Senior Lead, Cloud Security Platform Solutions

About The Position

Requirements

• Post-secondary education in Computer Science or in a related field.
• At least 5 years of hands-on technical work experience in performing security assessments on cloud platforms, CI/CD deployment pipelines, network infrastructure and complex applications.
• Experience with Risk Assessments of applications migrated into the Cloud Environments.
• At least 6 years’ experience in security solution architecture, software development, and/or hands-on experience with implementations of cloud environments, security controls and cloud-based solutions.
• Strong communicator and capable of creating clear documentation.
• Solid knowledge of cloud technologies and cloud security (GCP or Azure or AWS, Kubernetes and IAM, CI/CD pipelines, Terraforms, infrastructure as a code).
• Experience with tools used in securing cloud deployments such as CNAPP, CSPM, CWPP, etc.
• Cloud security engineering or cloud solution architecture certifications from Google, Microsoft or AWS.
• Used industry leading productivity tools to produce quantitative/qualitative reports, data flow diagrams & visual presentations.
• Familiar with industry standards and frameworks e.g., NIST 800-53, ISO 27001, ISO27002, ISO 27017, ISO27018, PCI DSS, CIS.
• Possess advanced communication (verbal/written/presentation) skills in English.

Nice To Haves

• Experience with GCP and Kubernetes is a strong asset.
• Certifications (CISSP, CISM, CCSP, CRISC) are nice to have.
• Knowledge of Spanish is an asset.

Responsibilities

• Design and implement security controls that protect cloud-based applications and infrastructure.
• Develop and enforce security patterns, policies, standards, and procedures to protect the integrity, availability, and confidentiality of the organization’s cloud infrastructure.
• Integrate security tools and practices into the DevOps pipeline to ensure continuous delivery without compromising security.
• Conduct security reviews of cloud-native applications and platforms, identifying vulnerabilities and providing remediation strategies.
• Assist in implementing and managing security monitoring tools to detect threats, anomalies, and potential security incidents in cloud environments.
• Collaborate with the incident response team to ensure that cloud-specific threats are properly addressed and mitigated.
• Conduct regular security assessments, review vulnerability scans, and review penetration testing reports of cloud applications and platforms.
• Coordinate with DevOps and IT teams to apply necessary patches and security updates across cloud infrastructure.
• Ensure cloud security solutions align with industry regulations and organizational compliance requirements.
• Manage the audit process for cloud security, responding to compliance assessments and third-party audits.
• Stay updated with emerging trends in cloud security and propose improvements to the current security posture.
• Evaluate new cloud security controls, technologies, tools, and processes to enhance the organization’s security in cloud environments.
• Keep informed and well versed on financial industry regulations demands in different regions based on practical experience.

Benefits

• Upskilling through online courses, cross-functional development opportunities, and tuition assistance.
• Competitive Rewards program including bonus, flexible vacation, personal, sick days, and benefits will start on day one.
• Opportunities for community engagement & belonging with our various programs.