Information Security professional managing governance, audit, and compliance in banking domain. Collaborating across teams to enhance security posture and control effectiveness.
About the role
- VP, Cloud Security Architect at Synchrony Financial focusing on securing cloud migrations. Leading the integration of security across engineering teams in a regulated environment.
Responsibilities
- Secure Migration Architect (On-Prem to AWS Focus)
- Design secure pathways for migrating critical on-premises workloads and sensitive data to the AWS cloud environment.
- Architect and enforce robust security controls for hybrid cloud networking (e.g., Direct Connect, Transit Gateway) and virtual data center connectivity.
- Ensure data integrity and confidentiality during transfer by leveraging AWS services like DataSync or Transfer Family and implementing mandatory encryption via AWS KMS.
- Collaborate with Cloud IAM architects to engineer and proliferate stringent policies and roles that strictly enforce the Principle of Least Privilege (PoLP) across all AWS accounts.
- Use Infrastructure as Code (IaC) tools (e.g., Terraform or CloudFormation) to embed security guardrails and governance policies directly into all cloud infrastructure provisioning.
- Provide architectural guidance to SecOps for the configuration and integration of core security functions, including continuous monitoring, logging, SIEM ingestion, and automated alerting across the AWS footprint.
- Define and govern the strategy and standards for integrating security testing (SAST, DAST, and SCA) into CI/CD pipelines, advising and supporting AppSec, DevOps, and application development teams on "Shift Left" best practices.
Requirements
- Bachelor's degree in computer science, engineering, or related field (or equivalent practical experience); OR in lieu of a degree, 12+ years of experience in related field
- 4+ years of dedicated, hands-on experience designing, implementing, and securing large-scale production solutions on Amazon Web Services (AWS), Azure, or Google Cloud.
- Proven expertise in supporting on-premises to cloud migration efforts, specifically securing the data transfer and hybrid connectivity phases.
- Deep practical mastery of core AWS security services (IAM, KMS, VPC, Security Hub).
- High proficiency with Infrastructure as Code (IaC) tools such as Terraform or CloudFormation for security automation.
- Experience operating within a highly regulated industry (e.g., Financial Services) with practical knowledge of compliance frameworks such as PCI DSS, GDPR, or SOC 2.
Benefits
- Flexible work arrangements
- Professional development opportunities
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
IT Security Manager providing operational leadership for ICBC’s IT security program. Enhancing cyber security practices and managing security initiatives in a dynamic, hybrid cloud environment.
Security Officer ensuring safety and security of Yankee Candle assets and personnel. Responsiblities include monitoring, patrols, incident response, and safety training at the corporate campus.
Senior Specialist in Information Security Governance, Risk & Compliance at Cellulant, driving information security, privacy, and compliance standards within BFSI context.
Cloud Security & Application Security Engineer at Cellulant enhancing security across cloud - native platforms and applications. Working in a hybrid role to support a leading payment service provider in Africa.
IT Audit Consultant joining Baker Tilly to manage technology risks for clients, offering strategic advice and audit support. Engaging with client executives to ensure compliance and operational efficacy.
Senior Health and Safety Advisor overseeing health and safety on construction projects for Aecon. Ensuring compliance with SST legislation and promoting zero accident culture.
Senior Information Security Specialist executing Daikin Europe’s Information Security strategy. Collaborating with leadership to ensure our systems and services remain secure and compliant with regulations.
Experienced Information Security Officer at Daikin responsible for defining Information Security strategy and ensuring compliance with regulatory frameworks. Collaborating with external specialists and mentoring junior team members in EMEA.
Security Specialist ensuring the protection of company and government assets. Conducting daily security functions and providing technical support while maintaining compliance with regulations.