Raymond James Financial Services
Lead Cloud Security Engineer
Raymond James Financial Services, Denver, Colorado, United States, 80285
Description
This position follows our hybrid-friendly schedule, so you get the best of both worlds – flexibility and collaboration. In office days will be 2-3 per week averaging 10-12 days per month in one of the following Corporate Office locations: St. Petersburg, FL; Southfield, MI; Memphis, TN; Denver, CO.
Job Summary:
As the Cloud Security Engineer, you will be responsible for the analysis, design, development, implementation and maintenance of cloud security controls in nan AWS and Azure multi-cloud environment, and work with operational teams and specialists to maintain our cloud security posture. The candidate must be a self-motivated individual who can collaborate with a team and across the organization.
Essential Duties and Responsibilities:
Evaluate events and alerts within the cloud native protection platform, and platform, and metric observability platform, and tune alerts based on environment and compensating controls
Manage the lifecycle for all security threats, vulnerabilities, and remediations associated with cloud workloads.
Partner with the security teams to design, test, implement, and maintain security controls that align with our security policies.
Work effectively across security, engineering, and architecture functions within the organization to affect change and enhance cloud security strategies
Design and maintain baseline security controls and hardening requirements within AWS and Azure.
Develop and maintain alerting mechanisms using cloud native tools, Splunk, and cloud security posture management platforms (Wiz, AquaSec, Prisma Cloud)
Recommend and assist in implementing security guardrails to protect workloads within the cloud while maintaining deployment agility.
Problem solving different cloud providers using various scripting languages (Bash, PowerShell, JavaScript, Python)
Develop infrastructure as code using Terraform.
Proactively explore emerging technologies and their potential impact on security teams, from the perspective of securing and protecting those technologies
Proactively explore emerging cloud security threats, recommend solutions, and assist in implementation of those solutions.
Contributes to a culture of innovation, collaboration, and continuous improvement.
Communicates blockers and delays before they require escalation.
Qualifications
Skills and Experience:
Minimum of a Bachelor’s degree in Computer Science, MIS or related degree and five (5) years of relevant experience or combination or education, experience and training
Minimum 4 years of AWS experience
Experience writing in multiple coding languages (e.g., Python, Go, Bash, etc.)
Experience with Infrastructure as Code (e.g., CDK, Cloud Formation, Terraform, etc.)
Experience with Git based source code management tools
Experience with Agile / Scrum planning tools (GitHub, Azure DevOps, Jira, etc.)
Experience with Splunk (creation of alerts and dashboards, and comprehensive querying logic)
Experience with AWS security services: CloudWatch, Security Hub, KMS, Inspector, Guard Duty, Config, CloudTrail.
Experience with Cloud Security Posture Management (CSPM) tools such as AquaSec, Wiz, Palo Alto Prisma, etc.
Experience with on-premises and cloud-based networking, firewalls, and network security.
Experience with working in a DevSecOps environment.
Preferred certifications: AWS Solution Architect Associate, AWS Certified Security – Specialty, CISSP, CCSP (certified cloud security specialist), Splunk Certified Power User
Demonstrated engagement in security conferences, training, learning, associations are highly desired and fully supported.
Lifelong learner with endless curiosity.
Licenses/Certifications:
AWS Certifications preferred but not required
Job: Technology
Primary Location: US-FL-St. Petersburg-Saint Petersburg
Other Locations: US-TN-Memphis-Memphis, US-MI-Southfield-Southfield, US-CO-Denver-Denver
Organization Technology
Schedule Full-time
Job Shift Day Job
Travel Yes, 5 % of the Time
Req ID: 2403582
This position follows our hybrid-friendly schedule, so you get the best of both worlds – flexibility and collaboration. In office days will be 2-3 per week averaging 10-12 days per month in one of the following Corporate Office locations: St. Petersburg, FL; Southfield, MI; Memphis, TN; Denver, CO.
Job Summary:
As the Cloud Security Engineer, you will be responsible for the analysis, design, development, implementation and maintenance of cloud security controls in nan AWS and Azure multi-cloud environment, and work with operational teams and specialists to maintain our cloud security posture. The candidate must be a self-motivated individual who can collaborate with a team and across the organization.
Essential Duties and Responsibilities:
Evaluate events and alerts within the cloud native protection platform, and platform, and metric observability platform, and tune alerts based on environment and compensating controls
Manage the lifecycle for all security threats, vulnerabilities, and remediations associated with cloud workloads.
Partner with the security teams to design, test, implement, and maintain security controls that align with our security policies.
Work effectively across security, engineering, and architecture functions within the organization to affect change and enhance cloud security strategies
Design and maintain baseline security controls and hardening requirements within AWS and Azure.
Develop and maintain alerting mechanisms using cloud native tools, Splunk, and cloud security posture management platforms (Wiz, AquaSec, Prisma Cloud)
Recommend and assist in implementing security guardrails to protect workloads within the cloud while maintaining deployment agility.
Problem solving different cloud providers using various scripting languages (Bash, PowerShell, JavaScript, Python)
Develop infrastructure as code using Terraform.
Proactively explore emerging technologies and their potential impact on security teams, from the perspective of securing and protecting those technologies
Proactively explore emerging cloud security threats, recommend solutions, and assist in implementation of those solutions.
Contributes to a culture of innovation, collaboration, and continuous improvement.
Communicates blockers and delays before they require escalation.
Qualifications
Skills and Experience:
Minimum of a Bachelor’s degree in Computer Science, MIS or related degree and five (5) years of relevant experience or combination or education, experience and training
Minimum 4 years of AWS experience
Experience writing in multiple coding languages (e.g., Python, Go, Bash, etc.)
Experience with Infrastructure as Code (e.g., CDK, Cloud Formation, Terraform, etc.)
Experience with Git based source code management tools
Experience with Agile / Scrum planning tools (GitHub, Azure DevOps, Jira, etc.)
Experience with Splunk (creation of alerts and dashboards, and comprehensive querying logic)
Experience with AWS security services: CloudWatch, Security Hub, KMS, Inspector, Guard Duty, Config, CloudTrail.
Experience with Cloud Security Posture Management (CSPM) tools such as AquaSec, Wiz, Palo Alto Prisma, etc.
Experience with on-premises and cloud-based networking, firewalls, and network security.
Experience with working in a DevSecOps environment.
Preferred certifications: AWS Solution Architect Associate, AWS Certified Security – Specialty, CISSP, CCSP (certified cloud security specialist), Splunk Certified Power User
Demonstrated engagement in security conferences, training, learning, associations are highly desired and fully supported.
Lifelong learner with endless curiosity.
Licenses/Certifications:
AWS Certifications preferred but not required
Job: Technology
Primary Location: US-FL-St. Petersburg-Saint Petersburg
Other Locations: US-TN-Memphis-Memphis, US-MI-Southfield-Southfield, US-CO-Denver-Denver
Organization Technology
Schedule Full-time
Job Shift Day Job
Travel Yes, 5 % of the Time
Req ID: 2403582