Cloud Security Operations Engineer Security Mgt Specialist

Title: Cloud Security Operations Engineer Security Mgt Specialist Senior

Location : Manassas, VA

Description

Reporting to Global Security department this this role contributes to the company internal digital transformation in its evolving adoption of Hybrid Hosting Strategy and enhancing its Cloud Security capabilities. The ideal candidate will have experience defining and implementing security controls for an evolving cloud environment. This role will undertake moderately complex projects ensuring the security and compliance of Swift s cloud infrastructure, focusing on:

Definition of cloud security standards and procedures

Cloud security findings (vulnerabilities and configurations) lifecycle management

Operationalize new cloud security features and services designed and developed by the Cloud Platform Security Engineering team

Support workloads (application and infrastructure security) in their migration to cloud

Summary:

Reporting to the Global Security department, this role contributes to the company internal digital transformation in its evolving adoption of Hybrid Hosting Strategy and enhancing its Cloud Security practices. The ideal candidate will have experience defining and implementing security controls for an evolving cloud environment.

Job Description:

As a senior member of the team, you will undertake moderately complex projects ensuring the security and compliance of Swift s cloud infrastructure, compute, and network resources. You will also contribute to the definition of cloud security procedures/controls/policies, within established guidelines; ensuring they are effective and appropriate for SWIFT and its customers, and that they are consistent with the company objectives, company reputation and regulatory requirements.

Job responsibilities

• Define and maintain cloud security standards and procedures
• Manage cloud security findings (vulnerabilities and configurations)
• Operationalize new cloud security features and services designed and developed by the Cloud Platform Security Engineering team
• Support workloads (application and infrastructure security) in their migration to cloud
• Support day to day administrative and operational activities for vulnerability and configuration hardening management - assess and triage vulnerabilities and misconfigurations, evaluate security exceptions and risk scenarios
• Build an understanding of vulnerabilities and misconfigurations management process, related controls, and key roles and responsibilities.
• Create and maintain documents and flow charts to document processes
• Translate requirements and root cause fixes into Agile user stories or work items for cloud platform/workload engineers and developers
• Engage and work directly with application owners, onboard users to cloud security tools, provide user support, perform user acceptance tests, and troubleshoot cloud tool issues
• Develop automation to solve repeatable scenarios (eg reporting, reconfigurations, AWS lambda functions) preferably in Python

Technical Skills

• Experience with Cloud Security services, preferably AWS (Inspector, Security Hub, Config, Macie, Access Analyzer)
• Understanding of core cloud services (AWS S3, EC2, EKS, VPC, etc.) and container technologies
• Understanding of DevOps, Infrastructure as Code and IAM Permissions
• Experience with security vulnerability and configuration scan report analysis

Understanding of industry standards and compliance requirements, such as PCI-DSS, CIS