Senior Lead GenAI Cloud Security Engineer  (Ratings) - Virtual

$132,000 - $190,000/Yr

S&P Global - New York, NY

posted 5 months ago

Full-time - Senior
New York, NY
10,001+ employees
Computing Infrastructure Providers, Data Processing, Web Hosting, and Related Services

About the position

The Senior Lead GenAI Cloud Security Engineer (Ratings) is a pivotal role within the S&P Ratings Security team, which is dedicated to protecting clients and users from modern security threats. This position is responsible for the development and implementation of security architecture and engineering best practices across S&P Ratings technology platforms. The engineer will provide security engineering and architecture consultation to enhance security in S&P Ratings Applications and Services, including GenAI applications. This role is designed for a principal security engineer who will work closely with software development, QA, SRE, and Operations teams to identify technical risks, evaluate critical failure points, and determine security controls to mitigate these risks. The engineer will prioritize and schedule these controls in alignment with application development timelines and collaborate with cross-functional teams to implement necessary remediations. In this senior technical role, the Senior Lead GenAI Cloud Security Engineer will drive the cloud security and GenAI/LLM security architecture, providing leadership to mature the security engineering program. The engineer will also develop security tooling, mentor team members, and serve as a hands-on partner to software, SRE, and QA teams. This position requires a deep understanding of cloud computing platforms, security fundamentals, and modern development workflows, as well as the ability to assess and enhance the security posture of cloud resources. The engineer will be instrumental in developing technical standards, conducting vulnerability assessments, and implementing cloud security posture management tools to ensure the integrity and security of cloud-native applications.

Responsibilities

  • Develop and implement security architecture and engineering best practices across S&P Ratings technology platforms.
  • Provide security engineering and architecture consultation to enhance security in S&P Ratings Applications and Services, including GenAI applications.
  • Identify component and system level technical risks and evaluate critical failure points.
  • Determine technical security controls to mitigate risks and prioritize them with application development timelines.
  • Collaborate with cross-functional teams to implement remediations for identified risks.
  • Drive the cloud security and GenAI/LLM security architecture.
  • Lead efforts to mature the security engineering program and develop security tooling.
  • Mentor team members and provide hands-on support to software, SRE, and QA teams.

Requirements

  • Hands-on experience architecting, automating, maintaining, and securing Cloud Computing Platforms (AWS/Azure).
  • Experience assessing security posture of cloud resources.
  • Proficiency with Infrastructure-as-code tools (e.g., Terraform).
  • Experience with modern development and deployment workflows (Containerization technology, CI/CD platforms).
  • Strong knowledge in security fundamentals, threat modeling, and security architecture.
  • Deep understanding of Internet technologies, DNS, TCP/IP networks (protocols, ports, etc.).
  • Experience with AWS Serverless application architectures (e.g., Lambda, Kinesis, API Gateway, SQS, SNS).
  • Ability to develop technical standards, conduct testing, log analysis, and vulnerability assessments.
  • Experience implementing cloud security posture management, workload protection, and cloud-native application protection platform tools (e.g., Prisma Cloud, Orca, Wiz).
  • Experience with secrets/credential management systems (e.g., Vault, CyberArk).
  • Experience in software development including Java, Python, and scripting languages.
  • Advanced knowledge of secure architecture and design patterns for Cloud native Web and Microservices.
  • Advanced knowledge in security best practices, principles, and common security frameworks such as OWASP, NIST, and ISO.

Nice-to-haves

  • Experience with Azure DevOps pipelines/tools (e.g., ADO GIT, ADO pipelines, Boards, Build & Package tools).
  • Understanding of modern authentication and authorization protocols and concepts (OAuth 2.0, OIDC, WebAuthn/FIDO2, Zero Trust).
  • Experience with applied cryptography.
  • Deep understanding of OSI layer, TCP/IP networks (protocols, ports, etc.).
  • Experience with WAF, DDoS, and other attack mitigation solutions.
  • Knowledge of development practices and concepts - Lean principles, including Shift left, DevSecOps, CloudOps, continuous delivery.
  • Experience working with various Database systems (e.g., Oracle, Postgres).

Benefits

  • Health care coverage designed for the mind and body.
  • Generous time off to keep employees energized.
  • Access to resources for continuous learning and career growth.
  • Competitive pay and retirement planning options.
  • Company-matched student loan contributions and financial wellness programs.
  • Family-friendly perks and benefits for partners and children.
  • Retail discounts and referral incentive awards.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service