IT Security Manager providing operational leadership for ICBC’s IT security program. Enhancing cyber security practices and managing security initiatives in a dynamic, hybrid cloud environment.
About the role
- Senior Cloud Security Engineer responsible for deploying and improving Cloud Security tooling across multi-cloud environments at Truist. Utilizing AWS tooling and automation with Terraform for security solutions.
Responsibilities
- Lead the deployment, operationalization, and continuous improvement of Cloud Security tooling across multi-cloud enterprise environment
- Responsible for Cloud native AWS tooling and automating solutions leveraging GitLab deployments, including AWS Guard Duty, Security Hub, AWS Inspector, etc. via Terraform
- Develop and maintain the technical IT/cyber capabilities including all phases of the software development lifecycle and software stack which includes threat modeling of application designs, static application security testing (SAST), software composition analysis (SCA), dynamic application security testing (DAST), and penetration testing
- Lead efforts related to designing, planning, enhancing, and testing all Cloud cybersecurity technologies used throughout the enterprise
- Analyze information to determine, recommend, and plan the use of new Cloud information security technologies, or modifications to existing equipment and systems that will provide capability for proposed project or workload
- Lead the implementation of new Cloud security technologies or integration of existing technologies including initial configuration, installation, change management, and operational handoff
- Responsible for technical support of Cloud security technologies providing expert problem analysis and resolution in a timely manner
- Creation of CI/CD automation leveraging Terraform for Cloud Security Services and Modules
Requirements
- Bachelor’s degree and eight years of experience in systems engineering or administration or an equivalent combination of education and work experience
- Deep specialized and/or broad functional knowledge in applied enterprise information security technologies including but not limited to firewalls, intrusion detection/prevention systems, network operating systems, identity management, database activity monitoring, encryption, content filtering, and Mainframe security
- Previous experience in leading complex IT projects
- 10+ years Cloud Security experience (preferred)
- 6+ years securing AWS/Azure/GCP (preferred)
- Deep expertise in Wiz platform (preferred)
- Strong experience with CSPM, CWPP, CI/CD security (preferred)
- Strong automation and scripting background (preferred)
- Experience in Global 100 or Fortune 50 environments (preferred)
- Wiz Architect/Practitioner certifications (preferred)
- AWS/Azure/GCP security certifications (preferred)
- Banking or financial services experience (preferred)
- Other security certifications (e.g. CCNA Security, GSEC, GCED, GPPA, etc.) (preferred)
- Other technical Certifications (e.g. CCNA, RHCE, MCSE, etc.) (preferred)
- Certification in Information Security Management (e.g. Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC) or Certified Information Security Manager (CISM)), or related security certification(s) (preferred)
Benefits
- Health insurance
- 401k plan
- No less than 10 days of vacation
- 10 sick days
- Paid holidays
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Security Officer ensuring safety and security of Yankee Candle assets and personnel. Responsiblities include monitoring, patrols, incident response, and safety training at the corporate campus.
Senior Specialist in Information Security Governance, Risk & Compliance at Cellulant, driving information security, privacy, and compliance standards within BFSI context.
Cloud Security & Application Security Engineer at Cellulant enhancing security across cloud - native platforms and applications. Working in a hybrid role to support a leading payment service provider in Africa.
IT Audit Consultant joining Baker Tilly to manage technology risks for clients, offering strategic advice and audit support. Engaging with client executives to ensure compliance and operational efficacy.
Senior Health and Safety Advisor overseeing health and safety on construction projects for Aecon. Ensuring compliance with SST legislation and promoting zero accident culture.
Experienced Information Security Officer at Daikin responsible for defining Information Security strategy and ensuring compliance with regulatory frameworks. Collaborating with external specialists and mentoring junior team members in EMEA.
Senior Information Security Specialist executing Daikin Europe’s Information Security strategy. Collaborating with leadership to ensure our systems and services remain secure and compliant with regulations.
Information System Security Officer ensuring security controls and risk mitigation in Aerospace. Collaborating with teams to assess threat landscapes and guide clients with actionable plans.
Cyber Security Architect at Booz Allen supporting program management of cybersecurity tools suite and Zero Trust Architecture roadmap. Lead technical efforts in modern security practices and team collaboration.