Job Information
Redstone Federal Credit Union Cloud Security Engineer - R2353 in Huntsville, Alabama
Job Description Summary
Develops, secures, and maintains the security stack of the cloud infrastructure to support Credit Union business needs. Supports operational innovation and provides security direction to elevate the Credit Unions security posture within a cloud computing infrastructure. Helps ensures applications are secure while supporting business initiatives. Utilizes advanced knowledge and trouble shooting skills to assist with the planning, designing, and implementing of procedures and ongoing maintenance.
Collaborates with security leadership to consistently assess the threat landscape and to adapt quickly to protect the business from risk.
Job Description
Essential Duties and Responsibilities
Develops, secures, and maintains a resilient enterprise-grade cloud security stack in tandem with cloud network engineers.
Maintains a consistent, secure environment using configuration management solutions. Conduct rigorous oversight of security systems and security configuration administration to reduce risk to enterprise systems and accounts.
Manages and maintains cloud Security Incident and Event Management (SIEM) and work closely with our cloud SIEM provider and Managed Security Service Provider (MSSP) to capture logs and security events from cloud infrastructure and applications.
Administers the Application Programming Interface (API) management tool to ensure API's are securely implemented and managed and work with Software as a service (SaaS) security posture management solution.
Assists with development, maintenance and utilization of scripts (e.g., Python, Ruby, etc.) to support custom extracts, and transform load (ETL) tools, with a security focus for the data flow.
Leads and conducts analysis of cloud infrastructure to detect security gaps or deficiencies in the cloud environment; recommends and implements solutions for improvements
Secures business applications and computing environments across public, private or hybrid cloud infrastructures. Documents, formulates and enforces areas of security improvement that balance risk with business operations without impacting efficiencies or innovation.
Actively monitors, assesses and recommends tactical and strategic initiatives based on new and emerging threats posing risk to cloud computing environments. Manages remediation efforts after security assessment findings outline weaknesses requiring attention.
Adheres to the Information Security Program to ensure the confidentiality, integrity and availability of information assets: ensure proper data classification and compliance.
Administers security systems to detect and prevent security breaches; monitors network and server intrusion detection systems; conducts vulnerability assessments and identifies areas for improved security management. Maintains accurate records on cyber security threat information, breaches and discovered security deficiencies. Disseminate complex security information clearly and concisely in a format that both technical and non-technical audiences can easily comprehend.
Develops, recommends, implements and manages a variety of cloud security management policies, protocols, systems and tools, rogue wireless access point detection and Web content filters; network security policies and remote access standards guidelines; ensuring compliance with NCUA regulations. Collaborates regularly with others in the department to correct identified system vulnerabilities to reduce threats to the organization.
Serves as expert consultant for all cloud security related matters. Evaluates problems, identifies root causes; coordinates resources determine temporary measures and/or permanent solutions, and recommends and/or implements measures to restore full service.
Installs, configures, tests and implements system monitoring and ma agement software tools; monitors system alerts, events, changes and activities that may impact performance or security; researches, troubleshoots and resolves complex system errors, failures and other problems.
Works closely with others in the department to ensure security patches and firmware are up-to-date and proper security measures are in place.
Acts as a key figure in incident response to track occurrence and resolution, with strict documentation and reporting as well as engagement with security operations and incident response teams.
Stays apprised of current and proposed security changes impacting regulatory, privacy and security industry best practice guidance. Applies learned knowledge across key lines of business, including products, practices and procedures.
Assists in maintaining strong oversight with cloud computing vendors and solution providers to safeguard against undue risk presented by external entities. Escalate to security management and business unit leads when points of weakness are discovered.
Company Wide Expectations
Maintains a professional image and demeanor at all times, consistently demonstrating Credit Union RISE Values and adhering to the Code of Ethics.
Delivers friendly, caring service to internal and external members.
Complies with all applicable State, Federal and NCUA rules and regulations and all Credit Union policies and procedures.
Follow all physical and online security procedures and maintain strict confidentiality of all member information.
Completes all required regulatory and compliance training and maintains required knowledge of Credit Union products and services.
Works scheduled hours and maintains punctuality.
Performs other related duties as assigned or requested.
##
EDUCATION/EXPERIENCE
To perform this job satisfactorily, an employee must be able to carry out each essential duty competently. The requirements listed below are representative of the education, experience, skills and abilities required.
An equivalent combination of education and experience may be considered.
Education Requirements
4 Year / Bachelors Degree - Information Security, Information Assurance, Information Systems, Computer Science or a closely related field - Required
Holds or working towards one or more certifications including, CCSP (Certified Cloud Security Professional), AWS Certified Security Specialist, Azure Security Engineer Associate, or similar - Preferred
##
Experience Requirement
5 Years - Responsible experience in a Cloud Security Engineer role or related position with at least exposure with Amazon W
