Job Description :
Job Description:
Desired Experience:7+ years
Desired Competencies (Technical/Behavioral Competency)
Must-Have
Technical:
7+ years of increasing responsibility Architecting, positioning and delivering cloud/internet facing applications.
Proven experience securing cloud software, platforms and/or infrastructures
Hands-on experience as an engineer or architect with public cloud technologies to include Amazon Web Services (AWS), Microsoft Azure and/or Google Cloud Platform.
Experience with the assessment, implementation, management and documentation of a broad set of information security technologies and processes (e.g., app security, data protection, access management, network security) within a cloud environment
Experience designing cloud security solutions, including creating artifacts, models, and strategy presentations
Experience with service-oriented architecture for cloud-based services
Experience working with cloud security management / governance tools, Cloud Access Security Brokers (CASB), cloud services and 3rd party hosted services, and server virtualization products
Solid understanding of the end-to-end information technology (IT) process, including architecture, design & engineering, implementation, and operations
Experience performing security design reviews to asses security implications for introduction of new or differing technologies within the environment
IT security (e.g., CISSP, CISM) and/or Cloud Security-related certifications (e.g., AWS, Google, Azure, etc
Excellent command of Cybersecurity organization practices, operations risk management processes, principles, architectural requirements, engineering threats and vulnerabilities, including incident response methodologies
Keen understanding of national and international laws, regulations, policies and ethics related to financial industry cybersecurity
Non-Technical:
Provide a detailed understanding of cloud security and cloud infrastructure services.
Possess significant breadth across other disciplines (e.g., enterprise security architecture, compute services, storage, large-scale networking, virtualization, data center, integration architecture (API), orchestration technologies (Openstack/Cisco), systems resiliency, service support, application development lifecycle management (DevOps), and service delivery
Lead through influence, communicate effectively through clarity of thought and demonstrated understanding of business and technical requirements.
Be a strong technologist with pragmatic view and creative mind, and a natural collaborator with line of business security architects, engineers, developers, application owners, service providers, and senior management.
Responsibility of / Expectations from the Role
1 As-Is state of Security Controls for Public Cloud (AWS) Instances
2 Interview with 33 stakeholder who own AWS accounts in SXM
3 Document current state like data flow / diagrams / end point technologies