Senior Cloud Security & Automation Engineer

BNY Mellon - Pittsburgh, PA

posted 3 months ago

Full-time - Senior
Pittsburgh, PA
10,001+ employees
Credit Intermediation and Related Activities

About the position

At BNY, our culture empowers you to grow and succeed. As a leading global financial services company at the center of the world's financial system, we touch nearly 20% of the world's investible assets. Every day around the globe, our 50,000+ employees bring the power of their perspective to the table to create solutions with our clients that benefit businesses, communities, and people everywhere. We continue to be a leader in the industry, awarded as a top home for innovators and for creating an inclusive workplace. Through our unique ideas and talents, together we help make money work for the world. This is what #LifeAtBNY is all about. We're seeking a future team member in the role of Senior Cloud Security & Automation Engineer to join our Information Security Division (Cyber Cloud Security) team. This role is located in Pittsburgh, PA or Lake Mary, FL - Hybrid (2-3 days/week in-office. Must live within a commutable distance.) In this role, you'll be part of a team that is laser-focused on delivering a transformative cloud security program that aligns with BNY's overall cloud strategy. You will have the opportunity to further finetune and specialize in skills across all cyber disciplines. Collaboration with passionate leaders, technologists, architects, engineers, and cyber professionals will be key as we strive to enable business securely with innovative technology and solutions. You will have strong partnership and support from the Cloud Service Providers (Azure, Google Cloud Platform, AWS) and Cyber Security partners and vendors we do business with. This position offers an opportunity to influence the bank's cloud security and automation strategy.

Responsibilities

  • Design, implement, and maintain secure cloud environments in accordance with industry best practices and regulatory requirements.
  • Optimize cloud security controls and capabilities (e.g., CSPM, DSPM, etc.) to ensure IaaS, SaaS, PaaS, and FaaS cloud service compliance with relevant regulations, standards, organizational policies, and design patterns through continuous assessment and reporting.
  • Integrate security tools and practices into our continuous integration and continuous delivery (CI/CD) pipeline, ensuring security is embedded in all stages of the software development lifecycle.
  • Partner closely with cloud architecture, cloud engineering, developers, and other line-of-business representatives to develop and refine automation capabilities for a multitude of Cloud Service design patterns.
  • In partnership with SOC and IR implement monitoring and logging solutions to detect and respond to security threats and incidents in real-time.
  • Provide security domain expertise on protective controls, to include system, network, encryption, and authentication services.
  • Collaborate with stakeholders to define security requirements and provide guidance on secure development practices.
  • Develop and maintain documentation related to security policies, procedures, and best practices.
  • Provide training and support to development and operations teams on security-related topics and tools.

Requirements

  • Bachelor's or Graduate degree in engineering, computer science or a related discipline or equivalent work experience required.
  • 10+ years of experience in information security or related technology experience required, experience in the securities or financial services industry is a plus.
  • 3-4 years of larger scale application scripting/development experience combined with 2-3 years of direct experience working with and securing cloud native workloads in one or more of the three major cloud service providers (Microsoft Azure, Google Cloud Platform, and AWS).
  • Expertise in cloud-native container and container orchestration security (e.g., Azure Kubernetes Service).
  • Experience developing Infrastructure-as-code/Policy-as-code components and automation using languages and tools like Python, Terraform, ARM/BICEP to name but a few.
  • Experience in implementing security controls in CI/CD pipelines, third party security tools (e.g., Rego) and cloud native policies.
  • Experience in API Security and implementation of appropriate security controls.
  • Experience with software architectures and development/scripting experience in at least one programming language.
  • Experience with cyber security related processes and tooling (e.g., Vulnerability management, IAM).
  • Familiarity with adopting cloud security frameworks and best practices (e.g., NIST, CIS, CSA CCM, and OWASP).

Benefits

  • Highly competitive compensation
  • Benefits and wellbeing programs
  • Generous paid leaves, including paid volunteer time
  • Access to flexible global resources and tools for personal and professional growth

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service