TowneBank is a relationship-based enterprise that provides a full range of banking and financial services. They are seeking a Cloud Security Specialist to design, implement, and manage cloud security solutions while collaborating with cross-functional teams to ensure the security of cloud environments.
Prepare management reports relative to the state of cloud security.
Design, implement, and manage cloud security solutions to protect data and applications in cloud environments.
Collaborate with cross-functional teams to ensure cloud security measures are integrated into all aspects of the organization's cloud infrastructure.
Conduct regular security assessments and audits of cloud environments to identify vulnerabilities and recommend improvements.
Stay up to date with the latest cloud security trends, technologies, and best practices to continuously enhance the organization's cloud security posture.
Work closely with the information security team to ensure appropriate measures are in place to identify and prevent potential security risks throughout the network, cloud, and endpoint environment.
Participate as required in the incident response program.
Monitor daily security logs that encompass checking suspicious commands, installs, files shared using cloud services, and doing investigations as necessary.
Oversee an enterprise-wide mailbox system that employees would forward any phishing or malware related items they receive and run investigations to determine appropriate courses of action.
Operate our CASB solution to discover any instances or resources that are out of compliance, create queries to investigate any unusual cloud events, network activity, and resource configurations on our cloud platforms for incidents.
Respond to high severity incidents that involved user compromise/potential compromise through malicious link clicks, file downloads, or phishing, and mitigate these events in a timely manner.
Utilize our EDR platform to monitor any high-risk devices that need to match compliance with Enterprise standards.
Work within our IAM infrastructure to capture user activity and permissions in quarterly privileges access reviews and determine if credentials are still required per privileged user.
Review and present a Cloud Posture assessment report, detailing our findings within our cloud environment, and illustrate the risk levels of each finding to the CISO.
Continuously monitor our IT service management portal for any system or user generated incidents, and work with the various IT teams as necessary to remediate them.
Review all activity from employees logging into their accounts from Non-US locations, and investigate any signs of compromise or suspicious sign-ins.
Adheres to applicable federal laws, rules, and regulations including those related to Anti-Money Laundering (AML) and the Bank Secrecy Act (BSA).
Other duties as assigned.
Participate in the development and review of effective business continuity plans and business impact analysis as related to Cyber and Cloud Security.
Participate in the successful implementation and review of the vendors involved in Cyber and Cloud security.
Participate as required in the incident response program.
Qualification
Required
Bachelor’s degree (Computer Science, Information Technology, or a similar technical discipline) or 2-3 years equivalent experience.
Experience operating Cybersecurity Tool suites for large deployments.
