Cyber Security Engineering Manager

Thank you for your interest in a career  Regions, we believe associates deserve more than just a job. We believe in offering performance-driven individuals a place where they can build a career – a place to expect more opportunities. If you are focused on results, dedicated to quality, strength and integrity, and possess the drive to succeed, then we are your employer of choice.

At Regions, the Cyber Security Manager is responsible for leading a diverse team of engineers and analysts charged with the daily operations of enforcing, monitoring, and managing cyber security controls to protect the assets of the bank, customers, and associates. This role monitors the domains of security controls including, but not limited to, malware defense, network security, Internet security, security analytics, threat intelligence and defense, cybercrime, data protection, vulnerability management, and customer authentication.

• Develop cyber security architecture/designs, controls, processes, standards, and strategies to ensure alignment with Information Security standards, emerging threats, and overall Information Security strategy.
• Develop and implement incident response protocols for ongoing threats and attacks.
• Communicate status of current threat environment, incidents, and projected threats to senior management and executives.
• Manage the evaluation and testing of hardware, firmware, and software for possible impact on systems security.
• Coordinate with other managers to integrate Information Security project components with other projects including application development, network, server, and mainframe.

• Collaborate with Enterprise and Security architecture to design and implement custom controls and engineering strategies to ensure alignment with Information Security standards and the overall technology roadmap.
• Lead the oversight of secure AWS cloud deployments, ensuring infrastructure-as-code (IaC) and cloud-native services meet regulatory and security compliance standards.
• Coordinate with Enterprise and Security Architecture to implement governance, threat modeling, and security guardrails for Generative AI (GenAI) initiatives, ensuring the safe adoption of LLMs and AI-driven applications.
• Manage a team of engineers through the full Software Development Life Cycle (SDLC), overseeing the development, testing, and deployment of custom security code and automation tools.
• Implement the architectural design of complex networking environments, including hybrid-cloud connectivity, micro-segmentation, and software-defined networking (SDN) security.
• Integrate security seamlessly into developer workflows using Agile methodologies and CI/CD pipelines, treating security controls as production-grade software.

This position is exempt from timekeeping requirements under the Fair Labor Standards Act and is not eligible for overtime pay.
Incentive eligibility: Yes.

• Bachelor's degree in a related field and six (6) years of related experience.
• Or High School Diploma or GED and ten (10) years of related experience.

• Two (2) years of lead or supervisory/managerial experience.
• Experience managing Information Technology and/or Information Security projects.
• Experience with security operations and incident response/handling.

• Ability to prioritize assignments while working on multiple projects.
• Demonstrated ability to effectively engage project teams and leadership within a corporate setting.
• Excellent writing and oral communication skills.
• Strong ability to predict and plan for unknown threats.
• Strong ability to work well with others and place a premium on the group’s success.
• Strong technical aptitude skills.

• Four (4) years of lead or supervisory/managerial experience.
• Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), AWS Certified Security – Specialty, AWS Certified AI Practitioner, or other industry certification.
• Proficiency in modern programming and scripting languages (e.g., Python, Go, Java, Terraform) used for custom tool development.
• Good understanding of current internal and external cyber threats to the financial services sector.
• Demonstrated experience securing AWS environments and containerized workloads (Kubernetes/EKS) via code and automation.
• Experience managing engineering teams within Agile/Scrum frameworks (Jira, Confluence) and maintaining high-velocity CI/CD pipelines.
• Familiarity with Generative AI risks (e.g., prompt injection, data leakage) and engineering defenses against them.
• Experience managing Information Technology and/or Information Security projects.
• Strong technical aptitude in cloud networking concepts (DNS, TCP/IP, BGP, VPNs, Direct Connect).
• Deep understanding of the SDLC and software engineering principles (version control, code review, unit testing).
• Proficiency in adapting security engineering practices to…