Cloud Security Engineer (Hybrid)

$96,400 - $144,600/Yr

Citigroup - Irving, TX

posted 6 days ago

Full-time - Entry Level
Irving, TX
Credit Intermediation and Related Activities

About the position

As a Cloud Security Engineer on the AppSec Engineering team at Citi, you will be responsible for driving cyber security services and solutions to enable secure adoption of cloud platforms. This role focuses on the development of controls, automation, and expansion of program capabilities related to Citi's Cloud Native Application Protection Platform (CNAPP) and Cloud Continuous Monitoring (CCM) program. You will work in a multi-disciplinary team emphasizing DevSecOps principles, ensuring the security and compliance of cloud infrastructures.

Responsibilities

  • Collaborate with a team of highly skilled cloud security engineers to implement the strategic vision of our Cloud Continuous Monitoring program.
  • Leverage cloud tooling to develop controls that identify misconfigurations and vulnerabilities in cloud infrastructure, define risks, and generate alerts for issues across the cloud estate.
  • Identify opportunities for and implement automation to advance controls engineering, monitoring, and streamline reporting processes.
  • Develop and implement cloud native solutions that aid in maturing the AppSec Engineering Cloud Continuous Monitoring program.
  • Reduce risk by analyzing the root cause of issues, their impact, and required corrective actions.
  • Validate that system design/architecture meets compliance requirements.
  • Maintain development standards, best practices, and technical documentation for Cloud Continuous Monitoring projects.
  • Effectively articulate technical security specifications, requirements, etc. through written and verbal communications to both technical and non-technical partners.

Requirements

  • Bachelor's Degree in a related field or equivalent experience.
  • 2-4 years of experience in Cloud Security Posture Management (CSPM) or Cloud Native Application Protection Platforms (CNAPP).
  • Hands-on experience with Cloud platforms (AWS, GCP, Azure, etc.).
  • Experience automating tasks and reporting (Python preferred).
  • Knowledge of containers and supporting technologies (EKS, GKE, Kubernetes, etc.).
  • Knowledge of DevOps/DevSecOps processes and best practices including the use of pipelines and code management tools.
  • Hands-on experience with IaC tooling (CloudFormation, Terraform, CDK, etc.).
  • Offensive Security-oriented mindset (threat-modeling, vulnerability assessments, pen testing, etc.).
  • Excellent technical documentation skills.
  • Proven analytical skills.
  • Excellent communication skills and the ability to communicate with all levels of staff and management.

Nice-to-haves

  • Industry-accredited certifications in cloud security (e.g., Azure Security Engineer Associate, AWS Security Specialty, GCP Professional Cloud Security Engineer).
  • Other security certifications (e.g., GCSA, GCPN, CKS).
  • Willingness to pursue certifications during the course of employment.

Benefits

  • Medical, dental & vision coverage
  • 401(k)
  • Life, accident, and disability insurance
  • Wellness programs
  • Paid time off packages including vacation, sick leave, and paid holidays

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service