ChandlerRecruiter Since 2001
the smart solution for Chandler jobs

Information Security Engineer 6 - Cloud Security

Company: Wells Fargo Bank
Location: Chandler
Posted on: November 10, 2019

Job Description:

Job Description Important Note: During the application process, ensure your contact information (email and phone number) is up to date and upload your current resume prior to submitting your application for consideration. To participate in some selection activities you will need to respond to an invitation. The invitation can be sent by both email and text message. In order to receive text message invitations, your profile must include a mobile phone number designated as -- ------ ---"Personal Cell-- ------ - - or -- ------ ---"Cellular-- ------ - - in the contact information of your application. At Wells Fargo, we want to satisfy our customers-- ------ ------ - financial needs and help them succeed financially. We-- ------ ------ -re looking for talented people who will put our customers at the center of everything we do. Join our diverse and inclusive team where you-- ------ ------ -ll feel valued and inspired to contribute your unique skills and experience. Help us build a better Wells Fargo. It all begins with outstanding talent. It all begins with you. Wells Fargo Technology sets IT strategy; enhances the design, development, and operations of our systems; optimizes the Wells Fargo infrastructure footprint; provides information security; and enables continuous banking access through in-store, online, ATM, and other channels to Wells Fargo-- ------ ------ -s more than 70 million global customers. The Cloud & Platform Security Solutions Engineering (CPSSE) team is part of the Information Security (IS) group under Wells Fargo Technology. CPSSE provides security solutions engineering for all Cloud and Distributed Systems platforms through innovation, commitment and accountability, and delivery of quality products and services. Position is responsible for security solutions design, implementation, consulting, and security governance guidance around cloud platforms, virtualization technologies, containerization, security controls, and emerging technologies. Position will be responsible to apply in-depth Information Security experience, knowledge, and breadth in order to provide solutions for emerging cloud platforms and technology security risks, and improve the enterprise-- ------ ------ -s security posture. Position acts as a liaison to the owning technology LOB or area, cloud security program and supporting projects, Information Security (IS) focus areas, and peer teams across Information Security and Wells Fargo's Technology organization, to understand business processes and requirements and then provides security solutions design to enable risk mitigation across the enterprise. This requisition has (10) openings for technical senior lnformation Security Engineer (ISE6) positions. Roles & Responsibilities may include: Serve as one of the senior level cloud security engineers / DevSecOps engineer / SME's for high visibility cloud computing initiatives Evangelize opportunities, challenges, and security advantages of integrated cloud services Analyze and design cloud security capabilities encompassing: DevOps, automation, access, connectivity Analyze and design controls to secure different cloud deployment and service models Architect, design, and implement secure cloud frameworks Design, manage, and execute transformation required for Public Cloud Develop and implement secure CI/CD pipelines Proactively partner to update CI/CD pipelines based on trends identified in the environment Develop and implement cloud-based procedures, security baselines, continuous monitoring, and compliance checks Develop and implement opportunities to virtualize, automate, and develop infrastructure as code Leverage agility and scalability of DevSecOps and automated governance utilizing secure infrastructure as code Harden infrastructure, platforms, workloads, and services Review/update security policies, standards, requirements, and solutions covering different cloud deployment and service models Proactively prioritize, analyze and address complex problems and incidents to ensure the highest level of environment stability and availability Develop, document and implement a greenfield framework for cloud optimization leveraging industry best practices (including but not limited to CSA, CIS, NIST, FedRAMP, OWASP, etc.) to ensure a secure, least privileged model Devise a strategy to develop and implement cloud infrastructure to enable public cloud environments and interconnect to on-prem legacy environments Devise a strategy to transition from traditional access management best practices to role based access management strategies aligned and scalable for the cloud Partner with stakeholders to assess public & on-prem cloud services implementation and automation opportunities Develop and maintain relationships with business and IT partners, engineering and implement automation solutions that balance business agility, operational maintainability, and risk reduction Work with leaders and team members at all levels and across functional lines Critical thinking skills to question status quo Utilize analytical skills and the ability to think outside the box Strong ability to learn and solution for new and emerging technologies, and adapting to change **Open to all Wells Fargo Major Hub Locations including telecommute. **Required Qualifications10+ years of information security applications and systems experience5 + years of cloud computing experience5+ years of experience with Cloud technologies5+ years of experience with building, deploying and securing cloud platforms4+ years of public cloud experience4+ years of configuration experience with Cloud service providers such as Amazon Web Services (AWS), Google Cloud Platform (GCP) or MS Azure3+ years of experience with secure DevOps and deployment automation to cloud environmentsDesired QualificationsExpert knowledge and understanding of information security practices and policies, including Information Security Frameworks, Standards, and best practicesAbility to manage highly complex issues and negotiate solutionsExcellent verbal and written communication skillsAbility to interact and communicate effectively with all levels of an organization; including at the executive levelCloud security certification such as Certificate of Cloud Security Knowledge (CCSK), Certified Cloud Professional (CCP) or Cloud Computing Architect (CCA)Certified Information Systems Security Professional (CISSP)Cloud vendor certification such as VMware Certified Professional (VCP) or AWS Certified Solutions Architect3+ years of experience utilizing Cloud Infrastructure within tools and applications such as AWS Cloud Formation Templates, Spinnaker and Terraform6+ years of public cloud experienceExperience with Ansible automation toolKnowledge and understanding of technology deployment: guides, configuration scripts, and configuration template developmentKnowledge and understanding of information security engineering, development, and implementationKnowledge and understanding of DevOps principlesScripting and automation experience4+ years of experience with scripting languages such as Bash, PowerShell, Python, Shell, VBScript, or JavaScript4+ years of Python experienceKnowledge and understanding of system monitoring and automationExperience utilizing PowerShell, Bash, Perl, or Python to automate complex manual tasksExperience with RESTful API callsKnowledge and understanding of SOA (Services Oriented Architecture)Knowledge and understanding of AgileExperience with Agile Scrum (Daily Standup, Sprint Planning and Sprint Retrospective meetings) and KanbanKnowledge and understanding of technology code: repository utilization and management in support of engineering practices1+ years of experience with repository or artifact management tools such as Artifactory or NexusKnowledge and understanding of automation and engineering release developmentKnowledge and understanding of components such as framework, security or authentication, event driven architecture and tool sets for problem monitoring and solvingKnowledge and understanding of monitoring the development of security vulnerabilities, threats, exposures, associated risk, and mitigating solutionsKnowledge and understanding of security monitoring solutions Knowledge and understanding of network automation development through scriptingKnowledge and understanding of network virtualizationKnowledge and understanding of firewall and networkingKnowledge and understanding of security technologies and concepts including: defense in principles, antivirus, firewall data and Intrusion Detection Systems (Host, network, Wireless)Knowledge and understanding of network security architectures and standards developmentKnowledge and understanding of network or network security 5+ years of Network experience3+ years of IAM (Identity and Access Management) experienceIAM (Identity and Access Management) experienceKnowledge and understanding of security technologies and concepts including identity management, single sign on, directory services, role based access control, cryptographic algorithms, mutual authentication and certificate managementIDaas (IDentity as a Service) solutions experienceKnowledge and understanding of SAML (Security Assertion Markup Language)3+ years of experience securing public cloud deployments on Google Cloud Platform (GCP), AWS and AzureKnowledge and understanding of diverse platforms and operating systems, including current and emerging technologies2+ years of virtualization technologies experienceExperience securing IaaS/PaaS private cloud or DevOps environments2+ years of experience with workload and service isolation in cloud and distributed platformsExperience securing public SaaS cloud deployments3+ years of risk management and mitigation experienceKnowledge and understanding of Information Security Frameworks and standards (FFIEC, NIST, ISO)Knowledge and understanding of Cloud computing, PaaS design principles and micro services and containersKnowledge and understanding of security issues and hardening best practicesExperience working with cloud access security brokersExperience working with cloud security management or governance toolsKnowledge and understanding of application or software security such as: web application penetration testing, secure code review, secure static code analysisKnowledge and understanding of application security planning and security architectureKnowledge and understanding of application deployment model: design, implementation, and maintenanceKnowledge and understanding of software development life cycle (SDLC): code control, build and deploymentKnowledge and understanding of technology deployment: application versions and upgrades into complex and large scale environmentsKnowledge and understanding of threat analysis and assessment of potential and current information security risk/threatsKnowledge and understanding of known and emerging information threats and mitigating controlsKnowledge and understanding of establishing or managing cyber threat management capabilities and functions2+ years of information security experience including experience in one or more of the following security disciplines: information security monitoring, incident response, vulnerability management, host/network forensics, cyber-crime investigation, penetration testing, business continuity, or cyber threat intelligenceVirtual leadership experience with ability to effectively drive results, provide feedback/direction, and manage and build relationships with leaders and team members in a geographically dispersed team environmentAbility to assess issues, make quick decisions, implement solutions, and influence changeAbility to influence and build relationships with LOB stakeholders, technology CIO leadership, external service providers, and architecture teamsLeadership skills including the ability to influence effectively in a matrix environmentAbility to interact with all levels of an organizationAbility to influence management on technical or business solutionsExperience resolving and working through escalated and complex issuesExcellent verbal, written, and interpersonal communication skillsOutstanding problem solving and decision making skillsOther Desired Qualifications 3+ years of experience in cloud automation, Secure DevOps, test and deployment automation, security scanning, and related concepts and tools (Gitlab, Jenkins, Spinnaker, etc.) Experience with AWS APIs Experience automating routine cloud operations and deployment tasks 5+ years of experience in Cloud Operations and Site Reliability Experience building cloud management and monitoring capabilities 3+ years of experience in designing and building AWS Services such as VPC, Route53, Transit Gateways, Internet Gateways, Direct Connect, Customer Gateways, Security Groups, ELB, ALB, VPN, and VPC Peering 2+ years of experience in deploying cloud automation and related network control capabilities 5+ years of experience in cloud IAM engineering and solutions experience 3+ years of experience with credential and secrets management in cloud environments 3+ years of experience in federated identity (IE: Okta, Ping, OAuth, SAML, etc.) Experience with Docker, kubernetes, or other similar container solutions Solid understanding of cloud-native constructs Asset Lifecycle Management experience Compliance and configuration management experience Experience with tagging and metadata RBAC and least privileged principles Process engineering/re-engineering experience GIAC or ISC2 (CISSP, CCSP, or other) industry security certifications Ability to self-identify problems and gaps, and recommend potential solutions Ability to work and problem solve across multiple issues and tasks at a time Adapts to new and emerging technologies and business objectives Assists leadership in mapping of assigned goals and tasks Provides active participation and leadership in team duties and responsibilities Works well under self-direction on assigned tasks Works well with partner teams and peers toward established goals and timelinesJob ExpectationsAbility to work on call as assignedFlexibility to frequently be on call beyond normal working hoursAbility to travel up to 10% of the timeDisclaimerAll offers for employment with Wells Fargo are contingent upon the candidate having successfully completed a criminal background check. Wells Fargo will consider qualified candidates with criminal histories in a manner consistent with the requirements of applicable local, state and Federal law, including Section 19 of the Federal Deposit Insurance Act.Relevant military experience is considered for veterans and transitioning service men and women.Wells Fargo is an Affirmative Action and Equal Opportunity Employer, Minority/Female/Disabled/Veteran/Gender Identity/Sexual Orientation.

Keywords: Wells Fargo Bank, Chandler , Information Security Engineer 6 - Cloud Security, Engineering , Chandler, Arizona

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category

Other Engineering Jobs

Trailer Mechanics Needed - Apply Online Today!
Description: TRAILER MECHANICS, are you looking to advance your career If so, don't miss this great opportunity to join one of the most successful LTL carriers in the U.S If you are looking to make more money and (more...)
Company: Saia Mechanics
Location: Glendale
Posted on: 11/22/2019

Company: Carvana
Location: Peoria
Posted on: 11/22/2019

Quality Assurance Test Engineer
Description: Be a part of a team revolutionizing health and wellness in the fast pace and growing Healthcare Industry br We have an immediate need for multiple Quality Assurance Test Engineers to help our client, (more...)
Company: Stratfield Consulting
Location: Phoenix
Posted on: 11/22/2019

Care Team Engineer-Public Areas - The Ritz-Carlton - (19163662)
Description: Care Team Engineer-Public Areas At more than 80 award-winning properties worldwide, The Ritz-Carlton Ladies and Gentlemen create experiences so exceptional that long after a guest stays with us, the experience (more...)
Company: Marriott International, Inc.
Location: Tucson
Posted on: 11/22/2019

Virtualization/Cloud Engineer
Description: SRP is one of the largest public power and water utilities in the U.S. providing electricity to approximately one million customers in the greater metropolitan Phoenix area. Since its founding in 1903, (more...)
Company: SRP
Location: Phoenix
Posted on: 11/22/2019

Cloud Platform Engineer
Description: The Cloud Platform Engineer 2 serves as a key contributor working on various Cloud-native technologies. The Cloud Platform Engineer 2 helps drive the rollout of these capabilities while striving to meet (more...)
Location: Scottsdale
Posted on: 11/22/2019

Avaya Voice Engineer
Description: Where good people build rewarding careers. br br Think that working in the insurance field can't be exciting, rewarding and challenging Think again. You'll help us reinvent protection and retirement (more...)
Company: Allstate
Location: Tempe
Posted on: 11/22/2019

Lead Operations Engineer
Description: About CenturyLink br br CenturyLink NYSE: CTL is the second largest U.S. communications provider to global enterprise customers. With customers in more than 60 countries and an intense focus on (more...)
Company: CenturyLink
Location: Phoenix
Posted on: 11/22/2019

NOC Voice Engineer-Weekend Shift (Thursday-Sunday)
Description: Where good people build rewarding careers. br br Think that working in the insurance field can't be exciting, rewarding and challenging Think again. You'll help us reinvent protection and retirement (more...)
Company: Allstate
Location: Tempe
Posted on: 11/22/2019

Avionics Mechanic (15N)
Description: 15N Avionics Mechanic Job ID: 1137046 Job Views: 173 Location: PHOENIX, Arizona, United States ZIP Code: 85008 Job Category: Aviation Posted: 11.02.2019 Age Requirements: Must be between the ages of 17 (more...)
Company: Army National Guard
Location: Phoenix
Posted on: 11/22/2019

Log In or Create An Account

Get the latest Arizona jobs by following @recnetAZ on Twitter!

Chandler RSS job feeds