Navy Federal Credit Union

bookmark

Senior cloud security engineer

Computer Science

Full Time

Winchester, us

Posted this week

About the Job

Salary - $95600 - $163500/Year

Job Description

YOUR LIFE'S MISSION : POSSIBLE

You have goals, dreams, hobbies and things you’re passionate about.

What’s Important to You Is Important to Us

We’re looking for people who not only want to do meaningful, challenging work, keep their skills sharp and move ahead, but who also take time for the things that matter to them friends, family and passions.

And we're looking for team members who are passionate about our mission making a difference in military members' and their families' lives.

Together, we can make it happen.

Don’t take our word for it.

  • Military Times 2021 Best for Vets Employers
  • WayUp Top 100 Internship Programs
  • Forbes® 2021 The Best Employers for New Grads
  • Forbes® America's Best Employers
  • 2021 People Companies that Care
  • Fortune Best Workplaces for Women
  • Fortune 100 Best Companies to Work For®
  • Fortune Best Workplaces for Millennials
  • Computerworld® Best Places to Work in IT

Basic Purpose

To drive embedding security seamlessly into the product development lifecycle for cloud applications and environments. Serve as a technical interface and subject matter expert working with development teams on securing cloud infrastructure and workloads by designing, implementing, and operationalizing capabilities.

Support the implementation of continuous security monitoring practices along with threat and vulnerability prevention, detection, and response capabilities on cloud assets.

Works independently under limited supervision and / or in a team environment.

Responsibilities :

  • Collaborate with dependent teams to develop cloud security standards and verify controls are implemented for hardening infrastructure, hardening infrastructure as code, hardening CI / CD pipelines, and hardening containers
  • Translate cloud security policies and standards into machine-readable, automated guardrails using cloud-native, open source, custom scripting, and commercial security tools
  • Design and implement continuous monitoring practices to verify security properties at runtime with continuous feedback to teams responsible for triage, detect tracking, and remediation workflows
  • Build automation for continuous cloud asset discovery and configuration management
  • Implement cloud security automation such as cloud security posture management (CSPM) and cloud workload protection capabilities (CWPP)
  • Develop and implement monitoring and contextual incident response alerting patterns targeting cloud infrastructure and runtime assets for the security operations center, including integration with SEIM / SOAR technologies
  • Implement automation to support Information Security reporting metrics to reflect overall cloud compliance and cloud security health to senior leadership
  • Provide subject matter expertise on secure architecture, design and coding practices based on current knowledge of security threats and vulnerabilities that could impact the technology stack
  • Support definition of Secure SDLC standard to include security architecture, design and coding requirements for infrastructure, application and data to align with application security maturity model and adopt a shift-left approach for security
  • Lead security innovation and best practices in product development through collaboration and learning from industry professionals and consortiums
  • Perform other duties as assigned

Qualifications and Education Requirements :

  • Bachelor’s Degree in Information Technology or the equivalent combination of education, training or experience
  • 6 years or more experience in the field of cybersecurity and / or application security
  • Proficient with Azure native security tools like Defender for Cloud, Azure Policy, Sentinel
  • Proficient with Azure Resource Graph and Kusto Query and scripting languages
  • Experience with ARM and Infrastructure as code
  • Experience with cloud security analysis and design techniques
  • Experience with cloud security practices and procedures, including risk assessment, authentication technologies, security monitoring, runtime defenses, and security attack patterns and practices
  • Experience with one or more cloud platforms (e.g. Azure, Amazon, GCP)
  • Advanced knowledge in security best practices, principles, and common security frameworks such as OWASP, NIST and ISO
  • Experience building secure software based on frameworks such OWASP ASVS, BSIMM, or NIST SSDF
  • Experience in software development including Java, Python, .Net, and scripting languages
  • Advanced knowledge of secure architecture and design patterns for Web, Mobile and Microservices
  • Advanced knowledge of current and emerging threats and techniques for exploiting security vulnerabilities
  • Experience securing cloud infrastructure and applications
  • Experience with methodologies and security testing tools for threat analysis of complex applications and services including threat modeling, software fuzzing, static and dynamic analysis and penetration testing.
  • Advanced organizational, planning and time management skills
  • Advanced communication, presentation, and analytical skills

Desired Qualifications and Education Requirements :

  • Advanced degree in Information Technology, or the equivalent combination of education, training or experience
  • Experience with Azure DevOps, Kubernetes, Splunk, and Tanzu / Pivotal Cloud Foundry technologies
  • Experience implementing cloud security posture management and cloud-native application protection platform tools (e.g. Aqua, Prisma Cloud, Orca, Wiz)
  • CISSP, CISM or other related Information Security certifications
  • Advanced knowledge of Navy Federal’s functions, philosophy, operations and organizational objectives

Hours : Monday - Friday, 8 : 00AM - 4 : 30PM

Location : 820 Follin Lane, Vienna VA 22180 5550 Heritage Oaks Dr Pensacola, FL 32526 141 Security Dr. Winchester, VA 22602 Remote

Salary : $95,600 - $163,500

Navy Federal Credit Union assesses market data to establish salary ranges that enable us to remain competitive. You are paid within the salary range, based on your experience, location and market position.

Navy Federal is now hybrid! Our standard enterprise requirement for a hybrid schedule is to report onsite 4-16 days each month.

The number of days reporting onsite will ultimately be determined by the employee's leadership and business unit needs. You will learn more throughout the hiring and onboarding process.

LI-Remote

Equal Employment Opportunity

Navy Federal values, celebrates, and enacts diversity in the workplace. Navy Federal takes affirmative action to employ and advance in employment qualified individuals with disabilities, disabled veterans, Armed Forces service medal veterans, recently separated veterans, and other protected veterans.

EOE / AA / M / F / Veteran / Disability

COVID-19 Vaccine Information

As a COVID-19 safety measure, our employees must either provide proof of COVID-19 vaccination or follow additional safety protocols, including testing.

Disclaimer

Navy Federal reserves the right to fill this role at a higher / lower grade level based on business need. An assessment may be required to compete for this position.

Bank Secrecy Act

Remains cognizant of and adheres to Navy Federal policies and procedures, and regulations pertaining to the Bank Secrecy Act.

Employee Referrals

This position is eligible for the TalentQuest employee referral program. If an employee referred you for this job, please apply using the system-generated link that was sent to you.

Last updated : 2022-06-21

Posted this week

See More Relevant Jobs
SPECTRUM

Network engineer

Computer Science
Englewood, us
Posted this week
bookmark
Amazon

Sr. Software Developer (Virtual), Security Products

Computer Science
Remote, US
Posted this week
bookmark
Splunk

Principal Software Engineer - BackEnd (US Remote)

Computer Science
Seattle, US
Posted this week
bookmark

Landing Jobs in the US for International Students just got super easy

Learn how to network, prepare visa interviews and sure shot strategies to kickstart your career in the USA.

Know More