In order to search for jobs specifically for CAIA Charterholders or those pursuing the CAIA Charter please enter “CAIA” in the search panel.
This will enable you to search for CAIA specific roles globally.
Business Function Group Technology and Operations (T&O) enables and empowers the bank with an efficient, nimble and resilient infrastructure through a strategic focus on productivity, quality & control, technology, people capability and innovation. In Group T&O, we manage the majority of the Bank's operational processes and inspire to delight our business partners through our multiple banking delivery channels. We are looking for a Cloud Security Engineer who can provide hands-on technical engineering of the growing cloud chaos engineering security program, across multiple providers. You will work closely with our Cloud Engineering team as well our Cloud Operations team to help build secure and robust controls. Role Description The Cloud Security Engineer provides cyber security expertise in the analysis, assessment, development, and evaluation of security controls to our public cloud environment. Additionally, the Cloud Security Engineer assists in the development of cyber security requirements, conducts security risk assessments, evaluates security services and technologies, test chaos engineering methodology in the area of public cloud for the Bank. Responsibilities
Serves as the subject matter expert (SME) on Cloud Security & Chaos Engineering
Develops security experiments and procedures as well as best practices documentation.
Participate in efforts that tailor the company's security policies and standards for use in cloud environments
Propose and/or design technical solutions, which include creating prototypes and proofs of concept while maintaining a security mindset
Work closely with cloud platform engineers to deliver creative solutions to complex technology challenges and business requirements.
Automate security controls, data and processes to provide better metrics and operational support
Utilize cloud-based APIs when appropriate to write network/system level tools for securing cloud environments
Stay current on emerging security threats, vulnerabilities and controls.
Identify and Implement new security technologies and best practices into Cloud offerings
Test and implement Chaos Engineering principles for delivery of highly available & reliable software on cloud platforms
Identify detect and remediate failures in security controls by executing continuous instrumentation and validation of security capabilities
Bachelor's degree in related business or technical areas, or an equivalency of education and work experience.
Minimum of 5-7 years of IT Security and/or security engineering experience
5-7 years related experience in Computer Security, with proven focus on Cloud Security. Clear passion for Cloud Security and Cloud technologies.
Must have experience with virtualization (cloud or non-cloud)
Expert knowledge of Cloud infrastructure, security architectures, and standards
Deep technical knowledge of Amazon Web Services and Google Cloud Platform
Able to demonstrate clear understanding of current threats to Cloud infrastructure and/or IT infrastructures at technical and managerial levels
Able to automate/script daily tasks through Python, Bash or equivalent
Experience with web-based applications or web-services
Proficient in Linux system design, automation and operations
Experience in designing and implementing standards, specifications and procedures.
Demonstrated ability to take initiative and accountability for achieving results.
Strong interpersonal, oral, and written communication skills
Knowledge of network and web related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols)
Very detailed knowledge of system security vulnerabilities and remediation techniques