Skip to main content

Lead Information Security Engineer - Penetration Tester - Remote

Make banking a Fifth Third better®

We connect great people to great opportunities. Are you ready to take the next step? Discover a career in banking at Fifth Third Bank.

We connect great people to great opportunities. Are you passionate about security and ready to take the next step? Come join Fifth Third Bank and help us revolutionize Bank Security and build trust in a digital world.

The Lead Information Security Engineer will be focused on securing the enterprise by conducting application penetration testing on the Bank's application portfolio, and by partnering with the Application Development organization to remediate vulnerability findings. Additionally, this role will directly support the Vulnerability disclosure and Bug bounty program and participate in a variety of projects as part of the ongoing operations of the Information Security department.


+ Perform Penetration testing, including but not limited to WebApp and Mobile.

+ Support Vulnerability disclosure and Bug bounty program.

+ Perform dynamic application security testing using both manual and automated testing tools.

+ Identify and validate false positives from automated testing tool reports as part of SDLC.

+ Contribute to and enhance the bank's vulnerability management program.

+ Participate in conducting security research on threats and remediation techniques

+ Define security requirements and make recommendations to the IS/IT teams as part of governance during significant changes to applications and architecture.

+ Support the Bank's operational information security responsibilities, including the development maintenance of standards, procedures, and guidelines necessary to satisfy the Information Security department's operations.

+ Awareness of latest and common security threats.

+ Influence and work with stakeholders at all levels of the organization.

+ Mentor more junior members of the team.


+ 6+ years of information security applications and systems experience.

+ 5+ years of manual information security penetration testing tools, topics, and techniques

+ 1+ years of mobile (Android/IOS) penetration testing experience.

+ Must be well versed with OWASP Top 10 vulnerabilities.

+ Certifications such as GIAC (GWAPT, GPEN, GCPN), Offensive Security Certified Professional (OSCP) and AWS are preferred.

+ Skill in oral and written communication, including presentations to senior management, various levels of business and IT sponsors, and technical resources.

+ Knowledge in mitigating and addressing threat vectors including APT, DDoS, Phishing, Malicious Payload, Cloud, Mobile Device, Web Application.

+ Ability to handle multiple competing priorities in a fast-paced environment.

Lead Information Security Engineer - Penetration Tester - Remote

Total Base Pay Range 73,800.00 - 148,000.00 USD Annual

LOCATION -- Virtual, Ohio 00000

Fifth Third Bank, National Association is proud to have an engaged and inclusive culture and to promote and ensure equal employment opportunity in all employment decisions regardless of race, color, gender, national origin, religion, age, disability, sexual orientation, gender identity, military status, veteran status or any other legally protected status.

Introduce yourself to our team to stay connected on future opportunities. We look forward to finding the right place for you. Are you ready to take the next step?

Fifth Third Bank, National Association is one of the top-performing banks in the country, with a history that spans more than 150 years. We’ve staked our claim on looking at things differently to make banking a Fifth Third better. This applies to our relationships with customers and employees alike.We employ about 18,000 people while offering:• A chance for employees to build their future, with supportive career development and comprehensive health and financial wellness programs.• An environment where we win together by celebrating achievements and working collaboratively.• An opportunity to make a difference in a positive and lasting way. Everything we do is geared toward improving lives.We’re proud that Fifth Third is a warm and caring place to grow – as a customer and as a team member.

Lead Information Security Engineer - Penetration Tester - Remote

Full time
Cincinnati, OH

Published on 10/22/2022

Share this job now