Thank you for your interest in a career at Regions. At Regions, we believe associates deserve more than just a job. We believe in offering performance-driven individuals a place where they can build a career --- a place to expect more opportunities. If you are focused on results, dedicated to quality, strength and integrity, and possess the drive to succeed, then we are your employer of choice.

Regions is dedicated to taking appropriate steps to safeguard and protect private and personally identifiable information you submit. The information that you submit will be collected and reviewed by associates, consultants, and vendors of Regions in order to evaluate your qualifications and experience for job opportunities and will not be used for marketing purposes, sold, or shared outside of Regions unless required by law. Such information will be stored in accordance with regulatory requirements and in conjunction with Regions’ Retention Schedule for a minimum of three years. You may review, modify, or update your information by visiting and logging into the careers section of the system.

Job Description:

At Regions, the Cyber Security Architect contributes to the advancement of Regions’ cyber security program and its capabilities through developing, communicating, and implementing a security architecture. This position establishes secure development practices which increases the security of internal systems. Additionally, this position collaborates closely with key stakeholders and teams as part of business projects and/or initiatives.

Primary Responsibilities

• Contributes to the development and establishment of a strategic cyber security architecture and strategic vision, including standards and frameworks that are aligned with the overall business and Regions’ information technology strategy

• Works closely with Enterprise Architecture and Application Development groups to enhance the security posture of new and existing systems

• Contributes to the design of cyber security architecture, evaluates and mitigates potential risk

• Assists with performing assessments using the National Institute of Standards and Technology (NIST) Cyber Security Framework and the Federal Financial Institutions Examination Council (FFIEC) Cyber Assessment Tool to identify gaps and remediate deficiencies

• Assists in ensuring systems and applications are implemented with compensating controls to meet regulatory requirements (e.g. GLBA, SOX, HIPPA, FFIEC, etc.) as well as other organizational compliance (PCI) requirements

• Tracks metrics for compliance to internal cyber security standards set by application and system owners

• May offer advice and guidance to junior architects

This position is exempt from timekeeping requirements under the Fair Labor Standards Act and is not eligible for overtime pay.

Requirements

• Bachelor’s degree in Computer Science, or related field

• Three (3) years of experience in cyber security, with a focus on software development, secure software development lifecycle (SDLC), or security architecture

Preferences

• Experience in the design and implementation of cyber security solutions

Skills and Competencies

• Ability to effectively evaluate risk vs. reward

• Ability to independently problem solve with sound judgement

• Ability to translate complex technical information across all levels of the organization through communications and/or presentations

• Ability to work in a team environment when applicable

• Knowledge of risks associated with virtualization and cloud-based computing and the impact of those technologies on an organizations security posture

• Knowledge of security principles, solutions, tools, methodologies, and techniques

• Proficiency in Microsoft Office (Excel, Word, PowerPoint, Outlook, etc.)

• Strong project management skills

• Strong verbal, written communication, and organizational skills

• Strong work ethic and self-motivation

*This position may be filled at a higher level depending on the candidate's qualifications and relevant experience.

*While this position will primarily work offsite, associate must be located within a reasonable driving distance to one of the following locations:

• Birmingham, AL

• Nashville, TN

• Atlanta, GA

• Charlotte, NC

• Dallas, TX

• Houston, TX

• Denver, CO

• Orlando, FL

• Tampa, FL

• Salt Lake City, UT

Regions will not provide relocation assistance for this position and would be at your own expense. Exceptions to the geographic location requirement may be made for current Regions associates who work remotely.

Additional job detail for this specific opportunity

• Develops and maintains identity access management capabilities with AWS and Azure

• Develops and maintains strategic identity access management capabilities such as secrets management, DNS, azure active directory, Okta

• Serves as Identity Access Management security subject-matter expert and provides advisory and consultative services to businesses, information technology groups, and cyber security senior leadership

• Works closely with Security/Enterprise Architecture and Application Development groups to enhance the security posture of areas related to IAM

Preferences

• Ten (10) years of experience in cyber security, with a focus on cloud IAM as well as various IDP’s

• Five (5) years of hands on experience with Hashicorp Vault, Terraform, AWS, Azure

• Experience in the design and implementation of IAM solutions for both on-premises and cloud environments

Position Type

Full time

Compensation Details

Pay ranges are job specific and are provided as a point-of-market reference for compensation decisions. Other factors which directly impact pay for individual associates include: experience, skills, knowledge, contribution, job location and, most importantly, performance in the job role. As these factors vary by individuals, pay will also vary among individual associates within the same job.

The target information listed below is based on the Metropolitan Statistical Area Market Range for where the position is located and level of the position.

Job Range Target:

Minimum:

$89,396.40 USD

Median:

$124,950.00 USD

Incentive Pay Plans:

This job is not incentive eligible.

Benefits Information

Regions offers a benefits package that is flexible, comprehensive and recognizes that "one size does not fit all" for benefits-eligible associates. (https://www.regions.com/about-regions/benefits/benefits-eligibility) Listed below is a synopsis of the benefits offered by Regions for informational purposes, which is not intended to be a complete summary of plan terms and conditions.

• Paid Vacation/Sick Time

• 401K with Company Match

• Medical, Dental and Vision Benefits

• Disability Benefits

• Health Savings Account

• Flexible Spending Account

• Life Insurance

• Parental Leave

• Employee Assistance Program

• Associate Volunteer Program

Please note, benefits and plans may be changed, amended, or terminated with respect to all or any class of associate at any time. To learn more about Regions’ benefits, please click or copy the link below to your browser.

https://www.regions.com/welcometour/benefits.rf

Location Details

Riverchase Operations Center

Location:

Hoover, Alabama

Bring Your Whole Self to Work

We have a passion for creating an inclusive environment that promotes and values diversity of race, color, national origin, religion, age, sexual orientation, gender identity, disability, veteran status, genetic information, sex, pregnancy, and many other primary and secondary dimensions that make each of us unique as individuals and provide valuable perspective that makes us a better company and employer. More importantly, we recognize that creating a workplace where everyone, regardless of background, can do their best work is the right thing to do.

OFCCP Disclosure: Equal Opportunity Employer/Disabled/Veterans

Job applications at Regions are accepted electronically through our career site for a minimum of five business days from the date of posting. Job postings for higher-volume positions may remain active for longer than the minimum period due to business need and may be closed at any time thereafter at the discretion of the company.