Apply on Employer Site

TransPecos Banks, SSB · 6 hours ago

Information Security Engineer

San Antonio, TX

Full-time

Onsite

Senior Level, Lead/Staff

8+ years exp

TransPecos Banks is seeking an Information Security Engineer who will be responsible for designing, implementing, and maintaining security solutions to protect the bank's systems, data, and infrastructure. This role involves supporting threat detection, vulnerability management, incident response, and compliance with financial industry regulations using a modern banking tech stack.

Financial ServicesInsuranceVenture Capital

H1B Sponsor Likely

Responsibilities

Design and manage security controls across hybrid environments (on-prem + cloud)

Implement and maintain security tools and technologies including: Firewalls, Endpoint Protection, Security Incident Management and Threat Intelligence, Data Loss Prevention, Identity & Access Management

Collaborate with DevOps to embed security in the SDLC and CI/CD pipelines including code testing and scanning (DAST/SAST)

Lead Vulnerability Management processes including conducting regular vulnerability scans, penetration tests, and consistent processes for timely remediation

Perform ongoing, day to day monitoring, logging, and disposition of security alerts to ensure timely response to security vulnerabilities and threats

Mature threat intelligence strategy, analyze threat intelligence feeds and respond to emerging threats in accordance with the bank's risk and threat landscape

Track remediation efforts in alignment with defined service level objectives

Manage processes for investigating, escalating, and resolving security alerts from SIEM and EDR platforms

Implement and enforce secure logging and monitoring standards

Lead forensic analysis and containment efforts

Maintain playbooks and runbooks for incident response

Ensure compliance with federal and state banking security regulations and security industry standards including but not limited to FFIEC, NIST, GDPR, HIPAA, PCI-DSS, OWASP and SOC 2

Support internal and external audits

Maintain documentation for security controls and processes

Lead cyber risk and threat intelligence reporting including relevant Key Performance Indicators (KPIs) and Key Risk Indicators (KRIs)

Secure workloads cloud environments and continuously maintain a proactive cloud security posture aligned to regulatory expectations and industry standards

Support third party security risk assessments and internal enforcing security requirements

Carries out responsibilities in a manner consistent with our values and operating principles, in accordance with policy and applicable laws, and with a commitment to commitment to continuous improvement and process excellence

Any other duties as assigned

Qualification

AWSAzureSecurity Incident ManagementVulnerability ManagementSecurity ArchitectureCISSPDevOpsSIEMIncident ResponseCompliance StandardsPythonCuriosityCommunication SkillsLeadership SkillsInterpersonal SkillsDetail-oriented

Required

Bachelor's degree in Computer Science, Engineering, Management Information Systems, or related field

Deep expertise building, securing, monitoring, and scaling workloads in AWS, Azure, and MuleSoft

Deep understanding of security principles, best practices, and compliance standards including OWASP top 10, NIST CSF 2.0, and other industry frameworks

Demonstrated ability to implement and enforce security policies and practices

Proficiency with implementing, configuring, and managing security tools to optimize technology enablement including SIEM, EDR, DLP, IDS, Vulnerability Management and AWS cloud security tools (i.e., MXDR, AWS Cloud Security, Nightfall, New Relic, MS Azure, Purview, Defender, etc.)

Experience with Terraform and Infrastructure as Code including creating and maintaining modules

Proficiency with maintaining SDLC processes with CI/CD tooling in accordance with financial services regulatory expectations and industry standards

Strong understanding of networking, encryption, access controls, and authentication mechanisms

Proficiency with networking concepts, security best practices, and compliance standards

Strong scripting experience in Python, PowerShell, Bash, or other scripting language

CISSP, CISM, CEH, GIAC, Microsoft SC-200, or equivalent

Experience with Agile methodologies and leading Agile teams

Ability to analyze information and make logical recommendations

Preferred

Experience working in Information Security at a bank or in another highly regulated industry

8+ years working in information or cyber security departments at a financial services institution or other highly regulated industry

5+ years of relevant experience in DevOps, SecOps, or similar roles, with a strong focus on AWS cloud services

3+ years of experience in a leadership role

3+ years of experience in one or more domains in security: Security Architecture and Engineering, Incident Response and Monitoring, Threat and Vulnerability Management

Company

TransPecos Banks, SSB

TransPecos Banks, SSB is a Texas state savings bank headquartered in San Antonio, Texas.

Founded in 1924

San Antonio, Texas, USA

51-200 employees

http://transpecosbanks.com

H1B Sponsorship

TransPecos Banks, SSB has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2025 (1)