Security Engineer

Responsibilities

• Provide technical expertise and support for cloud-related projects and initiatives.
• Stay current with emerging cloud technologies and trends to drive continuous improvement.

• Monitor system performance and troubleshoot and anomalies promptly.

• Configure and setup roles and permissions / facilitates identity and access management to access Cloud Environment.

• Configure and setup connectivity to Cloud Environment.

• Keep the infrastructure current, making recommendations, and participating in the implementation and continuous improvement of technologies and services in assigned information security domains.
• Logging, monitoring, and responding to detected incidents in the cloud environment.
• Cloud security engineer is expected to be available should an outage our cybersecurity incident occurs during weekends/off hours. This is to ensure faster resolution of the outage or cybersecurity incident.
• Ensure cloud security measures meet banking and financial industry compliance standards.
• Investigate and respond to cloud security incidents, including breaches, data leaks, and unauthorized access attempts.

Collaboration and Communication

• Works with systems owners and administrators to understand their security needs and assists with implementing practices and procedures.
• Effectively collaborates and communicates with Compliance, Internal Audit, the Business teams and others to identify, analyze, and communicate risk and provides support around Cloud Environment within their business requirements.
• Work closely with other IT and development teams to coordinate and implement cloud solutions.
• Communicate effectively with stakeholders regarding the status of issues, incidents, and system health.

Techincal Skills

• Expertise in securing cloud platforms (AWS, Azure, and IBM).

• Proficiency in cloud-native security tools (e.g., AWS GuardDuty, AWS Security Hub, AWS IAM Access Analyzer, Azure Security Center).
• Strong understanding of IAM, encryption, key management, and network security in the cloud.
• Knowledgeable in network and security fundamentals e.g. understanding of networking protocols & applications (TCP/IP, load balancing, Route53, AWS Privatelink, firewalls, etc.).
• Experience with AWS-based deployments and related services (RDS, EC2, Lambda, S3, IAM, CloudWatch, Security Hub, etc.).
• Experience in deploying and configuration using Infrastructure as Code (IaC) like AWS CloudFormation and Hashicorp Terraform
• Experience in CDN services (Akamai, AWS WAF).

Soft Skills

• Detail-oriented with the ability to handle complex and high-pressure situations.
• Basic understanding of Cloud Security and Governance.
• Excellent communication skills with the ability to articulate security issues to a diverse audience.
• Strong analytical and problem-solving skills, with the ability to analyze complex security systems and communicate risks and mitigations.