Cloud Platform Security and Compliance Engineer

A recognized financial organization is seeking a Cloud Platform Security and Compliance Engineer to join their growing team in Charlotte, NC. This is a hybrid role, requiring 3 days/week onsite.

Responsibilities:

• Cloud container vulnerability scan: Partner with vulnerability management team to develop a viable solution and processes to scan and identify security vulnerabilities in the cloud container environments.


• Container Image Remediation and Cloud Security Posture Management (CSPM)


• Partner with ETO to establish protocols for container image hygiene, gating and develop a sustainable posture management strategy as we expand our cloud presence.

Qualifications:

• Experience developing security control requirements for public cloud platform services


• Deep knowledge of industry and regulatory compliance frameworks applicable to financial services workloads deployed in public cloud


• Experience with CSPM tool custom policy development and mapping those policies to framework requirement


• Desired skills


• Thorough understanding of AWS security concepts and principles


• Thorough understanding of GRC process requirements as they relate to public cloud security controls


• Certification in public cloud security and/or GRC.