Required qualifications, capabilities, and skills
- Formal training or certification on engineering concepts and 5+ years applied experience
- Hands-on practical experience delivering enterprise-level cybersecurity solutions and controls
- Experience with security, networking, K8S, Python GoLang, Compliance and regulatory policies
- Hands-on practical experience delivering enterprise level planning, design, and implementation of enterprise-level security solutions and controls related to:
- Modern Security Engineering/Architecture practices (e.g. microservices, containers, orchestration, continuous integration & delivery pipelines, API first, service delivery & integration)
- Technical Service Delivery - Shipping code & features
- Product technologies (i.e., Infrastructure, Application)
- Secure Software Development Life Cycle (SSDLC) (e.g. code review, risk assessments, threat modeling, static code analysis, and dynamic application scanning
- Applicable working experience designing and implementing cloud services (e.g., IaaS, PaaS, SaaS, etc.) offered from public cloud service providers (e.g., AWS, Microsoft Azure, Google etc.)
- Ability to evaluate current and emerging technologies to select or recommend the best solutions for the future state architecture
- Experience effectively communicating with senior business leaders
Preferred qualifications, capabilities, and skills
- Certification in Public Cloud Technology from one of the major Cloud Service Providers (e.g. AWS Certified Solutions Architect, Microsoft Azure Architect, Google Cloud Architect)
- Experience in financial services consumer businesses (i.e., Mortgages, Cards or Digital) preferred but not required
- Banking experience preferred but experience in industries with similar risk tolerance is acceptable
- Understanding of the financial services industry and their IT systems