Requirements
The Cloud Security team is looking for a Senior Information Security Engineer, Cloud to join our team to design and implement cloud-native and cloud-agnostic security solutions in support of the Client's cloud security strategy. This position will focus on enabling business opportunities by ensuring the secure deployment of Client applications and services. The ideal candidate is passionate about cybersecurity policies and governance, highly motivated, intellectually curious, and analytical.
In this role you will:
Perform technology evaluations, supporting business case development, test case definition, and vendor selection based on industry-standard criteria
Support the designing, testing, and implementation of complex security solutions to meet security and regulatory requirements for cloud environments
Consult with development and operational teams to securely design applications and services following industry best practices
Cultivate and maintain working relationships with a variety of internal stakeholders, including business owners, end-users, customers, project managers, engineers, and senior leadership
Demonstrate a working knowledge of information security principles, theories, and concepts
Perform security analysis of application architectures and cloud services
Identify methods to mitigate threats, attacks, and risks to payment applications
All About You
The ideal candidate for this position should have:
Knowledge of Cloud security including relevant hands-on experience (Azure and/or AWS preferred)
Knowledge of information security, risk management, and data privacy within the domain of digital commerce including relevant practical experience
Knowledge of security capabilities and constraints related to deploying cloud native and multi-cloud applications and infrastructure
Good Understanding of firewalls, threat prevention and detection, and application security principles
Good understanding of applied cryptography and Public Key Infrastructures (PKI)
Good understanding of identity management, user authentication and authorization principles
Demonstrated technical competency in security engineering based on hands-on experience or relevant qualifications
Demonstrated effectiveness working in a global environment
Ability to communicate effectively (both oral and written) and develop solid working relationships across multiple levels and organizational boundaries
NICE Framework References
National Initiative for Cybersecurity Education (NICE) competency proficiency levels of limited in leadership, limited to developing in operational and professional, and developing to proficient in technical.
This Client role shares KSAs with related NICE work roles (
o SP-DEV-002, OPM622, Secure Software Assessor
o SP-ARC-002, OPM652, Security Architect
o SP-TRD-001, OPM661, Research & Development Specialist
o SP-SRP-001, OPM641, Systems Requirements Planner
o SP-SYS-001, OPM631, Information Systems Security Developer
Senior Information Security Engineer (Cloud) Cybersecurity, Information Security, cloud security, firewalls, data privacy, relationships, security strategy, secure deployment, PKI, Public Key, authentication, identity management,vendor selection, cryptography