Job ID | 2024-4965 | Category | Information Technology | Type | Full-Time | Workplace policy | Hybrid |
The Cloud Security Engineer must possess a diverse background in cloud infrastructure and solutions, particularly with Microsoft Azure. Their expertise should span engineering and deploying secure cloud-hosted solutions, migrating enterprise on-premise systems to the cloud, and optimizing networking and security configurations. Key responsibilities include designing robust security measures, migrating on-premise solutions to Azure, optimizing networking and security configurations, and leading incident response activities.
This role entails collaborating with other engineers and technical personnel to guarantee that solutions are scalable, dependable, and sustainable. As a member of the CSRM team, the engineer contributes to shaping and implementing a secure cloud strategy that aligns with CNB's IT and business objectives, ensuring the delivery of capabilities necessary for business success. They leverage their experience and independent judgment to effectively plan and execute tasks directly related to bank administration matters.
Principal Duties & Responsibilities:
Design, implement, and manage cloud security solutions to safeguard data, applications, and infrastructure in cloud environments.
Develop and enforce security policies, standards, and procedures to ensure compliance with regulatory requirements and industry best practices.
Collaborate with cross-functional teams to integrate security controls into cloud-based architectures and solutions.
Perform security assessments and audits of cloud environments and identify and remediate any security gaps or vulnerabilities where feasible.
Monitor and respond to security incidents and events in the cloud and collaborate with other teams to resolve issues and mitigate risks.
Oversees operating Cloud Workload Protection platforms like CSPM, CWPP, and SSPM, as well as enforcing policies and controls in alignment with configuration management and security posture management best practices.
Independently applies strong understanding of DevOps/DevSecOps principles and firsthand experience in CI/CD processes, Infrastructure-as-Code with Terraform, containerization, and Kubernetes.
Consulting with users on functional specifications, creates solutions that balance business requirements with Information/Cyber security requirements.
Serves as a Subject Matter Expert (SME), provides technical support in identifying, evaluating, and developing Cloud solutions and procedures that mitigate risk and meet business requirements.
Provides management updates, status reporting, and dashboards from a cloud platform security perspective to demonstrate progress and process maturity.
Drives the selection of appropriate tools and solutions, and also review and assess the utilization of cloud security tooling.
Applies in depth technical knowledge via certifications in cloud platforms and/or cyber security; examples include Azure Solutions Architect Expert, Azure Security Engineer Associate, Certified Cloud Security Professional (CCSP).
Identifies and communicates current and emerging cloud security threats.
Researches and identifies leading Cloud services (IaaS, PaaS, SaaS) to provide guidance and make recommendations based on a capability assessment.
Provides support for issues ranging from single-user issues to system-wide problems.
Performs other duties as assigned.