Senior Cloud Security Engineer - First Citizens Bank Raleigh, NC, USA Bookmark Share Print 1128 0 3

Listing Description

As a Senior Cloud Security Engineer, you will have an active role in helping design, plan and implement secure cloud migrations, as well as adopt new cloud technologies to support business and project needs. This is a highly technical position expected to serve as a subject-matter expert on the Microsoft Azure and Office 365 and AWS platforms. This will require the ability to work closely with architects, application teams and engineers to provide best practice guidance to properly secure the applications, data and cloud infrastructure of the Bank.

Additional Responsibilities:

• Gather and understand internal customer requirements to develop reliable, secure solutions.

• Research new cloud technologies/configurations to continually improve security posture.

• Develop test and implementation plans for new designs/configurations.

• Present ideas in business and user friendly language.

• Be a team player capable of high performance, flexibility in a dynamic working environment with the ability to lead and influence others.

• Ability to prioritize and execute tasks with minimal supervision.

Bachelor’s degree with a minimum of 6 years of experience in systems engineering, networking or information security technologies including at least 3 years of experience in an enterprise security environment.

-OR-

High school diploma or GED with a minimum of 10 years of experience in systems engineering, networking or information security technologies including at least 3 years of experience in an enterprise security environment.

Additional Requirements:

• Minimum of 5 years of security focused experience with

• Minimum of 3 years working with/implementing cloud solutions such as Azure, AWS, O365, Adobe and Okta.

• Experience working with cloud security management / governance tools, cloud services, cloud access security brokers and 3rd party hosted services.

• Strong understanding of Access roles within Azure AD.

• Knowledge of risk management standards and procedures.

• Proven ability to develop and implement information security strategies in large, complex organizations.

• Highly effective in developing and communicating audience appropriate information to technical, management, and executive audiences.

• Proven ability to anticipate and lead the response to cyber threats, attacks and vulnerabilities.

• Ability to lead and perform risk analysis for vulnerabilities, incidents and change management requests.

• Proven ability to quickly analyze large amounts of often conflicting data and make sound decisions in extremely stressful situations.

• Proven ability to build and maintain strong enterprise relationships with internal and external teams/resources.

• Prior experience that includes successful design, implementation and operation of enterprise information security service capabilities and functions in large scale, technically complex organizations.

• Experience with large and complex technical infrastructure networks.

• Strong knowledge of various platform technologies including internet, network, distributed systems, desktop computing, voice, and threat management technologies.

• In depth experience with enterprise security controls including malware, protection, firewalls, intrusion detection systems, content filtering, internet proxies, encryption controls, and log management solutions.

• Ability to work as part of a team and independently with limited supervision.

• Ability to prioritize work and meet deadlines.

• Ability to lead, mentor, and train others.

Financial services experience.

Preferred Qualifications

• Experience in a highly regulated industry sector (e.g. Government, Energy, Carrier-Telecommunications)

• IT security or Cloud certifications are preferred, to include, but not limited to: CISSP, CCSP, CCSK, Certified Cloud Professional/Architect, AWS Certified Solutions Architect, CompTia Cloud+, or VMware VCP1. Implement changes that adhere to the network security architecture that includes distinct zones to separate internal, external, and DMZ traffic segments to limit impact, should a security incident occur

2. Continually maintain and enhance the Banks security through the use of risk mitigation tools and techniques in order to enable secure integrated information systems that support the customers, clients, and Banks financial growth.

3. Participate as an active member in technical team to recommend and implement effective security configurations.

4. Participate in the change management process to ensure that firewall, web proxy, and other perimeter security tools enforce network security architecture decisions

5. Administer process and tools to detect, remove and defend against malicious software

6. Administer processes and tools that only permits trusted software to run on a device (whitelisting)

7. Administer processes and tools to prevent certain software from running on a device (blacklisting)

8. Administer processes and tools to identity unauthorized changes to secure configurations