A recognized financial organization is seeking a Cloud Platform Security and Compliance Engineer to join their growing team in Charlotte, NC. This is a hybrid role, requiring 3 days/week onsite.
Responsibilities:
- Cloud container vulnerability scan: Partner with vulnerability management team to develop a viable solution and processes to scan and identify security vulnerabilities in the cloud container environments.
- Container Image Remediation and Cloud Security Posture Management (CSPM)
- Partner with ETO to establish protocols for container image hygiene, gating and develop a sustainable posture management strategy as we expand our cloud presence.
Qualifications:
- Experience developing security control requirements for public cloud platform services
- Deep knowledge of industry and regulatory compliance frameworks applicable to financial services workloads deployed in public cloud
- Experience with CSPM tool custom policy development and mapping those policies to framework requirement
- Desired skills
- Thorough understanding of AWS security concepts and principles
- Thorough understanding of GRC process requirements as they relate to public cloud security controls
- Certification in public cloud security and/or GRC.
