec tools
- Own and manage the product backlog, prioritizing features and enhancements based on business and security needs
- Translate business and security requirements into actionable user stories and acceptance criteria
- In partnership with the team's agilist, lead Agile ceremonies including sprint planning, backlog grooming, and retrospectives
- Collaborate with stakeholders to define user stories, acceptance criteria, and release plans
- Mentor more junior members of the team
- Act as the IT Application Owner for assigned InfoSec platforms, ensuring operational stability, scalability, and compliance
- Coordinate with Operations team to oversee lifecycle management, upgrades, patching, documentation, monitoring, and configuration standards
- Support the Bank's operational information security responsibilities, including the development maintenance of standards, procedures, and guidelines necessary to satisfy the Information Security department's network operations
- Assist in conducting risk assessments to evaluate the effectiveness of existing controls and determine the impact of proposed changes to business processes, applications and systems
- Provide technical support to internal and external auditors, as required, to respond to audits and examinations of the Bank's control environment
- Provide engineering support for Zero Trust architecture rollout, including identity, access, segmentation, and telemetry components
- Support efforts in End User Device Security, including Cisco ISE policies and Windows Firewall policies
- Partner with infrastructure, cloud, and application teams to embed security tooling into broader enterprise initiatives
- Ensure alignment with regulatory frameworks (e.g., NIST, ISO, SOC2) and internal security policies
- Seek and maintain knowledge (cross/up skill) of current and upcoming IT security technologies
- Communicate team vision, manage squad backlogs, prioritize needs, and drive cross team collaboration
- Collaborating with the team Agilist, InfoSec Engineers, Lines of Business, Risk and other key partners to define and maximize InfoSec products
- Provide transparency and ongoing communications with line of business partners/key stakeholders
- Evaluate team/stakeholder feedback to drive continuous improvement and customer satisfaction
- Working closely with the networking team to review and implement policies related to user device network access
- Working with end user device teams to review and implement end user device firewall policies
- Driving automation across the enterprise
- Working with IS Platform Operations to ensure resilient, monitored systems supported by quantitative metrics and reporting
- Driving continuous improvement and internal customer satisfaction
Requirements:
- Bachelor's degree in Computer Science/Information Systems or equivalent combination of education and experience
- At least 6 years of related experience, including at least 4 years in a hands-on information security development role
- Commitment to continuous learning and upskilling in IT security technologies
- Must be able to communicate ideas both verbally and in writing to management, business and IT sponsors, and technical resources in language that is appropriate for each group
- Experience leading Agile ceremonies (sprint planning, grooming, retrospectives)
- Experience with Information Security tools (ownership, backlog management, enhancements)
- Understanding of IT application ownership (lifecycle management, upgrades, patching, monitoring)
- Ability to conduct risk assessments and evaluate security controls
- Experience supporting audits and examinations (internal/external)
- Ability to mentor junior team members
- Strong cross-functional collaboration with infrastructure, cloud, and application teams
- Master's degree
- Industry Standard Certifications such as, but not limited to: CompTIA A+, CompTIA Network +, CompTIA Security +, ISC2 CISSP, and EWS
- Financial industry experience
- Experience with Lean Six Sigma
- Familiarity with Zero Trust architecture (identity, access, segmentation, telemetry)
- Familiarity with Cisco ISE and Windows Firewall