Regions Bank Vulnerability Assessment Engineer in Hoover, Alabama

Thank you for your interest in a career at Regions. At Regions, we believe associates deserve more than just a job. We believe in offering performance-driven individuals a place where they can build a career --- a place to expect more opportunities. If you are focused on results, dedicated to quality, strength and integrity, and possess the drive to succeed, then we are your employer of choice.

Regions is dedicated to taking appropriate steps to safeguard and protect private and personally identifiable information you submit. The information that you submit will be collected and reviewed by associates, consultants, and vendors of Regions in order to evaluate your qualifications and experience for job opportunities and will not be used for marketing purposes, sold, or shared outside of Regions unless required by law. Such information will be stored for a set period of time. You may review, modify, or update your information by visiting and logging into the careers section of the system.

Job Description:

At Regions the Information Security Engineer is responsible for the research, technical analysis, recommendation, configuration, and administration of systems and procedures to ensure the protection of information processed, stored or transmitted.

Primary Responsibilities

•Provides security design, consultation, and technology governance oversight for various projects and initiatives

•Provides assistance to system users relative to information systems security matters

•Undertakes complex projects requiring additional specialized technical knowledge

•Acts as information liaison to various business units and information technology departments

•Acts as a resource for direction, training and guidance for less experienced staff

This position is exempt from timekeeping requirements under the Fair Labor Standards act and is not eligible for overtime pay.


•High school diploma or GED and ten years experience

•Bachelors degree in a related field and eight years experience

•Must be able to prioritize assignments while working on multiple projects

•Must have excellent writing and oral communication skills


•Certified Information Systems Security Professional (CISSP), Microsoft Certified Systems Engineer (MCSE) or other industry certification

Additional Job Description:

Required Qualifications

  • Bachelor’s degree in a technical field, ten years experience in Information Security or Information Technology, or a combination of education and relevant experience.

  • Experience with automated and manual tools used to find system and web application vulnerabilities such as Nmap, Nexpose, Tenable, Qualys, Fortify on Demand, Veracode Kali, WebInspect, etc.

  • Advanced knowledge of system and/or web application vulnerabilities and risk assessment methodologies such as Common Vulnerability Scoring System (CVSS) and OWASP Risk Rating Methodology.

  • Ability to think outside the box and emulate adversarial approaches

  • Demonstrated ability to work well independently with little input and as part of a team

  • Capable of articulating complex technical concepts or scenarios to both technical and non-technical audiences

  • Project management skills: must be able to manage concurrent projects through standard delivery phases of information gathering, assessment, and reporting.

Preferred Qualifications

Certified Ethical Hacker (CEH), GIAC Web Application Penetration Tester (GWAPT), GIAC Penetration Tester (GPEN)


Hoover, Alabama


About Regions

At Regions, our culture focuses on five core values that are a commitment to how we will do business:

  • Put people first

  • Do what is right

  • Focus on your customer

  • Reach higher

  • Enjoy life

Through these values, our mission to make life better drives our desire to improve and make a positive difference in the communities where we work and live through financial investments and volunteering.