Bank Of America Sr Cloud Security Controls Governance Manager 

United States, Colorado, Denver 

314002139

Job Description:

The Cloud Security Controls Governance Manager is responsible for implementing, managing, and governing security controls across multi-cloud environments, with a specific emphasis on Azure and AWS platforms, to ensure the protection of organizational data and systems. This role requires deep expertise in cloud security, architecture principles, and industry standards. The ideal candidate will work closely with various teams to ensure the security of cloud-based applications, data, and infrastructure, particularly on platforms like AWS and Azure. Will manage a team of 5-7.

Key Responsibilities:
- Ensures Information Technology systems meet enterprise standards, adhere to applicable rules, laws, and regulations, and comply with appropriate treatment of risk- Develop and implement security controls for cloud infrastructure (IaaS, PaaS, SaaS) based on industry best practices, compliance requirements, and bank security policies.
- Ensure appropriate security measures are in place to protect against threats, vulnerabilities, and breaches in Azure and AWS environments.
- Develop and maintain documentation for cloud security controls, policies, and procedures.
- Monitor and evaluate the effectiveness of existing cloud security controls and recommend enhancements.
- Conduct regular security assessments and audits of cloud environments to identify and mitigate potential security threats and vulnerabilities in cloud environments.
- Participate in internal and external audits to demonstrate compliance with cloud security requirements.
- Provide guidance and training to stakeholders on cloud security best practices and the implementation of security controls.
- Stay current with emerging cloud security trends, technologies, and best practices.
- Continuously improve security controls and processes to enhance the organization's security posture.

Required Skills:
- In-depth understanding of cloud security principles, best practices for Azure and AWS platforms, and industry frameworks such as OWASP Top 10, NIST, CSA, CIS benchmarks.
- Experience building and implementing Infrastructure as Code and/or Policy as Code governance strategies.
- Experience conducting security assessments, risk analyses, and developing security concepts.
- Hands-on experience with cloud security tools and technologies such as AWS Security Hub, Azure Security Center, Google Cloud Security Command Center, and/or Wiz.
- Extensive knowledge of security tools and technologies such as SIEM, IDS/IPS, DLP, firewalls, PKI, and identity management and how they work in cloud environments. Specifically in network security, including AWS networking primitives, security groups, network access control lists, proxies, firewall and WAF technologies.
- Experience with cloud and containerized technologies, AKS, EKS, ECS, serverless, Kubernetes and Docker
- Extensive knowledge of public cloud service providers and the threats to workloads within those environments
- Currently hold active AWS Security Specialty or Azure AZ-500 certification

This job will be open and accepting applications for a minimum of seven days from the date it was posted.

1st shift (United States of America)