Genworth Financial - Richmond, VA
posted 2 days ago
About the position
Join CareScout on a mission to simplify and dignify the aging experience. We are the children, siblings, neighbors, and friends of those navigating the fragmented and confusing system of long-term care. Our team is ferociously curious and relentless in our pursuit of a better system - and we are deeply committed to a sense of belonging for all, in all phases of life. We're creating a new experience for care seekers and their families, bringing together long-term care options, non-healthcare resources, education, and human support into one place. We work hard, we have fun, we care about each other, and we share the mission. If this sounds like a place where you could thrive, join us! CareScout is a wholly owned subsidiary of Genworth Financial, Inc, a Fortune 500 provider of products, services and solutions that help families address the financial challenges of aging.
Responsibilities
- Ensure the company's security policies and standards are tailored for cloud environments
- Translate security and technical policies into requirements, and communicate security risks to different audiences ranging from business leaders to engineers
- Support advancement of Zero Trust cloud security governance processes
- Define security measures, such as secure authentication methods, encryption, access control lists, intrusion detection systems, firewalls, to protect data stored on public clouds against unauthorized access
- Work with architecture, engineering, and application teams to advise on secure design for cloud applications in areas such as data protection, key management, authentication, and authorization and to ensure security is built into all aspects of the cloud
- Provide design-time review and guidance to teams building and deploying new technology on, and integrating with, services provided by public cloud platforms
- Participate in working groups with other subject matter experts to define and review security standards and guidelines
- Research and stay up to date on the latest security threats and trends
- Analyze threats to cloud technologies and design solutions to mitigate those threats
- Develop and execute projects to enhance cloud security measures
- Provide guidance and oversight for the correction of discovered vulnerabilities
Requirements
- Bachelor's degree in Information Technology, Computer Science, or related degree, or equivalent years of experience
- 6+ years demonstrated cybersecurity experience
- 4+ years demonstrated public cloud security experience
- Strong understanding of cybersecurity risks, technical control implementation, and at least one industry standard cybersecurity framework (NIST 800-53, NIST CSF, ISO 27001, etc.)
- In-depth knowledge of cloud security architecture, including public, private, and hybrid models
- Experience with a variety of security tools in multiple public cloud platforms, such as AWS, Azure, and Google Cloud Platform
- Experience with containerization technology, such as Docker and Kubernetes
- Experience with one or more scripting languages
- Knowledge of potential risks involved in workload transitions from on-premises to cloud
- Knowledge of Open Security Architecture (OSA), The Well Architected Framework, and Cloud Security Alliance (CSA)
Benefits
- Competitive Compensation & Total Rewards Incentives
- Comprehensive Healthcare Coverage
- Multiple 401(k) Savings Plan Options
- Auto Enrollment in Employer-Directed Retirement Account Feature (100% employer-funded!)
- Generous Paid Time Off - Including 12 Paid Holidays, Volunteer Time Off and Paid Family Leave
- Disability, Life, and Long Term Care Insurance
- Tuition Reimbursement, Student Loan Repayment and Training & Certification Support
- Wellness support including gym membership reimbursement and Employee Assistance Program resources (work/life support, financial & legal management)
- Caregiver and Mental Health Support Services
