×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Data Security

Principal Governance Analyst - Application Security

Job in Cincinnati, Hamilton County, Ohio, 45208, USA
Listing for: Fifth Third Bank
Full Time position
Listed on 2026-02-15
Job specializations:
  • IT/Tech
    Cybersecurity, Data Security
Salary/Wage Range or Industry Benchmark: 60000 - 80000 USD Yearly USD 60000.00 80000.00 YEAR
Job Description & How to Apply Below

Make banking a Fifth Third better®
We connect great people to great opportunities. Are you ready to take the next step? Discover a career in banking at Fifth Third Bank.

General Function

The Principal Governance Analyst – Application Security is responsible for leading governance, policy, and control oversight for cloud, container, orchestration, and AI/ML security across the Bank. This advanced professional role provides authoritative guidance on security controls, documentation quality, regulatory alignment, and structured governance processes. The role partners closely with engineering, architecture, risk, compliance, and audit stakeholders to ensure defensible, consistent, and scalable governance practices for modern technology platforms.

Supervisory

Responsibilities

None

Essential Duties and Responsibilities
  • Lead the governance framework for cloud, container, orchestration, and AI security by ensuring that risks, controls, and processes are aligned with regulatory expectations, audit requirements, and internal control frameworks. Produce clear, complete, and defensible documentation that provides a repeatable record of risks, controls, and processes and ensures the Bank maintains audit‑ready materials that withstand regulatory scrutiny.
  • Drive the development, simplification, and consolidation of policies and standards across cloud, containerization, virtualization, orchestration, and AI/ML platforms. Ensure these requirements are clear, enforceable, and aligned to real engineering workflows so they can be implemented consistently and effectively.
  • Act as the authoritative reviewer for third‑party governance responses, assessing non‑conforming items, identifying meaningful risk, and partnering with SMEs and control owners to determine appropriate actions.
  • Execute structured governance review cycles with engineering leaders for security tooling, guardrails, and platform standards; manage socialization, feedback, and alignment processes.
  • Represent Information Security in Bank‑wide and cross‑functional working groups, providing a strong point of view on secure‑by‑design principles and surfacing platform‑level risks early.
  • Improve governance workflows for scale and consistency by supporting and refining ad hoc review and approval processes. Ensure workflows support growth, resiliency, and engineer‑friendly execution.
  • Other duties as required.
Required Minimum Knowledge, Skills, and Abilities
  • Strong understanding of cloud security (e.g., AWS), container security, and container orchestration (Kubernetes preferred).
  • Working knowledge of AI/ML security risks, model lifecycle considerations, and emerging regulatory expectations.
  • Experience translating technical designs, risks, and controls into documentation suitable for auditors, regulators, and senior leadership.
  • Experience writing or maintaining policies, standards, or control documentation in a regulated environment.
  • Ability to challenge respectfully, influence decision makers, and take a clear position when ambiguity exists.
  • Demonstrated ability to partner effectively with senior engineers and architects without needing to be the deepest SME.
  • Strong understanding of audit processes and what mature controls and evidence look like.
  • Ability to run structured working sessions, facilitate decisions, and drive closure.
  • Excellent communication skills, with the ability to simplify complex technical topics for diverse audiences.
Preferred
  • Experience in a financial services or similarly regulated environment.
  • Familiarity with NIST CSF, PCI DSS, CSA CCM, NIST 800‑53, FFIEC, OCC, or other regulatory frameworks.
  • Hands‑on experience with cloud or container platforms in a past engineering, architecture, or security role.
  • Experience with security tooling across cloud, containers, or software development (e.g., CSPM, container scanning, DAST).
  • Prior experience as a security lead, governance analyst, or control owner in a large enterprise.
Compensation and Benefits

Principal Governance Analyst – Application Security
Total Base Pay Range: 96,500.00 –  USD Annual
The base salary for this position is reflective of the range of salary levels for all roles within this pay grade across the U.S.…

To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search