W2 Role || Cloud Security Operations Engineer

Role: Cloud Security Operations Engineer

Location: Manassas, VA-Hybrid (3 days a week onsite)

Duration: 12+month

This is a hybrid role from day 1 , minimum 3 days a week onsite.

***We can only consider W2 candidates for this role***

Description

Reporting to Global Security department this this role contributes to the company internal digital transformation in its evolving adoption of Hybrid Hosting Strategy and enhancing its Cloud Security capabilities. The ideal candidate will have experience defining and implementing security controls for an evolving cloud environment. This role will undertake moderately complex projects ensuring the security and compliance of Swift s cloud infrastructure, focusing on:

Definition of cloud security standards and procedures

Cloud security findings (vulnerabilities and configurations) lifecycle management

Operationalize new cloud security features and services designed and developed by the Cloud Platform Security Engineering team

Support workloads (application and infrastructure security) in their migration to cloud

Summary:

Reporting to the Global Security department, this role contributes to the company internal digital transformation in its evolving adoption of Hybrid Hosting Strategy and enhancing its Cloud Security practices. The ideal candidate will have experience defining and implementing security controls for an evolving cloud environment.

Job Description:

As a senior member of the team, you will undertake moderately complex projects ensuring the security and compliance of Swift s cloud infrastructure, compute, and network resources. You will also contribute to the definition of cloud security procedures/controls/policies, within established guidelines; ensuring they are effective and appropriate for SWIFT and its customers, and that they are consistent with the company objectives, company reputation and regulatory requirements.

Job responsibilities

Define and maintain cloud security standards and procedures

Manage cloud security findings (vulnerabilities and configurations)

Operationalize new cloud security features and services designed and developed by the Cloud Platform Security Engineering team

Support workloads (application and infrastructure security) in their migration to cloud

Support day to day administrative and operational activities for vulnerability and configuration hardening management - assess and triage vulnerabilities and misconfigurations, evaluate security exceptions and risk scenarios

Build an understanding of vulnerabilities and misconfigurations management process, related controls, and key roles and responsibilities.

Create and maintain documents and flow charts to document processes

Translate requirements and root cause fixes into Agile user stories or work items for cloud platform/workload engineers and developers

Engage and work directly with application owners, onboard users to cloud security tools, provide user support, perform user acceptance tests, and troubleshoot cloud tool issues

Develop automation to solve repeatable scenarios (eg reporting, reconfigurations, AWS lambda functions) preferably in Python

What will make you successful?

We are seeking professionals with:

5+ years of relevant work experience

Bachelor s degree in computer science, Information Systems or a related field

Technical Skills

Experience with Cloud Security services, preferably AWS (Inspector, Security Hub, Config, Macie, Access Analyzer)

Understanding of core cloud services (AWS S3, EC2, EKS, VPC, etc.) and container technologies

Understanding of DevOps, Infrastructure as Code and IAM Permissions

Experience with security vulnerability and configuration scan report analysis

Understanding of industry standards and compliance requirements, such as PCI-DSS, CIS.

Soft Skills

Analytical Thinking: Ability to analyze security threats and vulnerabilities and develop effective mitigation strategies.

Problem-Solving: Strong problem-solving skills to address and resolve security issues promptly.

Communication: Clear communication skills, both verbal and written English, to collaborate with team members, stakeholders, and clients.

Continuous Learning: Staying updated with the latest security trends, threats, and AWS updates.

Autonomous, driven, with strong ability to quickly adapt and respond to change.

Customer oriented and security mindset we continually strive to deliver true customer value.

Open-minded, solutions oriented, and a true team player.

Response type

Cloud core services (AWS S3, EC2, EKS, VPC)- Senior (6-9years of exp)

Analytical Thinking: Ability to analyze security threats and vulnerabilities and develop effective mitigation strategies-Senior (6-9 years of exp) Cloud security services (Inspector, Security Hub, Config, Macie)- Senior (6-9 years of exp)