About the role

Cloud Security Engineer ensuring secure solutions in the cloud for UMB's technology. Collaborating with teams to define security controls and integrate best practices.

Responsibilities

Define and execute public cloud-centric security controls and help design secure patterns for computing, storage, networking, operational, and security domains
Advise application, product, and cloud infrastructure teams on incorporating cloud infrastructure capabilities with an information security mindset
Actively collaborate with cloud stakeholders to deliver best-fit secure solutions for UMB
Identify emerging cloud infrastructure services and needs to meet business requirements
Serve as a pragmatic, results-driven thought leader and consensus builder with a technology-savvy mindset
Deploy, consult, and manage security controls leveraging solutions included but not limited to AWS multi-accounts structure, Organizational Units, Service Control Policies (SCP), IAM policies, Virtual Private Cloud (VPC), AWS Control Tower Guardrails and best practices
Partner with application teams to support them in their design and implementation of infrastructure-as-code stacks that meet the needs of the applications leveraging technologies, included but not limited to Terraform, CloudFormation, CDK constructs, and Ansible
Advise on all aspects of secure cloud infrastructure offerings and solution design
Provide hands-on technical coaching to accelerate cloud security learnings across the organization
Provide accurate and current information on AWS services and serve as a consultant to the IT Information Security organization to solve business use cases

Bachelor’s Degree in Management Information Systems, Computer Science or related field OR equivalent work experience
At least 4 years of experience designing and implementing secure solutions and securing public cloud workloads
At least 2 years of experience with Metrics, Events, Logging, and Tracing solutions like Cloudtrail, CloudWatch, or Splunk
Strong infrastructure-as-code (IaC) expertise and deployment experience with technologies such as Terraform or AWS CloudFormation
In-depth experience with automation methodologies, processes improvement, and development of CI/CD pipelines
Demonstrated knowledge/experience with at least 2 scripting languages like Python, PowerShell, AWS/Azure CLI, Ansible, Bash, and JSON
Hands-on experience deploying and operating AWS computer instances (EC2), AWS Storage Services (EBS/S3/Glacier), AWS multi-accounts environment, IAM Policies, AWS Tower, AWS Config, and Service Control policies (SCP)
Demonstrated knowledge with configuration management and pipeline automation with AWS DevOps, Jenkins, Git or similar offering
Knowledge with container technologies, such as Docker, Kubernetes, AWS EKS and ECS
Collaborated with service providers and partners
Working knowledge and expertise with common enterprise-grade security solutions

Paid Time Off
401(k) matching program
Annual incentive pay
Paid holidays
Comprehensive company sponsored benefit plan including medical, dental, vision, and other insurance coverage
Health savings, flexible spending, and dependent care accounts
Adoption assistance
Employee assistance program
Fitness reimbursement
Tuition reimbursement
Associate wellbeing program
Associate emergency fund
Various associate banking benefits