SENIOR CLOUD SECURITY ENGINEER - REMOTE IN CALIFORNIA
United States
Full-time
1 week ago
$190,000 - $215,000 USD
H1B Sponsor
Key skills
Cloud security engineeringAWSAzure expertiseSecurity controls designData encryption technologiesIncident response experienceAPI securityComplex security analysisSecure software designUpper management interfacingSubject matter expertInterpersonal communicationTeam leadership.NETOracleSalesforceERPLeadershipCommunicationNetwork SecurityCloud Security
About this role
The University of California Office of the President is a leading institution dedicated to research and education. They are seeking a Senior Cloud Security Engineer to develop and implement security controls for cloud environments, ensuring the protection of mission-critical information and resources.
Responsibilities:
- Implements Office of the President and institution-wide security controls, up to and including the most complex, that are broad in scope to prevent unauthorized access or changes to mission-critical information and to protect mission-critical cloud hosted IT resources
- Works with senior and IT management to develop Office of the President security plans to mitigate risk of theft, destruction, alteration or denial of access of information from cloud hosting environments and workloads
- Advises Office of the President and serves as Office of the President expert on security prevention, best practices and secure software and virtual hardware design
- Plan, develop, and implement security controls for hosted enterprise systems, including PeopleSoft HCM, customized .NET applications, and related software and technologies including secure workload configuration and operation in virtualized environments, secure connectivity between solution components, and appropriate controls around access and changes to same
- Plan, develop, and implement appropriate access controls to ensure only authorized access to cloud hosted IT resources and institutional information, including access request approval mechanisms, tracking of access authorizations over time, alignment of access with least privilege and separation of duties concepts and requirements, and implementation of formal access re-certification processes
- Partners with IT, and business units to align security strategies with organizational goals
- Leads incident response and forensic investigations related to cloud hosted services
- Partners with IT leadership and support teams, business units, legal and privacy stakeholders
- Supports stakeholders in ensuring that recommended controls are implemented
- Works with senior and IT management to establish Office of the President and institution-wide security policy and standards
- Additional duties as required
Requirements:
- Min 8 years of experience in design, implementation, and management of cloud hosting security controls in support of large-scale business services including operational use of cloud scripting / automation tools to deploy, manage, and confirm controls
- Min 2 years of experience as a lead security engineer for one or more cloud hosted enterprise business systems (HR/Payroll, financials, ERP, retirement, etc.)
- Expert interpersonal communication skills with the ability to work effectively with both technical and non-technical personnel at various levels in the organization
- Expert experience using IT security systems and tools
- Demonstrated skills applying security controls to computer software and hardware
- Demonstrated skill at administering complex security controls and configurations to computer hardware, software and networks
- Expert knowledge of data encryption technologies and demonstrated experience selecting and applying appropriate data encryption technologies
- Demonstrated knowledge of secure hardware, software and network design techniques
- Demonstrated skill at analyzing and preventing security incidents of high complexity
- In-depth knowledge of computer hardware, software and network security issues and approaches
- Expert knowledge of IT security and demonstrated skill in the design and development of diverse and complex security policies and procedures
- Experience interfacing with upper management on a regular basis
- Recognized as subject matter expert
- Experience with API security for enterprise business systems and related tools and technologies (e.g. Mulesoft)
- Direct experience securing large-scale AWS hosted workloads
- Bachelor's degree in related area and / or equivalent experience / training
- Min 2 years of experience in Security controls design and implementation for enterprise PeopleSoft HCM solution deployed in an internally managed cloud hosting environment
- Advanced experience in incident response and digital forensics including reporting
- Thorough knowledge of other areas of IT and In-depth knowledge and understanding of department and Office of the President processes and procedures
- Experience leading a team of IT professionals
- Experience with secure deployment of HR/Payroll add-on tools and services (e.g. Pathlock, chatbots, Salesforce, etc.)
- Direct experience securing Oracle PeopleSoft HCM and PeopleTools in a cloud hosting environment
- Master's degree in Computer Science, Cybersecurity, or related field
- CISSP, CISM, SABSA, AWS Security Specialty, or equivalent