Senior Cloud Security Engineer

Your opportunity

At Schwab, you are empowered to make an impact on your career. Here, innovative thought meets creative problem solving, helping us “challenge the status quo” and transform the finance industry together.

You will be responsible for innovating, designing, and implementing groundbreaking cybersecurity capabilities to safeguard cloud and cloud-based workloads in Azure. This role requires technical hands-on involvement and expertise in the cyber security realm.

The Sr Cloud Cybersecurity Engineer for Azure specializes in secure next-gen technology, is a developer and pioneer, and is comfortable in building new security capabilities and automation.

We are seeking a technical, driven individual contributor, that has a deep passion for cloud security, and is an accelerator for a multifaceted, cloud driven, Dev/SEC/Ops environment.

Responsibilities include:

• Engineering, implementing, and monitoring security measures for the protection of Azure and AWS Cloud Infrastructure and integrations.
• Builds and maintains the security footprint to bring continuous advancement and maturity.
• Assists IT operations and security owners to implement scalable security capabilities and processes.
• Recommend, implement and deliver new security technology capabilities and their applicability within the greater organization.
• Champion and contribute to the organization’s security policies and standards for use in Azure cloud environments.
• Interpreting security and technical requirements into business requirements and communicating security risks to relevant partners ranging from business leaders to engineers.
• Advising and influencing multi-disciplinary teams in implementing and operating Cyber Security controls.
• Help implement policy-as-code and security-as-automation, adopting IAC and the CICD/SDLC lifecycle towards all cloud activities.
• Collaborating with application developers and database administrators to deliver creative solutions to difficult technology challenges and business requirements.
• Applying adept understanding and experience with systems automation platforms and technologies.
• Providing domain expertise on information security architecture and systems engineering to other IT and business teams.
• Implementing security architectures for cloud/hybrid systems.
• Automating security controls, data, and processes to provide improved metrics and operational support.
• Employing cloud-based APIs when suitable to write network/system level tools for safeguarding Azure and AWS cloud environments.
• Ensuring accurate metrics of security performance, and maturity over time.

What you have

What you have

To ensure that we fulfill our promise of “challenging the status quo,” this role has specific qualifications that successful candidates should have:

Required Qualifications:

• Bachelor’s degree in computer science or related field, or equivalent work experience.
• 1-5 years' experience managing security controls with Azure
• Knowledge to spot and implement new security technologies and standard methodologies into the company’s cloud offerings.
• Experience in a highly regulated industry, ideally in the financial services industry.
• Experience in working with Cloud native security tools such as: Wiz, Prisma, Orca Security, Zscaler.
• Experience working with Bicep, Crossplane, Ansible, Terraform, AWS CloudFormation or Pulumi
• Experience working in DevSecOps environments with complete CI/CD solutions and developer tools such as: Gitlab, Github, Bamboo, Bitbucket, etc.

Preferred Qualifications:

• 1-5 years' experience managing security controls with AWS.
• 1-5 years' experience managing security controls with GCP.
• 1-5 years database administration experience is also a plus.

• Experience with Google BigQuery for data querying, transformation, and analysis.
• Ability to write and optimize SQL queries in BigQuery for large-scale datasets
• Familiarity with data modeling and performance tuning in BigQuery environments 

• Relevant cybersecurity certifications such as CISSP, CCSP, CCSK and/or AWS cybersecurity certifications.
• An interest and desire to stay on top of emerging security threats, vulnerabilities, and controls.
• Excellent written and verbal communication skills with the ability to articulate complex concepts to technical and people leaders in the organization

In addition to the salary range, this role is also eligible for bonus or incentive opportunities