USAA: Cloud security engineer mid level

Purpose of Job As a Cloud Security Engineer, you’ll work on enabling public cloud platforms for use in a world class financial services organization.

You’ll bring solid experience in emerging technologies such as cloud native services through AWS, GCP, and Azure, while leveraging Infrastructure as Code (IaC) through Python and Terraform to address repeatable security design patterns.

Our Cloud Security Engineers work closely with Product Management, Infrastructure Services Engineers, Enterprise Data Engineers, and other members of the Public Cloud Program to enable a secure and compliant foundation of our public cloud environments.Conducts software and systems engineering to develop new capabilities, ensuring Information Security is integrated across the enterprise.

Conducts comprehensive technology research to evaluate potential vulnerabilities in Enterprise systems.

Identifies and manages existing and emerging risks that stem from business activities and ensures risks associated with business activities are effectively identified, measured, monitored, and controlled.

Installs, configures, troubleshoots, and maintains hardware and software.

Job Requirements Researches and analyzes the latest capabilities of specific Information Security (e.g.

Cloud services, encryption, PKI etc.) and IT technologies (e.g.

operating systems, networks, storage, virtualization etc.).

Develops and maintains knowledge of the USAA implementations of these technologies.Creates, publishes, and maintains Information Security baselines for specific technologies (e.g.

operating systems, databases).Operates and maintains hardware and software of Information Security solutions and technologies (e.g.

firewalls, intrusion prevention (IPS), web application firewalls (WAF), web proxies).Monitors and troubleshoots systems, tools and/or networking solutions.

Performs investigative research, analysis and troubleshooting on complex security issues.Performs tuning and enhancing of Information Security solutions and technologies recommended by senior team members.Writes code/scripts/automation recommended by senior team members.Designs and develops new tools/technologies as related to Information Security.Serves as a resource to team members on escalated issues of an unusual nature.Follows written risk and compliance policies and procedures for business activities Minimum Education: Bachelor’s Degree4 additional years of related experience beyond the minimum required may be substituted in lieu of a degree.

Minimum Experience: 4 or more years of related experience in Information Security, Cybersecurity, Identity and Access Management (IAM) and/or Information Technology to include accountability for complex tasks and/or projects.2 or more years of related experience in Firewall, Web Proxies, Web Application Firewall, Intrusion Prevention Systems (IPS/IDS), Mainframe, Windows, Linux, Apple, Security Information and Event Management (SIEM) and/or Security Orchestration, Automation, and Response (SOAR) solutions,Advanced level of business acumen in the areas of business operations, risk management, industry practices and emerging trends.Advanced troubleshooting skills.

(Packet analyzer a plus)Programming or scripting experience (Python or PowerShell preferred).*Qualifications may warrant placement in a different job level*When you apply for this position, you will be required to answer some initial questions.

This will take approximately 5 minutes.

Once you begin the questions you will not be able to finish them at a later time and you will not able to change your responses.Preferred Experience2 years of hands-on experience with AWS cloud applications and infrastructure2 years of hands-on experience with GCP cloud applications and infrastructure Understanding/working knowledge of the public cloud infrastructure and servicesExperience building and securing infrastructure as code using CloudFormation, Ansible, GitLab, Terraform and/or similar toolsUnderstanding of software development lifecycle models, as well as the approaches to implement Cloud Well-Architected FrameworksUnderstanding of the Cloud shared responsibility modelFluency with one or more scripting/coding languages (e.g.

PowerShell, bash, Python)Experience implementing and leveraging cloud native and/or vendor logging and monitoring solutionsRelevant security and/or cloud provider certifications The above description reflects the details considered necessary to describe the principal functions of the job and should not be construed as a detailed description of all the work requirements that may be performed in the job.At USAA our employees enjoy one of the best benefits package in the business, including a flexible business casual or casual dress environment, comprehensive medical, dental and vision plans, along with wellness and wealth building programs.

Additionally, our career path planning and continuing education will assist you with your professional goals.Relocation assistance is not available for this position.For Internal Candidates:Must complete 12 months in current position (from date of hire or date of placement), or must have manager’s approval prior to posting.Last day for internal candidates to apply to the opening is 3/11/20 by 11:59 pm CST time.

SDL2017