Cloud Security Engineer

Merck KGaA Darmstadt Germany - Providence, RI

posted 2 months ago

Full-time
Providence, RI
Chemical Manufacturing

About the position

Our Company Cloud Security Engineering is seeking an energetic, forward-thinking professional to join our team. The individual in this role will provide subject matter expertise in cloud security engineering fundamentals supporting multi-cloud adoption and cloud DevSecOps. The successful candidate will establish a collaborative governance structure around the use of new cloud features to establish an acceptable risk posture. This includes defining the requirements, best practices, and leading the collaborative development of cloud system/service architecture, design, and engineering. The role also involves defining strategy, governance, and driving best practices for protecting company data, as well as evaluating new solutions and developing the supporting elements required to incorporate new technologies in a safe and secure manner. In addition, the Cloud Security Engineer will produce architecture diagrams, blueprints, and solution narratives to bring solutions to reality with a DevSecOps mindset & culture. The individual will partner with platform and development teams to assess and close gaps in cloud security posture and data protection across the security disciplines. Collaboration across IT and business organizations is essential to facilitate the design, development, engineering, and deployment of security controls used to protect company assets. Ensuring compliance with all requirements applied to cloud services and technology is a critical aspect of this role. Daily responsibilities include providing technical guidance and fostering a collective understanding of data protection and security issues encountered in cloud infrastructure, applications, services, and for information traversing our ecosystem. The Cloud Security Engineer will work closely with DevOps teams on Infrastructure as Code, Automation, and Orchestration, providing expert knowledge of cloud and data security architecture and consulting with business and other technology teams to address complex needs. The role also involves driving the collaborative development of the technology strategy, technology standards, roadmaps, and practices, as well as collaborating with the data analytics team to build security reference architectures and drive preventative security controls. The individual will work closely with IT and business to prioritize and address emerging risks through the application of mitigating solutions.

Responsibilities

  • Establish a collaborative governance structure around the use of new cloud features to establish an acceptable risk posture.
  • Define the requirements, best practices, and lead the collaborative development of cloud system/service architecture, design, and engineering.
  • Define strategy, governance, and drive best practices for protecting company data.
  • Evaluate new solutions and develop the supporting elements required to incorporate new technologies in a safe and secure manner.
  • Produce architecture diagrams, blueprints, and solution narratives to bring solutions to reality with a DevSecOps mindset & culture.
  • Partner with platform and development teams to assess and close gaps in cloud security posture and data protection across the security disciplines.
  • Collaborate across IT and business organizations to facilitate the design, development, engineering, and deployment of security controls used to protect company assets.
  • Ensure compliance with all requirements applied to cloud services and technology.
  • Provide technical guidance and foster a collective understanding of data protection and security issues encountered in cloud infrastructure, applications, services, and for information traversing our ecosystem.
  • Work closely with DevOps teams on Infrastructure as Code, Automation, and Orchestration.
  • Provide expert knowledge of cloud and data security architecture and consult with business and other technology teams to address complex needs.
  • Drive the collaborative development of the technology strategy, technology standards, roadmaps, and practices.
  • Collaborate with data analytics team to build security reference architectures and drive preventative security controls.
  • Work closely with IT and business to prioritize and address emerging risks through the application of mitigating solutions.

Requirements

  • Minimum of 2 years of experience with Cybersecurity concepts, including encryption, configuration management, auditing, access control, database security and information protection.
  • Minimum of 1 year of experience with Cloud Amazon Web Services (AWS) or Microsoft Azure platforms & SaaS environments.
  • Experience in designing, implementing, and delivering security for cloud-native, distributed computing and architectural solutions with a Principle of 'Secure by Design'.
  • Excellent knowledge of security architecture and engineering.
  • Experience in large scale enterprise Cloud projects from ideation to production.
  • Understanding of software/system delivery lifecycle and accompanying technologies.
  • Strong interpersonal, networking, influencing, and relationship-building skills and the ability to navigate cross-culturally with a wide array of stakeholders, internally and externally.

Nice-to-haves

  • Experience with protection of both structured and unstructured data via the application of controls based on data classification.
  • Cloud incident response and endpoint security solutions.
  • API security.
  • Certification in information security, application security, and/or cloud security.
  • Certification in AWS or Azure environments.
  • Experience with DevSecOps, including continuous integration (CI) and continuous delivery (CD).
  • Experience in Agile delivery methodologies.
  • Experience in Data Leakage Prevention.
  • Proficiency in mobile security concepts.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service