Cloud Security Analyst

Company Overview                        Shamrock Trading Corporation is the parent company for a family of brands in transportation services, finance and technology. Headquartered in Overland Park, KS, Shamrock is frequently recognized among the “Best Places to Work” in Kansas City and Chicago and was most recently recognized as one of America’s top 100 “Most Loved Workplaces” by Newsweek. We also have offices in Atlanta, Chicago, Dallas, Ft. Lauderdale, Houston, Laredo, Nashville, Philadelphia and Phoenix.                         With an average annual revenue growth of 25% over several decades, Shamrock’s success is attributed to three key factors: hiring the best people, cultivating long-term relationships with our customers and continually evolving in the marketplace.                     Responsibilities                    Shamrock Trading Corporation is looking for a Cloud Security Analyst to join our Information Security team. This individual will be a key contributor on the security team, playing a critical role in delivering secure solutions for cloud computing to make sure all systems and company devices are free from any potential threats. The Cloud Security Analyst will provide security guidance and expertise and perform a variety of responsibilities, including monitoring, discovering and remediating any vulnerabilities while upholding and complying with corporate policies, standards and procedures. Responsibilities include but are not limited to: 

• Define and execute public cloud-centric security controls 
• Design secure patterns for computing, storage, networking, operational and security domains 
• Serve as a practical, solutions-focused thought leader and consensus builder, interacting with technical and non-technical audiences both within and outside the company  
• Deploy, consult and manage security controls leveraging solutions included but not limited to AWS multi-accounts structure, Organizational Units, Service Control Policies (SCP), IAM policies, Virtual Private Cloud (VPC), AWS Control Tower Guardrails and best practices 
• Partner with application teams to support the design and implementation of infrastructure-as-code stacks that meet the needs of a secure infrastructure 
• Advise on all aspects of secure cloud infrastructure offerings and solution design 
• Provide hands-on technical coaching and mentoring to accelerate cloud security learnings across the organization 
• Provide accurate and current information on AWS services and serve as a consultant to the Information Security organization 
• Collaborate with senior IT or business employees to ensure security compliance 
• Support the planning, coordination and implementation of the organization’s information security requirements 
• Evaluate security requirements and conduct feasibility studies to examine software requirements, administration costs, information flow and other metrics 

Qualifications 

• Bachelor’s Degree in Information Systems, Computer Science or related field OR equivalent work experience 
• 3+ years of experience designing and implementing secure solutions and securing public cloud workloads 
• Experience identifying and handling security incidents 
• Ability to monitor and interpret logs, note suspicious or unusual activity and make recommendations for resolution  
• Demonstrated knowledge and experience with the following tools and process: 
• Auditing and SIEMs 
• Infrastructure-as-code (IaC) and deployment 
• Automation methodologies, processes improvement and development of CI/CD pipelines 
• At least 2 scripting languages, such as Python, PowerShell, AWS/Azure CLI, Ansible or Bash 
• Deployment and operation of computer instances (EC2), AWS Storage Services (EBS/S3/Glacier), AWS multi-accounts environment, IAM Policies, AWS Tower, AWS Config and Service Control policies (SCP) 
• Configuration management and pipeline automation with AWS DevOps, Jenkins, Git or similar offering 
• Container technologies, such as Docker, Kubernetes, AWS EKS and ECS 
• Common enterprise-grade security solutions 
• Other cloud security tools 
• Demonstrated knowledge of common security issues and best practices with the ability to train employees or customers and assist in the resolution of computer security problems 
• Ability to establish and maintain collaborative relationships with team members, other technical staff, service providers, partners and business units
• Strong communication skills with the ability to communicate findings to business units and follow up on resolution 
• A desire to continually learn, enhance skills and execute superior projects that improve security, reduce down time and maintain integrity
• Experience creating and maintaining accurate technical documents and records
• Possess the following certifications:  
• Certified Cloud Security Professional (CSSP) 
• Certificate of Cloud Security Knowledge (CCSK) 
• GIAC Cloud Security Automation (GCSA) 
• AWS Solutions Architect Associate 
• AWS Certified Security – Specialty 
• CompTIA Cloud+ 

Benefits Package                                          At Shamrock we hire bright, ambitious people and give them the tools they need to be successful. By investing in training and development, we hope to become a long-term career for employees, where there are always opportunities for advancement. Shamrock also offers a premier set of benefits for employees and their families:     

• Medical: Fully paid healthcare, dental and vision premiums for employees and eligible dependents 
• Work-Life Balance: Competitive PTO, paid leave policies and eligibility for work from home opportunities after an introductory period 
• Financial: Generous company 401(k) contributions and employee stock ownership after one year 
• Wellness: Onsite gym, jogging trail, and discounted membership to nearby fitness center

#LI-NB1 #LI-Onsite