Cloud Security Specialist

• Prepare management reports relative to the state of cloud security.
• Design, implement, and manage cloud security solutions to protect data and applications in cloud environments.
• Collaborate with cross-functional teams to ensure cloud security measures are integrated into all aspects of the organization's cloud infrastructure.
• Conduct regular security assessments and audits of cloud environments to identify vulnerabilities and recommend improvements.
• Stay up to date with the latest cloud security trends, technologies, and best practices to continuously enhance the organization's cloud security posture.
• Work closely with the information security team to ensure appropriate measures are in place to identify and prevent potential security risks throughout the network, cloud, and endpoint environment.
• Participate as required in the incident response program.
• Monitor daily security logs that encompass checking suspicious commands, installs, files shared using cloud services, and doing investigations as necessary.
• Oversee an enterprise-wide mailbox system that employees would forward any phishing or malware related items they receive and run investigations to determine appropriate courses of action.
• Operate our CASB solution to discover any instances or resources that are out of compliance, create queries to investigate any unusual cloud events, network activity, and resource configurations on our cloud platforms for incidents.
• Respond to high severity incidents that involved user compromise/potential compromise through malicious link clicks, file downloads, or phishing, and mitigate these events in a timely manner.
• Utilize our EDR platform to monitor any high-risk devices that need to match compliance with Enterprise standards.
• Work within our IAM infrastructure to capture user activity and permissions in quarterly privileges access reviews and determine if credentials are still required per privileged user.
• Review and present a Cloud Posture assessment report, detailing our findings within our cloud environment, and illustrate the risk levels of each finding to the CISO.
• Continuously monitor our IT service management portal for any system or user generated incidents, and work with the various IT teams as necessary to remediate them.
• Review all activity from employees logging into their accounts from Non-US locations, and investigate any signs of compromise or suspicious sign-ins.

• Adheres to applicable federal laws, rules, and regulations including those related to Anti-Money Laundering (AML) and the Bank Secrecy Act (BSA).
• Other duties as assigned.

Business Continuity Program:

• Participate in the development and review of effective business continuity plans and business impact analysis as related to Cyber and Cloud Security.

Vendor Management:

• Participate in the successful implementation and review of the vendors involved in Cyber and Cloud security.

Regulatory:

• Participate as required in the incident response program.

Minimum Required Skills and Competencies:

• Bachelor’s degree (Computer Science, Information Technology, or a similar technical discipline) or 2-3 years equivalent experience.
• Experience operating Cybersecurity Tool suites for large deployments.
• Experience operating Cloud security monitoring tools.
• Experience securing Cloud Technologies such as IaaS and PaaS.
• Experience performing analysis of security data for accuracy, risks, and potential improvements.
• Excellent ability to interpret rules and regulations in the financial or mortgage banking industry.
• Ability to discern opportunities for improvement in all areas of assigned responsibility.
• Ability to manage projects or workload with little or no supervision.
• Sense of ownership for work performed.
• Willing to travel if needed with the TowneBank footprint.
• Willing to perform off-hours support and upgrades.
• Familiarity with ticket management systems and project management processes.
• Excellent verbal and written communication skills to communicate across a broad base of internal customers.

Desired Skills and Competencies:

• Experience in a financial or mortgage banking institution.
• In-depth self-guided analytical expertise required.
• Certifications:
  • CompTIA Security+
  • CompTIA CySA+
  • GIAC Security Essentials
  • Microsoft SC-200
  • Microsoft SC-300
  • Microsoft SC-900
  • Microsoft AZ-500

Physical Requirements:

• Express or exchange ideas by means of the spoken word via email and verbally.
• Exert up to 25 pounds of force occasionally, use your arms and legs, and sit most of the time.
• Have close visual acuity to perform activities such as analyzing data, viewing a computer terminal, reading, and preparing documentation.
• Not substantially exposed to adverse environmental conditions.
• The physical demands described here are representative of those that must be met by an employee to successfully perform the essential responsibilities of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform essential responsibilities.