We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search
#alert
Back to search results / More jobs like this
Back to search results
New
First Citizens Bank jobs

Cyber Security Engineer II (Remote)

First Citizens Bank
United States, North Carolina, Raleigh
4300 Six Forks Road (Show on map)
Jun 25, 2026
Overview

This is a remote role that may only be hired in the following locations: Arizona, Texas or North Carolina.

The Cyber Risk Reduction (CRR) team operates with a start-up mindset inside the bank: fast-paced, high-ownership, collaborative, and focused on delivering measurable security outcomes. The team is responsible for reducing identity and access risk across the enterprise by improving visibility, identifying control gaps, and enabling actionable remediation.

As a Cyber Security Engineer II on the CRR team, you will support the rollout of Veza, the bank's Identity Risk Identification platform. Veza is being integrated across the bank's application portfolio to improve visibility into identities, entitlements, roles, permissions, and access relationships. The team is currently scaling this effort across hundreds of applications and building the query logic needed to surface identity-focused risks, including IAM standards violations, excessive access, privileged access, and segregation-of-duties concerns.

This role is ideal for someone who is curious, dependable, detail-oriented, and eager to grow in identity security, access governance, and risk reduction. You will work directly with application teams, Cyber Risk Reduction partners, and internal stakeholders to onboard applications into Veza, validate integration quality, and help build queries that transform raw access data into actionable risk insights.


Responsibilities

  • Veza Application Integrations
    • Coordinate with application owners and technical teams to onboard applications into Veza.
    • Support integration planning, information gathering, validation, and follow-up activities.
    • Confirm that integrated applications produce accurate and meaningful identity, entitlement, role, and permission visibility.
    • Identify gaps in integration data quality and work with application teams or internal partners to resolve issues.
    • Track integration progress and ensure assigned onboarding work moves forward consistently.
  • Veza Query Building and Identity Risk Identification
    • Build and validate Veza queries to identify identity-focused risks across integrated applications.
    • Develop queries that help detect violations of IAM standards, excessive access, privileged access, non-human identity risks, and segregation-of-duties concerns.
    • Partner with senior team members and stakeholders to translate risk scenarios into accurate Veza query logic.
    • Validate query results for accuracy, explainability, and usefulness before promoting queries for broader use.
    • Help maintain a library of reusable queries, patterns, and documentation for common identity risk use cases.
  • Documentation, Tracking, and Auditability
    • Maintain accurate records of integration work, query development, testing, decisions, and follow-ups in Jira and team tracking artifacts.
    • Create and contribute to SOPs, implementation guides, troubleshooting documentation, and knowledge articles in Confluence and SharePoint.
    • Ensure work is documented in a way that supports auditability, handoff, operational continuity, and future process improvement.
    • Keep trackers and status artifacts current, complete, and easy for others to understand.
  • Collaboration and Stakeholder Engagement
    • Work directly with application teams, identity teams, cyber risk partners, and other internal stakeholders.
    • Participate actively in meetings, standups, working sessions, and integration discussions.
    • Ask thoughtful questions, clarify requirements, and surface blockers early.
    • Help create a collaborative environment where application teams understand the purpose and value of Veza onboarding.
    • Build strong working relationships through professionalism, accountability, and follow-through.
  • Professional Communication
    • Communicate clearly and professionally in emails, Jira tickets, meeting notes, documentation, and status updates.
    • Provide timely updates on assigned work, including progress, blockers, risks, and next steps.
    • Tailor communication appropriately for technical and non-technical audiences.
    • Follow up consistently and ensure commitments are completed or escalated when needed.
  • Integrity, Ownership, and Continuous Improvement
    • Demonstrate strong personal ownership and reliability in all assigned work.
    • Do the right thing, even when the right path is slower, more complex, or requires additional diligence.
    • Look for opportunities to improve processes, reduce manual effort, increase quality, and improve team execution.
    • Proactively seek feedback, learn from teammates, and contribute to a culture of trust, accountability, and continuous improvement.

Be a self-starter and self-learner, proactively seeking opportunities to develop and improve skills and knowledge.


Qualifications

Bachelor's Degree and 4 years of experience in Systems Engineering, Network, or Information Security OR High School Diploma or GED and 8 years of experience in Systems Engineering, Network, or Information Security

Required Skills

  • Strong integrity, ownership, reliability, and follow-through.
  • Demonstrated ability to work independently while staying aligned with team priorities and expectations.
  • Strong desire to learn and grow in identity security, access governance, and cyber risk reduction.
  • Proactive approach to learning, including reading vendor documentation, researching issues, and asking thoughtful questions.
  • Familiarity with identity and access management concepts, including:
    • Accounts
    • Users
    • Groups
    • Roles
    • Entitlements
    • Permissions
    • Least privilege
    • Privileged access
    • Segregation of duties
  • Ability to evaluate competing priorities and make sound decisions in the best interest of the project and team.
  • Comfort working directly with application teams, business stakeholders, and technical partners.
  • Strong written communication skills, including clear documentation, concise status updates, and professional ticket comments.
  • Experience using ticketing, tracking, or documentation platforms such as Jira, ServiceNow, Confluence, SharePoint, or similar tools.
  • Strong attention to detail and commitment to maintaining accurate trackers, documentation, and audit trails.
  • Basic understanding of cybersecurity risks, vulnerabilities, attacker techniques, and control concepts.

Preferred Qualifications (Not Required)

  • Experience with the Veza platform, especially:
    • Application integrations
    • Query Builder
    • Access graph concepts
    • Identity risk queries
    • Enrichment rules or tagging
  • Experience with identity governance, identity security, IAM, PAM, or access review processes.
  • Experience working with application onboarding, access modeling, entitlement discovery, or identity data mapping.
  • Familiarity with Okta, Active Directory, Azure AD, ServiceNow, SailPoint, CyberArk, or similar identity/security platforms.
  • Python scripting experience, especially for:
    • API integrations
    • Data transformation
    • Automation
    • Building OAA connectors or similar integration patterns
  • Familiarity with REST APIs, JSON, OAuth, SAML, SCIM, or other integration concepts.
  • Experience working in Agile environments, including standups, backlogs, sprint planning, user stories, and acceptance criteria.
  • Experience analyzing data in Excel, Power Query, or similar tools to reconcile application, identity, or access datasets.

Expectations for Success

  • Consistent progress and frequent updates on assigned work, including Veza integrations and query-building tasks.
  • Clear, timely, and professional communication with the team and stakeholders.
  • Strong documentation hygiene, including complete Jira updates, clear notes, and auditable work history.
  • Ability to learn Veza platform concepts and apply them to real identity risk scenarios.
  • Accuracy and care when validating integration outputs and query results.
  • Proactive engagement in meetings, working sessions, and team discussions.
  • Willingness to raise blockers early and ask for help when needed.
  • Strong follow-through on commitments and ownership of assigned outcomes.
  • Growth in knowledge of IAM, identity risk, and risk reduction concepts.
  • Contributions to team efficiency through process improvements, documentation, reusable patterns, or lessons learned.

Ideal Candidate Profile

  • Takes ownership and follows through.
  • Communicates clearly and professionally.
  • Enjoys solving ambiguous problems.
  • Is comfortable learning a new platform deeply.
  • Can work with both technical and non-technical stakeholders.
  • Pays close attention to detail.
  • Understands that high-quality documentation is part of the work, not separate from the work.
  • Is interested in identity security, access governance, and reducing real cyber risk across the enterprise.

Benefits are an integral part of total rewards and First Citizens Bank is committed to providing a competitive, thoughtfully designed and quality benefits program to meet the needs of our associates. More information can be found at https://jobs.firstcitizens.com/benefits.

Applied = 0
MORE JOBS LIKE THIS

(web-77cf7d65c7-4rhzf)