Cloud Security Engineer

The Cloud Security Engineer position is a member of the Information Protection and Risk Management team and works closely with other members of the IPRM program to identify, manage, and mitigate security risks. The engineer is part of a broader team of security engineers reporting to the Director, Cloud Security who are responsible for developing, deploying, and integrating technical controls and tools to meet specific security requirements, as well as defining processes and standards to ensure that security configurations and tools are maintained. This is a project focused resource within the organization and will focus on designing and implementing both technologies and governance processes focused on our cloud platforms. This resource will have potential opportunity to transition into a longer-term engagement to continue to mature and improve the SaaS security service.

*The Work Itself*

Define and mature cloud-focused security policies and controls (governance, processes, frameworks)

Identify, Implement, and Operationalize security technologies and processes to improve visibility and reduce risk

Leverage data analytics to influence our cloud security posture

Partner with other technical leaders throughout the organization to refine and mature client's security posture for cloud-based technologies and platforms, as well as identifying and maturing our application security capabilities

Consult with project teams to ensure that platform architecture has proper security controls in place (focused on Cloud Providers / SaaS engagements)

Engage as needed in other Cloud Security efforts where skills may overlap: Cloud Platform Security and DevSecOps/Pipeline Security

*The Skills You Bring*

Demonstrated technical expertise in two or more technology areas (compute, storage, network, data, etc)

Experience as a software developer with knowledge of automation, Infrastructure as Code and DevOps + CI/CD tools and processes

Strong background in information security practices, controls, and governance (CISSP, CCSP, CCSK, and/or cloud provider security certification, and/or degree concentration/focus in information security preferred)

5+ years of experience as a technical resource within an IT organization (enterprise/ matrixed organization preferred)

2+ years of experience with cloud platforms (operational experience preferred for AWS, Azure, Google Cloud Platform, etc)

Strong soft skills: builds partnerships, translates complexities into simple terms, ability to maintain focus on objectives

We are an equal opportunity employer. All aspects of employment including the decision to hire, promote, discipline, or discharge, will be based on merit, competence, performance, and business needs. We do not discriminate on the basis of race, color, religion, marital status, age, national origin, ancestry, physical or mental disability, medical condition, pregnancy, genetic information, gender, sexual orientation, gender identity or expression, national origin, citizenship/ immigration status, veteran status, or any other status protected under federal, state, or local law.