What are the responsibilities and job description for the Senior Security Engineer - SaaS Cybersecurity position at Lensa?
Your opportunity
Schwab’s Cloud & Data Security Engineering (CDSE) group designs and develops next-generation cloud (XasS) security solutions for the Schwab Cybersecurity Services (SCS) organization, providing high security assurance and the safeguarding of Firm data. The Senior Cloud Security Engineer will join an elite team of cloud security engineers and analysts whose mission is to protect Schwab’s most valuable assets: our client information and their trust.
As a Senior Cloud Security Engineer, you will contribute directly to the protection and the adoption of SaaS applications within the enterprise. With you, we will build on and around core SaaS security technologies including Security Posture Management (SSPM) and Cloud Access Security Broker (CASB) platforms. In collaboration with technical leadership, you will be responsible for designing and developing major areas of the platforms that implement preventative and detective capabilities to support Schwab’s growing SaaS portfolio, improving upon overall SaaS security posture and use.
What You’re Good At
At Schwab, we’re committed to empowering our employees’ personal and professional success. Our purpose-driven, supportive culture, and focus on your development means you’ll get the tools you need to make a positive difference in the finance industry. Our Hybrid Work and Flexibility approach balances our ongoing commitment to workplace flexibility, serving our clients, and our strong belief in the value of being together in person on a regular basis.
We offer a competitive benefits package that takes care of the whole you – both today and in the future:
At Schwab, we’re committed to empowering our employees’ personal and professional success. Our purpose-driven, supportive culture, and focus on your development means you’ll get the tools you need to make a positive difference in the finance industry. Our Hybrid Work and Flexibility approach balances our ongoing commitment to workplace flexibility, serving our clients, and our strong belief in the value of being together in person on a regular basis.
We offer a competitive benefits package that takes care of the whole you – both today and in the future:
401(k) with company match and Employee stock purchase plan
Paid time for vacation, volunteering, and 28-day sabbatical after every 5 years of service for eligible positions
Paid parental leave and family building benefits
Tuition reimbursement
Health, dental, and vision insurance
Schwab is an affirmative action employer, focused on employing and advancing in employment, qualified women, racial and ethnic minorities, protected veterans, and individuals with disabilities in the workplace. If you have a disability and require reasonable accommodations in the application process, contact Human Resources at applicantaccessibility@schwab.com or call 800-275-1281.
Schwab’s Cloud & Data Security Engineering (CDSE) group designs and develops next-generation cloud (XasS) security solutions for the Schwab Cybersecurity Services (SCS) organization, providing high security assurance and the safeguarding of Firm data. The Senior Cloud Security Engineer will join an elite team of cloud security engineers and analysts whose mission is to protect Schwab’s most valuable assets: our client information and their trust.
As a Senior Cloud Security Engineer, you will contribute directly to the protection and the adoption of SaaS applications within the enterprise. With you, we will build on and around core SaaS security technologies including Security Posture Management (SSPM) and Cloud Access Security Broker (CASB) platforms. In collaboration with technical leadership, you will be responsible for designing and developing major areas of the platforms that implement preventative and detective capabilities to support Schwab’s growing SaaS portfolio, improving upon overall SaaS security posture and use.
What You’re Good At
- Collaboration and relationship building with multiple cross-functional areas of the enterprise (consumer, business, technology, risk, audit)
- Identifying and communicating complex business and technical problems related to information risk
- Ability to swiftly identify bottlenecks or problems while not being constrained by in-the-box thinking or legacy process
- Writing professional level documentation covering topics related to Cybersecurity or SaaS application technologies. These include design and implementation documents, process documents, SLAs, diagrams, etc..
- Working with industry standards like; NIST, CIS, CSA, and PCI, and ISO 27001 as it relates to cloud platforms and services.
- Monitoring, detecting, and responding to potential threats, drift, or anomalies of SaaS usage and posture.
- Ensuring compliance and meeting the stipulations of regulatory bodies and acts (NIST, COBIT, etc.)
- Proven thought leadership with development pipelines and RESTful methodologies, Git, and Continuous Integration/Deployment (CI/CD) tooling & automation
- Working with and consuming web service APIs
- Translating business & technology security requirements into functional controls and policy
- Evaluation and prioritization of workstreams for efficient delivery via an Agile methodology
- Coach, mentor, and develop less experienced colleagues
- 10 years’ large enterprise technical experience in IT (systems administration preferred)
- 5 years’ cloud experience working with as-a-service platforms and technology
- 3 years’ operational experience with security technologies and teams
- Demonstrable experience in the deployment, configuration, and management of cloud security platforms and tools (CASB, SSPM, SSE, CSPM)
- Deep understanding of today’s SaaS threat landscape, mitigations, and remedies
- Flawless communication skills (both written and verbal)
- Solid functional familiarity with one or more of the following programing/scripting languages; Go, PowerShell, Python, Bash, SQL, BASIC
- Experience implementing & utilizing technology lifecycles and best practices
- An understanding of regulatory requirements and industry standards related to cloud security
- Significant understanding of functionality and capabilities related to CASB, SSPM, and DLP platforms and associated networking technologies within large, distributed environments
- Knowledge and understanding across multiple security domains, concepts, and how they are interconnected
- Development and scripting experience in cloud service providers (CSP) environments, SaaS, and their associated APIs
- A track record of prioritizing and analyzing large amounts of data, creating metrics, and reporting
- High motivation as a self-starter and standout colleague in a team environment
- A passion for technology and committed to continual improvement of yourself, your team, and your technology
- Good understanding of networking technologies and protocols within large enterprise environments, such as firewalls, traffic management, proxies, VPN, DNS, HTTP, TCP/IP
- Hand-on experience with monitoring and logging concepts, content solutions, and tools; SIEM, SOAR, Kafka, pub-sub, syslog, etc.
- Expertise in source control, unit testing, and agile methodologies
- Security certifications from ISC 2 , CSA or SANS (cloud focus preferred)
- Bachelor of Science in Information Technology, Security Assurance, Computer Science or related field (preferred)
- Cloud Access Security Broker (CASB) – Zscaler/Netskope
- SaaS Security Posture Management (SSPM) – Adaptive Shield/AppOmni/Obsidian
- Cloud Security Posture Management (CSPM) – Palo Alto Prisma
- Cloud Service Provider(s): AWS, Azure, GCP
- Plan, Track & Support: JIRA, Confluence, Remedy
- Code, Build & Ship: GitHub, Azure DevOps, BitBucket, Bamboo
- Infrastructure as Code: Terraform, SaltStack, Ansible, CloudFormation
At Schwab, we’re committed to empowering our employees’ personal and professional success. Our purpose-driven, supportive culture, and focus on your development means you’ll get the tools you need to make a positive difference in the finance industry. Our Hybrid Work and Flexibility approach balances our ongoing commitment to workplace flexibility, serving our clients, and our strong belief in the value of being together in person on a regular basis.
We offer a competitive benefits package that takes care of the whole you – both today and in the future:
- 401(k) with company match and Employee stock purchase plan
- Paid time for vacation, volunteering, and 28-day sabbatical after every 5 years of service for eligible positions
- Paid parental leave and family building benefits
- Tuition reimbursement
- Health, dental, and vision insurance
At Schwab, we’re committed to empowering our employees’ personal and professional success. Our purpose-driven, supportive culture, and focus on your development means you’ll get the tools you need to make a positive difference in the finance industry. Our Hybrid Work and Flexibility approach balances our ongoing commitment to workplace flexibility, serving our clients, and our strong belief in the value of being together in person on a regular basis.
We offer a competitive benefits package that takes care of the whole you – both today and in the future:
401(k) with company match and Employee stock purchase plan
Paid time for vacation, volunteering, and 28-day sabbatical after every 5 years of service for eligible positions
Paid parental leave and family building benefits
Tuition reimbursement
Health, dental, and vision insurance
Schwab is an affirmative action employer, focused on employing and advancing in employment, qualified women, racial and ethnic minorities, protected veterans, and individuals with disabilities in the workplace. If you have a disability and require reasonable accommodations in the application process, contact Human Resources at applicantaccessibility@schwab.com or call 800-275-1281.
