Cloud Security Engineer (Hybrid/Remote) - UMB Bank
Topeka, KS
About the Job
Our Information Security organization serves as the eyes and ears of UMB’s technology security and ensures controls, authentication and authorization are in place to keep UMB systems and applications safe. We monitor, discover and remediate any vulnerabilities while upholding and complying with all established corporate policies, standards and procedures. We work with UMB associates to help them be effective and be able to perform their jobs by granting the appropriate access. We collaborate with other technical teams to ensure base security metrics are being met. Best of all, we get to use cutting edge tools to make sure all systems and company devices are free from any potential threats. In today’s digital world, our team plays a critical role in UMB’s enterprise security plan.
As a Cloud Security Engineer , you will serve as the cloud security subject matter expert and support UMB’s Infrastructure team deliver secure solutions in the cloud. This will favor a cloud-native approach using solutions that are supportable, repeatable, and balance security versus risk. You will provide operational support for the Information Security owned solutions and for enterprise projects and design while serving as a subject matter expert on a diverse team of Information Security Engineers. This is a subset of the overall responsibilities which will include multiple initiatives as assigned by IT leadership.
This role is hybrid (Tue & Wed on-site) for candidates in the Kansas City metropolitan area and open to qualified remote candidates outside of the Kansas City area but only within the US.
_How you’ll spend your time:_
+ Define and execute public cloud-centric security controls and help design secure patterns for computing, storage, networking, operational, and security domains. This includes advising application, product, and cloud infrastructure teams on incorporating cloud infrastructure capabilities with an information security mindset, actively collaborating with cloud stakeholders to deliver best-fit secure solutions for UMB, and identifying emerging cloud infrastructure services and needs to meet business requirements.
+ Serve as a pragmatic, results-driven thought leader and consensus builder with a technology-savvy mindset capable of articulating complex IT concepts to all audiences, from technical contributors inside and outside the company.
+ Deploy, consult, and manage security controls leveraging solutions included but not limited to AWS multi-accounts structure, Organizational Units, Service Control Policies (SCP), IAM policies, Virtual Private Cloud (VPC), AWS Control Tower Guardrails and best practices.
+ Partner with application teams to support them in their design and implementation of infrastructure-as-code stacks that meet the needs of the applications leveraging technologies, included but not limited to Terraform, CloudFormation, CDK constructs, and Ansible.
+ Advise on all aspects of secure cloud infrastructure offerings and solution design.
+ Provide hands-on technical coaching to accelerate cloud security learnings across the organization.
+ Provide accurate and current information on AWS services and serve as a consultant to the IT Information Security organization to solve business use cases.
_We’re excited to talk with you if:_
+ You have a Bachelor’s Degree in Management Information Systems, Computer Science or related field OR equivalent work experience.
+ You have at least 4 years of experience designing and implementing secure solutions and securing public cloud workloads.
+ You have at least 2 years of experience with Metrics, Events, Logging, and Tracing solutions like Cloudtrail, CloudWatch, or Splunk.
+ You have strong infrastructure-as-code (IaC) expertise and deployment experience with technologies such as Terraform or AWS CloudFormation.
+ You have in-depth experience with automation methodologies, processes improvement, and development of CI/CD pipelines.
+ You have demonstrated knowledge/experience with at least 2 scripting languages like Python, PowerShell, AWS/Azure CLI, Ansible, and Bash.
+ You have hands-on experience deploying and operating AWS computer instances (EC2), AWS Storage Services (EBS/S3/Glacier), AWS multi-accounts environment, IAM Policies, AWS Tower, AWS Config, and Service Control policies (SCP).
+ You have demonstrated knowledge with configuration management and pipeline automation with AWS DevOps, Jenkins, Git or similar offering.
+ You have knowledge with container technologies, such as Docker, Kubernetes, AWS EKS and ECS.
+ You have collaborated with service providers and partners.
+ You have working knowledge and expertise with common enterprise-grade security solutions.
_Bonus Points If:_
+ You have experience with Amazon GuardDuty, AWS Shield, and Amazon Inspector services.
+ You have the following certifications:
+ AWS Solutions Architect Associate
+ AWS Certified Security – Specialty
+ CompTIA Cloud+ Certified Cloud Security Professional (CSSP)
+ Certificate of Cloud Security Knowledge (CCSK)
+ GIAC Cloud Security Automation (GCSA)
+ You have previous experience working within the banking or financial industry.
Applicants must have legal authority to work in the United States. Work Visa sponsorship is not available for this position.
Deadline to apply: December 31, 2024
Compensation Range:
Minimum: $83,200.00 - Maximum: $214,560.00
_The posted compensation range on this listing represents UMB’s standard for this role, but the actual compensation may vary by geographic location, experience level, and other job-related factors. In addition, this range does not encompass the full earning potential for this role. Please see the description of benefits included with this job posting for additional information._
UMB offers competitive and varied benefits to eligible associates, such as Paid Time Off; a 401(k) matching program; annual incentive pay; paid holidays; a comprehensive company sponsored benefit plan including medical, dental, vision, and other insurance coverage; health savings, flexible spending, and dependent care accounts; adoption assistance; an employee assistance program; fitness reimbursement; tuition reimbursement; an associate wellbeing program; an associate emergency fund; and various associate banking benefits. Benefit offerings and eligibility requirements vary.
Are you ready to be part of something more?
You're more than a means to an end—a way to help us meet the bottom line. UMB isn't comprised of workers, but of people who care about their work, one another, and their community. Expect more than the status quo. At UMB, you can expect more heart. You'll be valued for exactly who you are and encouraged to support causes you care about. Expect more trust. We want you to do the right thing, no matter what. And, expect more opportunities. UMBers are known for having multiple careers here and having their voices heard.
_UMB and its affiliates are committed to inclusion and diversity and provide employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex (including gender, pregnancy, sexual orientation, and gender identity), national origin, age, disability, military service, veteran status, genetic information, or any other status protected by applicable federal, state, or local law. If you need accommodation for any part of the employment process because of a disability, please send an e-mail to_ _talentacquisition@umb.com_ _to let us know the nature of your request._
_If you are a California resident, please visit our_ Privacy Notice for California Job Candidates (https://p1.aprimocdn.net/umb/cdbf5f22-8f7a-43b9-bd03-b09f014a39c3/Privacy_Notice_for_California_Candidates_Original_file.pdf) _to understand how we collect and use your personal information when you apply for employment with UMB._
_Who we are_
We are more than a company. We are advisors, consultants, problem solvers, friends, community members, experts, and we are here to help you make the best of every moment with a financial foundation that can help you succeed.
Learn more about UMB's vision (https://p1.aprimocdn.net/umb/8cf58ce2-e9d6-4621-b60a-b09f01638943/UMB_Tuce_Book_Original_file.pdf)
Check out the road to a career at UMB
As a Cloud Security Engineer , you will serve as the cloud security subject matter expert and support UMB’s Infrastructure team deliver secure solutions in the cloud. This will favor a cloud-native approach using solutions that are supportable, repeatable, and balance security versus risk. You will provide operational support for the Information Security owned solutions and for enterprise projects and design while serving as a subject matter expert on a diverse team of Information Security Engineers. This is a subset of the overall responsibilities which will include multiple initiatives as assigned by IT leadership.
This role is hybrid (Tue & Wed on-site) for candidates in the Kansas City metropolitan area and open to qualified remote candidates outside of the Kansas City area but only within the US.
_How you’ll spend your time:_
+ Define and execute public cloud-centric security controls and help design secure patterns for computing, storage, networking, operational, and security domains. This includes advising application, product, and cloud infrastructure teams on incorporating cloud infrastructure capabilities with an information security mindset, actively collaborating with cloud stakeholders to deliver best-fit secure solutions for UMB, and identifying emerging cloud infrastructure services and needs to meet business requirements.
+ Serve as a pragmatic, results-driven thought leader and consensus builder with a technology-savvy mindset capable of articulating complex IT concepts to all audiences, from technical contributors inside and outside the company.
+ Deploy, consult, and manage security controls leveraging solutions included but not limited to AWS multi-accounts structure, Organizational Units, Service Control Policies (SCP), IAM policies, Virtual Private Cloud (VPC), AWS Control Tower Guardrails and best practices.
+ Partner with application teams to support them in their design and implementation of infrastructure-as-code stacks that meet the needs of the applications leveraging technologies, included but not limited to Terraform, CloudFormation, CDK constructs, and Ansible.
+ Advise on all aspects of secure cloud infrastructure offerings and solution design.
+ Provide hands-on technical coaching to accelerate cloud security learnings across the organization.
+ Provide accurate and current information on AWS services and serve as a consultant to the IT Information Security organization to solve business use cases.
_We’re excited to talk with you if:_
+ You have a Bachelor’s Degree in Management Information Systems, Computer Science or related field OR equivalent work experience.
+ You have at least 4 years of experience designing and implementing secure solutions and securing public cloud workloads.
+ You have at least 2 years of experience with Metrics, Events, Logging, and Tracing solutions like Cloudtrail, CloudWatch, or Splunk.
+ You have strong infrastructure-as-code (IaC) expertise and deployment experience with technologies such as Terraform or AWS CloudFormation.
+ You have in-depth experience with automation methodologies, processes improvement, and development of CI/CD pipelines.
+ You have demonstrated knowledge/experience with at least 2 scripting languages like Python, PowerShell, AWS/Azure CLI, Ansible, and Bash.
+ You have hands-on experience deploying and operating AWS computer instances (EC2), AWS Storage Services (EBS/S3/Glacier), AWS multi-accounts environment, IAM Policies, AWS Tower, AWS Config, and Service Control policies (SCP).
+ You have demonstrated knowledge with configuration management and pipeline automation with AWS DevOps, Jenkins, Git or similar offering.
+ You have knowledge with container technologies, such as Docker, Kubernetes, AWS EKS and ECS.
+ You have collaborated with service providers and partners.
+ You have working knowledge and expertise with common enterprise-grade security solutions.
_Bonus Points If:_
+ You have experience with Amazon GuardDuty, AWS Shield, and Amazon Inspector services.
+ You have the following certifications:
+ AWS Solutions Architect Associate
+ AWS Certified Security – Specialty
+ CompTIA Cloud+ Certified Cloud Security Professional (CSSP)
+ Certificate of Cloud Security Knowledge (CCSK)
+ GIAC Cloud Security Automation (GCSA)
+ You have previous experience working within the banking or financial industry.
Applicants must have legal authority to work in the United States. Work Visa sponsorship is not available for this position.
Deadline to apply: December 31, 2024
Compensation Range:
Minimum: $83,200.00 - Maximum: $214,560.00
_The posted compensation range on this listing represents UMB’s standard for this role, but the actual compensation may vary by geographic location, experience level, and other job-related factors. In addition, this range does not encompass the full earning potential for this role. Please see the description of benefits included with this job posting for additional information._
UMB offers competitive and varied benefits to eligible associates, such as Paid Time Off; a 401(k) matching program; annual incentive pay; paid holidays; a comprehensive company sponsored benefit plan including medical, dental, vision, and other insurance coverage; health savings, flexible spending, and dependent care accounts; adoption assistance; an employee assistance program; fitness reimbursement; tuition reimbursement; an associate wellbeing program; an associate emergency fund; and various associate banking benefits. Benefit offerings and eligibility requirements vary.
Are you ready to be part of something more?
You're more than a means to an end—a way to help us meet the bottom line. UMB isn't comprised of workers, but of people who care about their work, one another, and their community. Expect more than the status quo. At UMB, you can expect more heart. You'll be valued for exactly who you are and encouraged to support causes you care about. Expect more trust. We want you to do the right thing, no matter what. And, expect more opportunities. UMBers are known for having multiple careers here and having their voices heard.
_UMB and its affiliates are committed to inclusion and diversity and provide employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex (including gender, pregnancy, sexual orientation, and gender identity), national origin, age, disability, military service, veteran status, genetic information, or any other status protected by applicable federal, state, or local law. If you need accommodation for any part of the employment process because of a disability, please send an e-mail to_ _talentacquisition@umb.com_ _to let us know the nature of your request._
_If you are a California resident, please visit our_ Privacy Notice for California Job Candidates (https://p1.aprimocdn.net/umb/cdbf5f22-8f7a-43b9-bd03-b09f014a39c3/Privacy_Notice_for_California_Candidates_Original_file.pdf) _to understand how we collect and use your personal information when you apply for employment with UMB._
_Who we are_
We are more than a company. We are advisors, consultants, problem solvers, friends, community members, experts, and we are here to help you make the best of every moment with a financial foundation that can help you succeed.
Learn more about UMB's vision (https://p1.aprimocdn.net/umb/8cf58ce2-e9d6-4621-b60a-b09f01638943/UMB_Tuce_Book_Original_file.pdf)
Check out the road to a career at UMB
Source : UMB Bank
