Associate Principal, Platform Security
What You’ll Do
This role will help support and drive the architecture, design, and governance of a secure infrastructure ecosystem, focusing on automation and proactive security best practices in deep collaboration with Teammates and other internal OCC Teams.
Primary Duties and Responsibilities:
To perform this job successfully, an individual must be able to perform each primary duty satisfactorily.
- Collaborate with development, operations and infrastructure teams to analyze security change control Processes, Controls and Guardrails
- Search for opportunities to integrate and automate security best practices within processes to deliver secure software and infrastructure
- Support cloud infrastructure teams with security observation remediation and proactive strategy to improve security posture
- Work to reduce cycle time on remediating security observations within cloud and enterprise platform teams
- Support automation for any security-related objectives within IT
- Assess the production security readiness of services we plan to deploy
- Support operationalization of shared security services and tools to improve automated monitoring capabilities
- Contribute to the team’s continuous improvement through research, retrospectives, discussion groups and performing architecture assessments
- This role will provide hands on support architecting cloud security technologies, native AWS monitoring and auditing services, and improved cloud security governance and control
Supervisory Responsibilities:
- None
Qualifications:
The requirements listed are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the primary functions.
- [Required] Experience managing infrastructure in public cloud environments like AWS (preferred), Azure or GCP
- [Required] Able to succeed in fast-paced environment with frequent changes
- [Required] Exceptional analytical, problem solving and troubleshooting skills with the ability to exercise good judgment while developing creative solutions
- [Required] Team player – humble, collaborative, and focused on making sure the entire team succeeds
- [Required] High-energy, results driven person with an attention to detail
- [Required] Exceptional tactical planning skills based on long-term strategic goals
- [Required] Cloud engineering and assessment experience, and training with focus on development of secure enterprise solutions
- [Required] Strong familiarity with enterprise technologies; strong technical background and understanding of security-related technologies
- [Required] Understanding of Identity access management and Privileged Account Management ideologies and have some experience with key industry toolsets
- [Required] Understanding of Public Key Infrastructure and Cloud Based Technologies
- [Required] Experience with using Continuous Integration and Continuous Delivery (CI/CD) tools like Jenkins, Travis, Harness, Spinnaker, Appveyor, CodeBuild or CodePipeline
Technical Skills:
- [Preferred] Experience with Terraform, Infrastructure as code
- [Preferred] Programming/scripting experience in languages like Java, Bash, Python or Go
- [Preferred] Experience with cloud/technology deployments in general
- [Preferred] Experience with NIST CSF/COBIT and related control frameworks
- [Preferred] Experience with IT-security/risk/governance
- [Preferred] Excellent proficiency in network, application, wireless and physical security
- [Required] Proficient in creating content with Microsoft Office (Word, Excel, PowerPoint, Visio)
- [Preferred] Experience with encryption technologies and products (Key Management / Certificate Management)
- [Preferred] Exposure to IAM and PAM services and applications (CyberArk / ForgeRock / Sailpoint)
Education and/or Experience:
- Bachelors degree from an accredited college/university OR equivalent work experience preferred
- Experience in Information Assurance or Information Security environment
Certificates or Licenses:
- AWS Certifications Required (Solutions Architect, Security Specialty, etc.)