Principal Cyber Security Platform Engineer

Jack Henry is a technology company focused on redefining financial services for community banks and credit unions. They are seeking a Principal Cyber Security Platform Engineer to enhance their security posture across cloud and on-prem environments, leveraging deep cybersecurity expertise to safeguard infrastructure and customer data.

Responsibilities:

• Build and operate security observability and monitoring capabilities, including SIEM, SOAR, and log aggregation, to enable real-time threat detection and response
• Develop and tune detection rules, alerting, and dashboards to improve visibility, response times, and security KPIs
• Implement and enforce security controls across multi-cloud environments (AWS, Azure, GCP), leveraging CSPM, CWPP, and CNAPP solutions to protect cloud infrastructure and workloads
• Develop infrastructure-as-code and policy-as-code guardrails to ensure secure, consistent cloud deployments
• Embed security into CI/CD pipelines, integrating tools such as SAST, DAST, SCA, and container scanning to advance DevSecOps practices and reduce vulnerabilities early
• Partner with engineering teams on secure coding, threat modeling, and vulnerability remediation efforts
• Support incident response and threat management, including escalation, investigation, and continuous improvement of playbooks and response processes
• Implement and enhance identity and access management (IAM), including zero-trust principles, least-privilege access, MFA, and privileged access controls
• Identify and mitigate security risks, ensuring alignment with regulatory and compliance requirements (SOC 2, PCI-DSS, FFIEC, NIST), while mentoring engineers and driving adoption of scalable security practices
• May perform other job duties as assigned

Requirements:

• Minimum of 15 years of progressive experience in cyber security or site reliability engineering
• Minimum of 5 years of hands-on experience with cloud platforms (AWS, Azure, or GCP) in a security-focused capacity
• Minimum of 5 years of experience in cyber detection and incident response
• Minimum of 3 years of experience with security observability and monitoring tools (SIEM, log management, APM)
• Demonstrated experience in DevSecOps practices
• Bachelor's degree in Computer Science, Cyber Security, Information Technology, Computer Engineering, or a closely related technical field
• Strong knowledge of networking fundamentals (TCP/IP, DNS, TLS/SSL, VPN, firewalls, load balancers)
• Experience with container technologies (Docker, Kubernetes) and their associated security challenges
• Working knowledge of regulatory frameworks relevant to financial services (PCI-DSS, SOC 2, FFIEC, NIST 800-53)
• Familiarity with offensive security concepts, penetration testing methodologies, and red/blue/purple team exercises
• Experience in the financial services or fintech industry with knowledge of banking regulations and compliance requirements
• Experience with security automation and orchestration (SOAR) platforms
• Hands-on experience with zero-trust network architectures and micro-segmentation technologies
• Background in threat hunting, digital forensics, or malware analysis
• Experience leading or mentoring security engineering teams
• Contributions to open-source security tools or active participation in industry security communities (DEF CON, BSides, OWASP chapters)