Citi Group Cloud Security Engineer SaaS VP C13 

United States, Texas, Irving 

564237470

The Role:

As a SaaS Security Engineer on the AppSec Engineering team, you will work in a multi-disciplinary team driving cyber security services and solutions to enable Citi to securely adopt SaaS and PaaS solutions built on public Cloud platforms. The individual in this role will primarily be responsible for the development of controls, automation, and expansion of program capabilities in relation to Citi's SaaS Security Posture Management (SSPM) platform at the center of Citi's Cloud Continuous Monitoring (CCM) program. Our operating model emphasizes DevSecOps, that is, automation, integration, and agility based on Security as a Service / Security as Code concepts.

Responsibilities

• Integrate SaaS/PaaS solutions with Citi's SSPM platform and partner with app owners and stakeholders across the enterprise
• Collaborate with a team of highly skilled cloud security engineers to implement the strategic vision of our Cloud Continuous Monitoring program
• Leverage cloud tooling to develop controls that identify misconfigurations and vulnerabilities in cloud infrastructure, define risks, and generate alerts for issues across the cloud estate
• Identify opportunities and implement automation to advance controls engineering, monitoring, and streamline reporting processes
• Reduce risk by analyzing the root cause of issues, their impact, and required corrective actions
• Validate that system design/architecture meets compliance requirements
• Maintain development standards, best practices, and technical documentation for Cloud Continuous Monitoring projects
• Effectively articulate technical security specifications, requirements, etc. through written and verbal communications to both technical and non-technical partners.

Qualifications

4-6 years' experience in most of the experience:

• Hands-on experience with at least one major SaaS/PaaS platform (Workday, Salesforce, etc.)
• Experience automating tasks and reporting (Python preferred)
• Knowledge of containers and supporting technologies (EKS, GKE, Kubernetes, etc.)
• Knowledge of DevOps processes and best practices including the use of pipelines and code management tools
• Excellent technical documentation skills.
• Proven analytical skills
• Excellent communication skills and the ability to communicate with all levels of staff and management are required
• Hands-on experience with Cloud platforms (AWS, GCP, Azure, etc.) is a plus

Education

• Bachelor’s degree/University degree or equivalent experience
• Candidates with SaaS administrative or security related certifications for SaaS platforms like Workday, Salesforce, M365, etc. are highly preferred
• Additional cloud knowledge and certification is a plus

This job description provides a high-level review of the types of work performed. Other job-related duties may be assigned as required.

Anticipated Posting Close Date:

View the " " poster. View the .

View the .

View the