Logo of Huzzle

Home

Matches

Explore

Manage

Cyber Security Engineer (Remote)

image

Sumitomo Mitsui Trust Bank Limited New York Branch

1mo ago

  • Job
    Full-time
    Senior (5-8 years)
  • Phoenix

AI generated summary

  • You need 5+ years in Cybersecurity, a degree or equivalent, Azure/GCP certs, cloud security architecture experience, strong Terraform skills, and knowledge of APIs and security frameworks.
  • You will optimize technology systems, implement security in Azure and GCP, develop DevSecOps strategies, establish coding standards, and assess technology for upgrades and integration.

Requirements

  • - Minimum of 5 years of experience in Cybersecurity and/or related field.
  • - Bachelor’s degree or equivalent work experience, Azure/ GCP certifications
  • - Experience designing, building, and implementing security architecture within cloud environments (AWS, Azure, GCP, etc.) Azure and GCP preferred.
  • - Proficient knowledge and use of Terraform for automation.
  • - MS Defender, Sentinel, CrowdStrike, Rapid7, Imperva, Palo Alto Firewalls and native cloud firewalls
  • - Experience with industry security frameworks (CIS, NIST)
  • - Foundational and functional understanding of how APIs works (RESTful)
  • - Understanding of API and Service Mesh security - specifically on common controls for API security (SSO, OAuth, Threat Protection)
  • - Applicable security certifications desired; CISSP, CEH, GIAC, GSEC, or CSSLP or advanced degree in InfoSec.
  • - Azure/GCP Architecture certification preferred.

Responsibilities

  • Plan and design methods for the optimization and integration of various forms of technology systems or policies and high-level principals.
  • Apply varied engineering and design theories to produce robust, integrated functioning of various systems, technology interfaces, and/or overarching information policies and high-level principles.
  • Assess the functioning of overall technology and communications systems and end-to-end processes and look for ways to upgrade and optimize systems and processes in the future.
  • Work across the architecture and technology organization to ensure effective implementation, architecture compliance, and conflict resolution.
  • Implement selected security solutions in the Azure and GCP Cloud environments. This would include security related policy, deployment of end-point controls, and securing Kubernetes.
  • Build the DevSecOps program vision and strategy covering all aspects from architecture, design, development, and deployment.
  • Build and publish application security standards, design patterns and secure coding standards for web and mobile security.
  • Build and implement API Security vision and strategy including protection capabilities for securing APIs throughout their life cycle.
  • Establish encryption standards for the organization.
  • May participate in other ad-hoc projects to upgrade or install cloud components, workstations, networks, or software, or to assess and optimize overall functioning of technology, data, and processes.

FAQs

Do we support remote work?

Yes, this position is fully remote.

What is the salary range for this role?

The anticipated salary range for this role is between $97,000.00 and $154,000.00, based on qualifications and experience.

What are the main responsibilities of the Cyber Security Engineer?

Main responsibilities include designing and implementing security solutions in Azure and GCP environments, building a DevSecOps program, establishing encryption standards, and assessing and optimizing technology systems.

What qualifications are needed for this position?

A minimum of 5 years of experience in Cybersecurity or a related field, a Bachelor’s degree or equivalent work experience, Azure/GCP certifications, and experience in cloud security architecture.

Which cloud environments should candidates be experienced with?

Candidates should have experience with Azure and GCP, with a preference for individuals who also have experience with AWS.

What types of security frameworks should a candidate be familiar with?

Candidates should have experience with industry security frameworks such as CIS and NIST.

Are any specific security certifications preferred for this role?

Yes, applicable certifications include CISSP, CEH, GIAC, GSEC, or CSSLP. An advanced degree in InfoSec is also desirable.

What tools and technologies are emphasized for this position?

Proficient knowledge of Terraform, as well as familiarity with MS Defender, Sentinel, CrowdStrike, Rapid7, Imperva, Palo Alto Firewalls, and native cloud firewalls.

Is experience with API security important for this role?

Yes, a foundational understanding of how APIs work, as well as specific knowledge of API and Service Mesh security, is essential.

What is the company that is hiring for this position?

The hiring company is SMBC Manubank, part of the Sumitomo Mitsui Banking Corporation Group.

Sumitomo Mitsui Trust Bank Limited New York Branch

Finance
Industry
201-500
Employees
1925
Founded Year

Mission & Purpose

Sumitomo Mitsui Trust Bank, Limited (SuMi TRUST) was established through the merger of The Sumitomo Trust and Banking Co., Ltd. with Chuo Mitsui Trust and Banking, Ltd. and Chuo Mitsui Asset Trust and Banking Company, Ltd. on April 1, 2012. SuMi TRUST is Japan’s largest trust bank, with AUM of more than $800 Billion USD. SuMi TRUST provides an assortment of financial solutions and manages a broad spectrum of financial products across its global branches. The SuMi TRUST NY Branch manages a $35 Billion USD portfolio of corporate debt investments in the United States, with an emphasis on stable income generation, with decades of proven business success. Our areas of expertise include leveraged loans, CLOs, middle-markets, corporate bonds and project financing. SuMi TRUST continues to strive towards excellence and future growth with dedication to our employees and customers.