Third-Party Cyber Risk Engineer II

Job Title:

Location:

What you'll do:

• Perform technical cybersecurity assessments of thirdparty vendors, including cloud security, IAM, application and data security, network security, security governance, and incident response capabilities.

• Evaluate evidence and duediligence materials, including automated assessment outputs, SOC reports, penetration tests, policies, procedures, and AIrelated documentation, ensuring accuracy and completeness.
• Manage identified cyber risks using a riskbased approach, documenting control gaps and monitoring remediation through the thirdparty lifecycle.
• Develop and implement automation, dashboards, and AIenabled enhancements to improve assessment efficiency, evidence analysis, and overall program operations.
• Support incident response involving third parties and help secure SaaS platforms by configuring monitoring tools, advising business teams, and driving remediation of compliance issues.
• Produce clear technical findings and executivelevel reporting and communicate risks with internal stakeholders and external vendors.
• Maintain and improve program documentation, including policies, standards, and procedures.
• Coordinate with SMEs to develop accurate, timely responses to duediligence inquiries from customers, rating agencies, and prospective clients, reflecting the Bank's security posture.

What you'll need:

• 3 years of experience in cybersecurity, security engineering, or thirdparty/vendor risk management, ideally within a regulated industry.

• Bachelor's degree in Cybersecurity, Information Systems, Computer Science, or related field.

• Intermediate knowledge of secure authentication protocols (e.g., Oauth2, SAML, etc.), SIEM/SOAR, network security technologies (e.g., firewalls, proxies, IDS/IPS), vulnerability and code scanners, and endpoint protection controls (e.g., EDR).

• Strong technical skills across cloud and application security, IAM/Zero Trust, network and endpoint security, and data protection.

• Strong understanding of the secure use of third-party-hosted applications.

• Experience applying AI and automation (e.g., Power Automate) to improve workflows such as evidence analysis, document review, task execution, and reporting; additional experience building analytics using Power BI preferred.

• Knowledge of AI/ML security risks-including LLM governance, dataingestion controls, modelrisk considerations-and experience reviewing SOC reports, automated assessment outputs, and technical evidence.

• Working knowledge of security frameworks such as ISO 27001/27002, NIST CSF, NIST SP 80053, SOC reporting, and SIG/SCA.

• Strong communication, organization, and attentiontodetail skills, with the ability to manage multiple assessments and crossfunctional deadlines.

• Relevant certifications (CISA, CRISC, CISM, CISSP, or CTPRP) preferred.

• Experience with vendorrisk and security platforms (e.g., ServiceNow, SecurityScorecard, ProcessUnity, Recorded Future) preferred.

• Experience leading third-party risk assessments and identifying and communicating risks that third-party engagements pose.

Benefits you'll love:
We offer all the important things you'd want - like competitive salaries, an ownership stake in the company, medical and dental insurance, time off, a great 401k matching program, tuition assistance program, an employee volunteer program, and a wellness program. In addition, you'll have the opportunity to bolster your business knowledge, learning the ins and outs of how successful companies operate and manage their finances, giving you invaluable hands-on experience to help grow your career!

About the company:

Western Alliance Bank is a wholly owned subsidiary of Western Alliance Bancorporation. Alliance Bank of Arizona, Alliance Association Bank, Bank of Nevada, Bridge Bank, First Independent Bank, and Torrey Pines Bank are divisions of Western Alliance Bank; Member FDIC. AmeriHome Mortgage is a Western Alliance Bank company.

Western Alliance Bancorporation is committed to equal employment and will consider all qualified applicants without regard to race, sex, color, religion, age, nation origin, marital status, disability, protected veteran status, sexual orientation, gender identity or genetic information. Western Alliance Bancorporation is committed to working with and providing reasonable accommodations for individuals with disabilities. If you are an individual with a disability and require a reasonable accommodation to complete any part of the application process and/or need an alternative method of applying, please email HR@westernalliancebank.com or call 602-386-2488. When contacting us, please provide your contact information and state the nature of your accessibility issue. We will only respond to inquiries concerning requests that involve a reasonable accommodation in the application process.

Western Alliance Bancorporation