M&T Bank
Lead Cybersecurity Engineer - SIEM
M&T Bank, Buffalo, New York, United States, 14266
This role offers
a
hybrid work schedule;
offering the flexibility to work from home two days a week, while providing the opportunity for in-person collaboration.At M&T Tech, we’re a team of makers, doers, and builders, working to create the most advanced technology solutions in banking. We’re not your stereotypical suit and tie bankers: we’re an innovative team of leading tech experts, pushing boundaries, and taking risks. We’re building an agile team of the most skilled and creative workers to solve complex problems, architect solutions, write high-performance software, and chart our new path, all to make the lives of our customers, and the communities that we serve, better. Join us and be part of something new as we build tomorrow’s bank, today.The Technology Infrastructure Engineering and Operations Team engineers and supports all the foundational technology used across M&T Bank. We support two Data Centers, 15,000 Distributed platforms, 24 Mainframe Regions, a secure and reliable Network connecting all the technology across the bank footprint and process approximately 635,000 automated jobs per month. In addition to that foundational technology level, we own the operational support processes, monitoring and command center that provide a unified, well-managed technology response when issues arise. We deliver innovative, and compelling technology solutions, in partnership with our line of business CIOs, to enhance the internal customer experience that enables our business partners to deliver.Overview:
We are seeking a highly skilled and experienced Senior SIEM Engineer to join M&T Bank as a key member of our Security Engineering team. As a Senior SIEM Engineer, you will be responsible for leading the design, implementation, and management of our Security Information and Event Management (SIEM) infrastructure. You will play a critical role in protecting the Bank's assets, ensuring the confidentiality, integrity, and availability of our systems, and detecting and responding to potential security threats. This is a senior-level position that requires exceptional technical expertise, strong leadership skills, and a deep understanding of SIEM technologies and best practices.Primary Responsibilities:
Lead the design and architecture of the bank's SIEM infrastructure, ensuring its effectiveness, scalability, and alignment with industry standards and regulatory requirements.Implement, configure, and optimize SIEM solutions to collect, correlate, and analyze security event data from various sources, such as network devices, servers, applications, and endpoints.Develop and maintain SIEM use cases, correlation rules, alerts, and reports to identify and prioritize security incidents and potential threats.Collaborate with other Cybersecurity and Security Engineering teams to investigate and resolve complex security incidents, conducting root cause analysis and recommending remediation actions.Stay up to date with the latest security threats, vulnerabilities, and industry trends, and proactively assess their potential impact on the bank's SIEM infrastructure.Lead SIEM-related projects, including system upgrades, enhancements, and integration with other security tools and technologies.Provide guidance and mentorship to junior SIEM engineers, promoting knowledge sharing and skill development within the team.Collaborate with internal stakeholders, such as IT operations, compliance, and risk management, to ensure the Bank's security posture is in line with industry standards and regulatory requirements.Participate in incident response exercises, tabletop simulations, and other security-related drills to enhance the bank's incident response capabilities.Regularly and independently interact with business partners of varying associate and management levels to ensure clarity of the problem/opportunity and elicit business requirements.Coordinate vendor interactions and/or vendor resources as needed.Seek to expand knowledge and understanding of Financial Services trends, practices, and technologies on a continuous basis.Follow and promote use of industry best practices, standards and procedures.Understand and adhere to the Company’s risk and regulatory standards, policies and controls in accordance with the Company’s Risk Appetite. Identify risk-related issues needing escalation to management.Promote an environment that supports diversity and reflects the M&T Bank brand.Maintain M&T internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators as applicable.Complete other related duties as assigned.Education and Experience Required:
Combined minimum of 8 years’ higher education and/or work experience in systems design, management and/or architecture.Strong understanding of the system development and infrastructure lifecycle and architecture, vendor best practices, IT Service Management, and systems design.In-depth knowledge of SIEM technologies (e.g., Splunk, IBM QRadar, Sumo Logic, Securonix), including design, implementation, and administration.Strong understanding of security principles, threat landscape, and incident response methodologies.Experience with scripting and programming languages (e.g., Python, PowerShell) for automating security tasks and developing SIEM use cases.Familiarity with regulatory standards (e.g., PCI DSS, GDPR, SOX) and their impact on security controls within the banking sector.Proficient in analyzing security logs, network traffic, and system events to identify and respond to security incidents.Education and Experience Preferred:
Bachelor’s Degree in Computer Science or Computer Engineering.Minimum of 8 years’ professional experience in a technical engineering position involving infrastructure design technologies, data management and interchange, system design and/or development for complex applications.Professional certifications in information security and SIEM technologies, such as CISSP, GIAC, or Splunk certifications, are highly desirable.We support our team members with generous benefits.Competitive compensationHealth, welfare, and retirement benefits401(k) match at 5%Work-life balance and flexible work arrangementsBanking Officers start with 25 days PTO plus 12 paid holidays40 hours paid volunteer hours per yearAbout M&TM&T Bank is a Top 20 US bank holding company and one of the best performing and financial stable regional banks in the country, we offer our technology employees a wide range of performance-based career development opportunities. We have a strong commitment to our customers and the communities we serve, and we continue to grow with a focus on the future. So, when looking to advance your career, look to M&T. Grow with us.
#J-18808-Ljbffr
a
hybrid work schedule;
offering the flexibility to work from home two days a week, while providing the opportunity for in-person collaboration.At M&T Tech, we’re a team of makers, doers, and builders, working to create the most advanced technology solutions in banking. We’re not your stereotypical suit and tie bankers: we’re an innovative team of leading tech experts, pushing boundaries, and taking risks. We’re building an agile team of the most skilled and creative workers to solve complex problems, architect solutions, write high-performance software, and chart our new path, all to make the lives of our customers, and the communities that we serve, better. Join us and be part of something new as we build tomorrow’s bank, today.The Technology Infrastructure Engineering and Operations Team engineers and supports all the foundational technology used across M&T Bank. We support two Data Centers, 15,000 Distributed platforms, 24 Mainframe Regions, a secure and reliable Network connecting all the technology across the bank footprint and process approximately 635,000 automated jobs per month. In addition to that foundational technology level, we own the operational support processes, monitoring and command center that provide a unified, well-managed technology response when issues arise. We deliver innovative, and compelling technology solutions, in partnership with our line of business CIOs, to enhance the internal customer experience that enables our business partners to deliver.Overview:
We are seeking a highly skilled and experienced Senior SIEM Engineer to join M&T Bank as a key member of our Security Engineering team. As a Senior SIEM Engineer, you will be responsible for leading the design, implementation, and management of our Security Information and Event Management (SIEM) infrastructure. You will play a critical role in protecting the Bank's assets, ensuring the confidentiality, integrity, and availability of our systems, and detecting and responding to potential security threats. This is a senior-level position that requires exceptional technical expertise, strong leadership skills, and a deep understanding of SIEM technologies and best practices.Primary Responsibilities:
Lead the design and architecture of the bank's SIEM infrastructure, ensuring its effectiveness, scalability, and alignment with industry standards and regulatory requirements.Implement, configure, and optimize SIEM solutions to collect, correlate, and analyze security event data from various sources, such as network devices, servers, applications, and endpoints.Develop and maintain SIEM use cases, correlation rules, alerts, and reports to identify and prioritize security incidents and potential threats.Collaborate with other Cybersecurity and Security Engineering teams to investigate and resolve complex security incidents, conducting root cause analysis and recommending remediation actions.Stay up to date with the latest security threats, vulnerabilities, and industry trends, and proactively assess their potential impact on the bank's SIEM infrastructure.Lead SIEM-related projects, including system upgrades, enhancements, and integration with other security tools and technologies.Provide guidance and mentorship to junior SIEM engineers, promoting knowledge sharing and skill development within the team.Collaborate with internal stakeholders, such as IT operations, compliance, and risk management, to ensure the Bank's security posture is in line with industry standards and regulatory requirements.Participate in incident response exercises, tabletop simulations, and other security-related drills to enhance the bank's incident response capabilities.Regularly and independently interact with business partners of varying associate and management levels to ensure clarity of the problem/opportunity and elicit business requirements.Coordinate vendor interactions and/or vendor resources as needed.Seek to expand knowledge and understanding of Financial Services trends, practices, and technologies on a continuous basis.Follow and promote use of industry best practices, standards and procedures.Understand and adhere to the Company’s risk and regulatory standards, policies and controls in accordance with the Company’s Risk Appetite. Identify risk-related issues needing escalation to management.Promote an environment that supports diversity and reflects the M&T Bank brand.Maintain M&T internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators as applicable.Complete other related duties as assigned.Education and Experience Required:
Combined minimum of 8 years’ higher education and/or work experience in systems design, management and/or architecture.Strong understanding of the system development and infrastructure lifecycle and architecture, vendor best practices, IT Service Management, and systems design.In-depth knowledge of SIEM technologies (e.g., Splunk, IBM QRadar, Sumo Logic, Securonix), including design, implementation, and administration.Strong understanding of security principles, threat landscape, and incident response methodologies.Experience with scripting and programming languages (e.g., Python, PowerShell) for automating security tasks and developing SIEM use cases.Familiarity with regulatory standards (e.g., PCI DSS, GDPR, SOX) and their impact on security controls within the banking sector.Proficient in analyzing security logs, network traffic, and system events to identify and respond to security incidents.Education and Experience Preferred:
Bachelor’s Degree in Computer Science or Computer Engineering.Minimum of 8 years’ professional experience in a technical engineering position involving infrastructure design technologies, data management and interchange, system design and/or development for complex applications.Professional certifications in information security and SIEM technologies, such as CISSP, GIAC, or Splunk certifications, are highly desirable.We support our team members with generous benefits.Competitive compensationHealth, welfare, and retirement benefits401(k) match at 5%Work-life balance and flexible work arrangementsBanking Officers start with 25 days PTO plus 12 paid holidays40 hours paid volunteer hours per yearAbout M&TM&T Bank is a Top 20 US bank holding company and one of the best performing and financial stable regional banks in the country, we offer our technology employees a wide range of performance-based career development opportunities. We have a strong commitment to our customers and the communities we serve, and we continue to grow with a focus on the future. So, when looking to advance your career, look to M&T. Grow with us.
#J-18808-Ljbffr