Schwab’s Cloud & Data Security Engineering (CDSE) group designs and develops next-generation cloud (XasS) security solutions for the Schwab Cybersecurity Services (SCS) organization, providing high security assurance and the safeguarding of Firm data. The Senior Cloud Security Engineer will join an elite team of cloud security engineers and analysts whose mission is to protect Schwab’s most valuable assets: our client information and their trust.
As a Senior Cloud Security Engineer, you will contribute directly to the protection and the adoption of SaaS applications within the enterprise. With you, we will build on and around core SaaS security technologies including Security Posture Management (SSPM) and Cloud Access Security Broker (CASB) platforms. In collaboration with technical leadership, you will be responsible for designing and developing major areas of the platforms that implement preventative and detective capabilities to support Schwab’s growing SaaS portfolio, improving upon overall SaaS security posture and use.
What you’re good at
Collaboration and relationship building with multiple cross-functional areas of the enterprise (consumer, business, technology, risk, audit)Identifying and communicating complex business and technical problems related to information riskAbility to swiftly identify bottlenecks or problems while not being constrained by in-the-box thinking or legacy processWriting professional level documentation covering topics related to Cybersecurity or SaaS application technologies. These include design and implementation documents, process documents, SLAs, diagrams, etc..Working with industry standards like; NIST, CIS, CSA, and PCI, and ISO 27001 as it relates to cloud platforms and services.Monitoring, detecting, and responding to potential threats, drift, or anomalies of SaaS usage and posture.Ensuring compliance and meeting the stipulations of regulatory bodies and acts (NIST, COBIT, etc.)Proven thought leadership with development pipelines and RESTful methodologies, Git, and Continuous Integration/Deployment (CI/CD) tooling & automationWorking with and consuming web service APIsTranslating business & technology security requirements into functional controls and policyEvaluation and prioritization of workstreams for efficient delivery via an Agile methodologyCoach, mentor, and develop less experienced colleagues What you have 10+ years’ large enterprise technical experience in IT (systems administration preferred)5+ years’ cloud experience working with as-a-service platforms and technology3+ years’ operational experience with security technologies and teamsDemonstrable experience in the deployment, configuration, and management of cloud security platforms and tools (CASB, SSPM, SSE, CSPM)Deep understanding of today’s SaaS threat landscape, mitigations, and remediesFlawless communication skills (both written and verbal)Solid functional familiarity with one or more of the following programing/scripting languages; Go, PowerShell, Python, Bash, SQL, BASICExperience implementing & utilizing technology lifecycles and best practicesAn understanding of regulatory requirements and industry standards related to cloud securitySignificant understanding of functionality and capabilities related to CASB, SSPM, and DLP platforms and associated networking technologies within large, distributed environmentsKnowledge and understanding across multiple security domains, concepts, and how they are interconnectedDevelopment and scripting experience in cloud service providers (CSP) environments, SaaS, and their associated APIsA track record of prioritizing and analyzing large amounts of data, creating metrics, and reportingHigh motivation as a self-starter and standout colleague in a team environmentA passion for technology and committed to continual improvement of yourself, your team, and your technologyGood understanding of networking technologies and protocols within large enterprise environments, such as firewalls, traffic management, proxies, VPN, DNS, HTTP, TCP/IPHand-on experience with monitoring and logging concepts, content solutions, and tools; SIEM, SOAR, Kafka, pub-sub, syslog, etc.Expertise in source control, unit testing, and agile methodologiesSecurity certifications from ISC2, CSA or SANS (cloud focus preferred)Bachelor of Science in Information Technology, Security Assurance, Computer Science or related field (preferred)
Platforms
Cloud Access Security Broker (CASB) – Zscaler/NetskopeSaaS Security Posture Management (SSPM) – Adaptive Shield/AppOmni/ObsidianCloud Security Posture Management (CSPM) – Palo Alto PrismaCloud Service Provider(s): AWS, Azure, GCP
Continuous Integration/Continuous Deployment & Orchestration
Plan, Track & Support: JIRA, Confluence, RemedyCode, Build & Ship: GitHub, Azure DevOps, BitBucket, BambooInfrastructure as Code: Terraform, SaltStack, Ansible, CloudFormation Options Apply for this jobApplyShareRefer a friendRefer Sorry the Share function is not working properly at this moment. Please refresh the page and try again later. Share on your newsfeed Why work for us?
Own Your Tomorrow embodies everything we do! We are committed to helping our employees ignite their potential and achieve their dreams. Our employees get to play a central role in reinventing a multi-trillion-dollar industry, creating a better, more modern way to build and manage wealth.
Benefits: A competitive and flexible package designed to empower you for today and tomorrow. We offer a competitive and flexible package designed to help you make the most of your life at work and at home—today and in the future. Application FAQs
Software Powered by iCIMS
www.icims.com