Logo
Raymond James Financial Services

Lead Cloud Security Engineer

Raymond James Financial Services, Denver, Colorado, United States, 80285


Description

This position follows our hybrid-friendly schedule, so you get the best of both worlds – flexibility and collaboration. In office days will be 2-3 per week averaging 10-12 days per month in one of the following Corporate Office locations: St. Petersburg, FL; Southfield, MI; Memphis, TN; Denver, CO.

Job Summary:

As the Cloud Security Engineer, you will be responsible for the analysis, design, development, implementation and maintenance of cloud security controls in nan AWS and Azure multi-cloud environment, and work with operational teams and specialists to maintain our cloud security posture. The candidate must be a self-motivated individual who can collaborate with a team and across the organization.

Essential Duties and Responsibilities:

Evaluate events and alerts within the cloud native protection platform, and platform, and metric observability platform, and tune alerts based on environment and compensating controls

Manage the lifecycle for all security threats, vulnerabilities, and remediations associated with cloud workloads.

Partner with the security teams to design, test, implement, and maintain security controls that align with our security policies.

Work effectively across security, engineering, and architecture functions within the organization to affect change and enhance cloud security strategies

Design and maintain baseline security controls and hardening requirements within AWS and Azure.

Develop and maintain alerting mechanisms using cloud native tools, Splunk, and cloud security posture management platforms (Wiz, AquaSec, Prisma Cloud)

Recommend and assist in implementing security guardrails to protect workloads within the cloud while maintaining deployment agility.

Problem solving different cloud providers using various scripting languages (Bash, PowerShell, JavaScript, Python)

Develop infrastructure as code using Terraform.

Proactively explore emerging technologies and their potential impact on security teams, from the perspective of securing and protecting those technologies

Proactively explore emerging cloud security threats, recommend solutions, and assist in implementation of those solutions.

Contributes to a culture of innovation, collaboration, and continuous improvement.

Communicates blockers and delays before they require escalation.

Qualifications

Skills and Experience:

Minimum of a Bachelor’s degree in Computer Science, MIS or related degree and five (5) years of relevant experience or combination or education, experience and training

Minimum 4 years of AWS experience

Experience writing in multiple coding languages (e.g., Python, Go, Bash, etc.)

Experience with Infrastructure as Code (e.g., CDK, Cloud Formation, Terraform, etc.)

Experience with Git based source code management tools

Experience with Agile / Scrum planning tools (GitHub, Azure DevOps, Jira, etc.)

Experience with Splunk (creation of alerts and dashboards, and comprehensive querying logic)

Experience with AWS security services: CloudWatch, Security Hub, KMS, Inspector, Guard Duty, Config, CloudTrail.

Experience with Cloud Security Posture Management (CSPM) tools such as AquaSec, Wiz, Palo Alto Prisma, etc.

Experience with on-premises and cloud-based networking, firewalls, and network security.

Experience with working in a DevSecOps environment.

Preferred certifications: AWS Solution Architect Associate, AWS Certified Security – Specialty, CISSP, CCSP (certified cloud security specialist), Splunk Certified Power User

Demonstrated engagement in security conferences, training, learning, associations are highly desired and fully supported.

Lifelong learner with endless curiosity.

Licenses/Certifications:

AWS Certifications preferred but not required

Job: Technology

Primary Location: US-FL-St. Petersburg-Saint Petersburg

Other Locations: US-TN-Memphis-Memphis, US-MI-Southfield-Southfield, US-CO-Denver-Denver

Organization Technology

Schedule Full-time

Job Shift Day Job

Travel Yes, 5 % of the Time

Req ID: 2403582