Cyber Security Engineering

NOTE: Requisition Broadcasted: 2/26/25 - Resumes due: 2/20/25 EOD. Onsite in Charlotte

- Hybrid model - onsite 3 days a week. Cloud Platform Security and Compliance Engineer

- ** Experience developing security control requirements for public cloud platform services; **Deep knowledge of industry and regulatory compliance frameworks applicable to financial services workloads deployed in public cloud;

**Experience with CSPM tool custom policy development and mapping those policies to framework requirements.

Desired skills: **Thorough understanding of AWS security concepts and principles; **Thorough understanding of GRC process requirements as they relate to public cloud security controls; **Certification in public cloud security and/or GRC. **Must have excellent communication skills both verbal and written, collaborative team player, self-motivated, ability to work independently without close oversight while at the same time able to function in a team setting on shared tasks, collaborative approach to team interactions vs. attempting to manage or dominate others, proactive vs. reactive approach, attempts to anticipate and resolve potential problems/risks sooner vs. later. Provide location and interview availability ** Video conference interview.

Job Description:

Position is crucial as the audit specifically flagged cloud security gaps, and as our cloud operations expand, so does our need for specialized security measures.

Key responsibilities include:

Cloud container vulnerability scan: Partner with vulnerability management team to develop a viable solution and processes to scan and identify security vulnerabilities in the cloud container environments.

Container Image Remediation and Cloud Security Posture Management (CSPM):

Partner with ETO to establish protocols for container image hygiene, gating and develop a sustainable posture management strategy as we expand our cloud presence.