Senior Cloud Security Engineer

State of Arkansas - Lowell, AR

posted 11 days ago

Full-time - Senior
Lowell, AR
Executive, Legislative, and Other General Government Support

About the position

The Senior Cloud Security Engineer at Arvest is a senior-level role focused on enhancing the security of enterprise information and systems. This position involves determining security requirements, planning, implementing, and testing security systems, as well as preparing security standards, policies, and procedures. The role also includes mentoring team members and facilitating architectural planning and execution in cloud security, making it a key resource for driving technical change within the organization as it transitions from an on-premises banking model to a cloud-based environment.

Responsibilities

  • Design, create, and execute security controls to identify, protect, detect, and respond to risks against the Arvest cloud.
  • Configure and maintain tooling to assess vulnerabilities/risks that could affect the integrity, availability, or confidentiality of data, systems, or services in the cloud.
  • Develop and maintain cloud security architecture processes and artifacts that enable the enterprise to develop and implement security solutions and capabilities aligned with business, technology, and threat drivers.
  • Oversee the development of baseline security configuration standards for cloud and related technologies.
  • Provide standards and practices for data encryption and tokenization based on the organization's data classification criteria; securely migrate those to a cloud environment.
  • Validate security configurations and access to security infrastructure tools, including firewalls, IPSs, WAFs, and anti-malware/endpoint protection systems.
  • Ensure a complete, accurate, and valid inventory of all systems, infrastructure, and applications that should be logged by Security Information and Event Management (SIEM) or log management tool.
  • Review network segmentation to ensure least privilege for network access.
  • Collaborate with the business continuity management (BCM) team to validate security practices for BCM testing and operations during failover.
  • Track developments and changes in the digital business and threat environments to ensure they are adequately addressed.
  • Participate in application and infrastructure projects to provide security planning advice.
  • Serve as the primary liaison between the Enterprise Architects and the Systems Security Engineers and coordinate with product family owners on the allocation of security controls.
  • Work closely with business and IT to monitor and improve Arvest's cloud privacy and security controls.
  • Participate in cybersecurity and business-related councils or working groups, as needed.
  • Identify security design gaps in existing and proposed architectures and recommend changes or enhancements.
  • Understand and comply with bank policy, laws, regulations, and the bank's BSA/AML Program, as applicable to job duties.

Requirements

  • Proven experience in cloud security engineering or a related field.
  • Strong understanding of security controls and risk management frameworks.
  • Experience with security tools and technologies such as firewalls, IPSs, WAFs, and SIEM.
  • Knowledge of data encryption and tokenization practices.
  • Ability to develop and maintain security architecture processes and standards.
  • Experience in collaborating with cross-functional teams to implement security solutions.

Nice-to-haves

  • Certifications in cloud security (e.g., CCSP, AWS Certified Security Specialty).
  • Experience with compliance frameworks relevant to banking and finance.
  • Familiarity with business continuity management practices.

Benefits

  • Health insurance coverage
  • 401k retirement savings plan
  • Paid holidays
  • Professional development opportunities
  • Flexible scheduling options

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service