Senior Cloud Security Engineer - 9742 and 9741

Professional Recruiters

Sandy, Utah

JOB DETAILS
SKILLS
Amazon Web Services (AWS), Analysis Skills, Asset Management, Biology, Brokerage, CCNA - Cisco Certified Network Associate, CISA - Certified Information Systems Auditor, CISM - Certified Information Security Manager, CISSP - Certified Information Systems Security Professional, Cloud Computing, Commercial Banking, Communication Skills, CompTIA Security+, Computer Science, Computer Security, Conflict Resolution, Control Objectives for Information and related Technology (COBIT), Corporate Finance, Defense in Depth, Financial Services, Firewalls, Fund Management, GIAC - Global Information Assurance Certification, Government Standards, Healthcare, ISO (International Organization for Standardization), ITIL (IT Infrastructure Library), Information Technology & Information Systems, Information/Data Security (InfoSec), Infrastructure as a Service (IaaS), Internet Security, Intrusion Detection Systems, Intrusion Prevention Systems, Investment Services, Java, Leadership, Linux Operating System, Maintain Compliance, Management of Information Systems/Technology (MIS), Mentoring, Microsoft Windows Operating System, Network Architecture/Engineering, Open Systems Interconnection (OSI), PCI, PCI-DSS, PHP Scripting Language (PHP Hypertext Preprocessor), Penetration Testing, Presentation/Verbal Skills, Private Banking, Private Cloud, Private Wealth Management, Problem Solving Skills, Public Cloud, Python Programming/Scripting Language, Regulations, Requirements Management, Risk Analysis, Risk Management, Sarbanes-Oxley Act (SOX), Security Architecture, Security Information and Event Management (SIEM), Software Engineering, Subnetting, TCP/IP (Transmission Control Protocol/Internet Protocol), Technical Support, U.S. National Institute of Standards and Technology (NIST), Unix Shell Programming, Venture Capital, Windows PowerShell, Writing Skills
LOCATION
Sandy, Utah
POSTED
Today

Sr Cloud Security Engineer, Salt Lake City, Santa Clara, Tempe


Our clients are the game changers, leaders and investors who fuel the global innovation economy. They’re the businesses behind the next medical breakthroughs. And the visionaries whose new technologies could transform the way people live and work.


They come to The Company for our expertise, deep network and 30+ years of experience in the industries we serve, and to partner with diverse teams of passionate, enterprising The Company is dedicated to an inclusive approach to helping them grow and succeed at every stage of their business.


Join us at The Company and be part of bringing our clients’ world-changing ideas to life. At The Company, we have the opportunity to grow and collectively make an impact by supporting the innovative clients and communities The Company serves. We pride ourselves in having both a diverse client roster and an equally diverse and inclusive organization. And we work diligently to encourage all with different ways of thinking, different ways of working, and especially those traditionally underrepresented in technology and financial services, to apply.

 

Sr. Cloud Security Engineer provides cyber security advisory services to business units at The Company and supports IT initiatives and business projects by recognizing security risks and implementing security controls within public and private cloud environments, in adherence to The Company security policies and standards. The Sr. Cloud Security Engineer directly engages The Company IT teams to integrate new and existing security solutions. The Engineer will be assigned to large, enterprise and mission critical projects and implement security strategy and architecture, in order to protect The Company assets, manage risk, and maintain compliance.


Knowledge:

·     Deep understanding of security architectures, defense in depth, cloud and on-prem security models and concepts - Proficient in designing and deploying IaaS security solutions, preferably in AWS public cloud.

·     Experience and working knowledge of network architecture, subnetting, and TCP/IP protocols, and OSI model layers and protocols at each model layer

·     Understanding of international and United States laws and regulations impacting cyber security and personal data privacy, including GLBA, SOX, and the FFIEC Information Security requirements

·     Working knowledge of security frameworks and control references such as NIST CSF, CIS 20, COBIT, PCI DSS, OWASP, ISO 27000 family and NIST SP 800 series.

·     Familiar with various security architectures and methodologies (Defense in Depth, Segmentation, Least Privilege, Zero-Trust, Kill-Chain, etc.)


Skills:

·     Excellent analytical and problem solving skills - Ability to demonstrate empathy while seeking common interests; effective problem and conflict resolution skills - Scripting skills (Shell, Python, Java, PHP, PowerShell, etc.) preferred but not required

·     Familiar with government security standards and regulations including GLBA, SOX, PCI, COBIT, ITIL - Familiar with various security architectures and methodologies (Defense in Depth, Kill-Chain, NIST, Critical Controls, OWASP, etc.)

·     Leadership qualities, desire to influence horizontally and vertically, and mentor team members. - Excellent written and verbal communication skills


Education and Experience:

·     Bachelor’s degree in management Information Systems, Computer Science, and/or Business, or equivalent work experience

·     7+ years working in IT security domain - Experience implementing, supporting, or defining requirements for security tools such as WAF, SIEM, IPS, CASB, EDR - Experience with AWS public cloud services and security tools

·     Experience with Hashicorp Terraform and Sentinel

·     Experience with SIEM technologies.

·     Experience with cloud technologies specifically AWS.

·     Experience with AWS in a security environment preferred.

·     Experience working with Windows and Linux operating systems

·     Experience working with firewalls and network IDS/IPS

·     Experience doing vulnerability assessments, risk assessments and penetration testing


Certifications:

·     One or more of the following professional certifications: CISSP, CISM, SANS GIAC, CISA, Security+, AWS Solutions Architect, AWS Security Specialist (or willingness to obtain within 6 months)

·     Strong demonstrated knowledge of networking and TCP/IP protocol or networking certification (CCNA).


For more than 35 years, The Company Financial Group and its subsidiaries have helped innovative companies and their investors move bold ideas forward, fast. The Company Financial Group's businesses, offer commercial and private banking, asset management, private wealth management, brokerage and investment services and funds management services to companies in the technology, life science and healthcare, private equity and venture capital, and premium wine industries.



About the Company

P

Professional Recruiters