×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity

Third-Party Cyber Risk Engineer III

Job in Columbus, Franklin County, Ohio, 43224, USA
Listing for: Western Alliance Bancorporation
Full Time position
Listed on 2026-03-12
Job specializations:
  • IT/Tech
    Cybersecurity
Salary/Wage Range or Industry Benchmark: 80000 - 100000 USD Yearly USD 80000.00 100000.00 YEAR
Job Description & How to Apply Below

Job Title:

Third-Party Cyber Risk Engineer III

Location:

OH - Columbus

What you’ll do:

As a Third-Party Cyber Risk Engineer III, you will independently and collaboratively manage cybersecurity risks across the Bank's third‑party ecosystem. You will lead technical assessments of third‑party services and clearly communicate findings to business partners and vendors. You will also help advance the team's efficiency and quality by introducing AI and automation into assessment, monitoring, and review processes. You'll partner with technology teams to design and implement modern solutions that strengthen the Third-Party Cyber Risk program.

The Third-Party Cyber Risk Engineer III is a technically strong cybersecurity professional who improves operational efficiency and performs in‑depth reviews of vendor environments, AI‑enabled capabilities, automated assessment outputs, and cloud architectures. The role supports Western Alliance Bank's Third‑Party Cyber Risk program by identifying material risks, validating control effectiveness, and ensuring alignment with regulatory requirements, internal security standards, and enterprise AI governance.

Success requires an analytical, skeptical mindset that helps uncover hidden risks among the Bank's third parties.

This role requires strong engineering, process‑improvement skills, knowledge of security frameworks, experience assessing third‑party cyber risk, and the ability to communicate complex technical topics across cyber, risk, and business teams. This position is in‑office only.

  • Perform technical cybersecurity assessments of third‑party vendors, including cloud security, IAM, application and data security, network security, security governance, and incident response capabilities.
  • Evaluate evidence and due‑diligence materials, including automated assessment outputs, SOC reports, penetration tests, policies, procedures, and AI‑related documentation, ensuring accuracy and completeness.
  • Manage identified cyber risks using a risk‑based approach, documenting control gaps and monitoring remediation through the third‑party lifecycle.
  • Develop and implement automation, dashboards, and AI‑enabled enhancements to improve assessment efficiency, evidence analysis, and overall program operations.
  • Support incident response involving third parties and help secure SaaS platforms by configuring monitoring tools, advising business teams, and driving remediation of compliance issues.
  • Produce clear technical findings and executive‑level reporting, and communicate risks with internal stakeholders and external vendors.
  • Maintain and improve program documentation, including policies, standards, and procedures.
  • Coordinate with SMEs to develop accurate, timely responses to due‑diligence inquiries from customers, rating agencies, and prospective clients, reflecting the Bank's security posture.
What you’ll need:
  • 5+ years of experience in cybersecurity, security engineering, or third‑party/vendor risk management, ideally within a regulated industry.
  • Bachelor's degree in Cybersecurity, Information Systems, Computer Science, or related field.
  • Entry level to intermediate knowledge of general Financial Services or Banking is preferred.
  • Solid understanding of authentication protocols SAML, SSO, and LDAP. Solid understanding of concepts regarding SIEM, SOAR, Firewall, Proxies, SSL/TLS, Secure Mail Gateways, Application Firewalls, NAC, Vulnerability Scanners, and EDR.
  • Intermediate to advanced understanding of logging infrastructure concepts: syslog; log parsing; log de‑duplication; methods for log pulling; RFC 5424; CEF Format; JSON; key‑value pair format; log enrichment; log maintenance; log troubleshooting.
  • Solid understanding of load balancers, DNS, SMTP, etc. for troubleshooting application functionality.
  • Intermediate to advanced knowledge of NIST, MITRE and Administration of either or all of an IT Automation platform, SOAR, Firewall, IAM platform, SIEM, cloud cyber defense platform etc.
  • Strong technical skills across cloud and application security, IAM/Zero Trust, network and endpoint security, and data protection.
  • Experience applying AI and automation (e.g., Power Automate) to improve workflows such as…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search