A.C. Coy

Compensation

Full Description

Overview Location: 3/2 Hybrid arrangement; Office located in downtown Pittsburgh, PA Type: Direct Hire Work Authorization: US Citizen or Green Card holder only; Visa Sponsorship not available A.C. Coy is assisting a local client in their search for a full-time Senior Cloud Security Engineer. This individual will be responsible for ensuring the security and compliance of our cloud infrastructure in a highly regulated financial environment. The ideal candidate will have a strong background in cloud security, a deep understanding of regulatory requirements, and the ability to design, implement, and maintain secure cloud solutions. This high-profile role will have an excellent salary and benefits package, as well as numerous professional development opportunities and the potential for a substantial bonus. Responsibilities Design, develop, and deploy scalable cloud-based security solutions to protect sensitive financial data and ensure compliance with industry regulations Perform comprehensive vulnerability testing, risk analyses, and security assessments to identify and mitigate potential threats Develop and coordinate robust cloud security procedures Monitor for and respond to security incidents in the cloud environment, utilizing advanced security tools and techniques Collaborate with IT and development teams to ensure cloud solutions are securely integrated with existing software and infrastructure, following best practices and security standards Keep abreast of the latest security issues, regulatory changes, and industry trends to proactively address emerging threats Assist with the design of security training and awareness programs to educate staff about cloud security risks and responsibilities, fostering a culture of security within the organization Regularly report on the status of cloud security, including any breaches or vulnerabilities, to senior management and stakeholders Work with third-party vendors to ensure that security requirements are met and maintain strong relationships with external security partners Maintain compliance with all relevant security and privacy laws and regulations, including PCI-DSS, GDPR, SOX, and other industry-specific standards Qualifications Required: Minimum of 7 years of IT Security experience Proven experience in cloud security engineering, preferably in a financial institution, with a track record of successfully implementing secure cloud solutions Strong knowledge of cloud platforms and cloud security best practices, including identity and access management, encryption, and network security Experience with regulatory compliance frameworks such as PCI-DSS, GDPR, and SOX, and the ability to navigate complex regulatory environments Excellent problem-solving skills and the ability to work under pressure, with a proactive and detail-oriented approach to security Strong communication and collaboration skills, with the ability to effectively convey complex security concepts to both technical and non-technical audiences Experience with DevSecOps practices and tools, including continuous integration and continuous deployment (CI/CD) pipelines Knowledge of infrastructure as code (IaC) and automation tools, such as Terraform, Ansible, or CloudFormation Familiarity with security monitoring and incident response tools, such as SIEM, IDS/IPS, and EDR solutions Preferred: Bachelor's or Master's degree in Computer Science, Information Security, or a related field. Specific experience will be considered in lieu of a degree Relevant certifications in Cyber Security, with Cloud specific certifications a plus