Senior Cloud Security Engineer

At Schwab, you are empowered to make an impact on your career. Here, innovative thought meets creative problem solving, helping us “challenge the status quo” and transform the finance industry together.

You will be responsible for innovating, designing, and implementing groundbreaking cybersecurity capabilities to safeguard cloud and cloud-based workloads in Azure. This role requires technical hands-on involvement and expertise in cybersecurity.

The Sr Cloud Cybersecurity Engineer for Azure specializes in secure next-gen technology, is a developer and pioneer, and is comfortable building new security capabilities and automation.

We seek a technical, driven individual contributor with a deep passion for cloud security, acting as an accelerator in a multifaceted, cloud-driven, Dev/SEC/Ops environment.

Responsibilities include:

1. Engineering, implementing, and monitoring security measures for Azure and AWS Cloud Infrastructure and integrations.
2. Building and maintaining the security footprint to ensure continuous advancement and maturity.
3. Assisting IT operations and security owners in implementing scalable security capabilities and processes.
4. Recommending, implementing, and delivering new security technology capabilities and assessing their applicability within the organization.
5. Championing and contributing to the organization’s security policies and standards for Azure cloud environments.
6. Interpreting security and technical requirements into business requirements and communicating security risks to relevant partners, from business leaders to engineers.
7. Advising and influencing multidisciplinary teams in implementing and operating cybersecurity controls.
8. Implementing policy-as-code and security-as-automation, adopting IAC and the CICD/SDLC lifecycle across all cloud activities.
9. Collaborating with application developers and database administrators to deliver creative solutions to technical challenges and business needs.
10. Applying understanding and experience with systems automation platforms and technologies.
11. Providing expertise on information security architecture and systems engineering to IT and business teams.
12. Implementing security architectures for cloud/hybrid systems.
13. Automating security controls, data, and processes to improve metrics and operational support.
14. Using cloud-based APIs to develop network/system level tools for safeguarding Azure and AWS environments.
15. Ensuring accurate metrics of security performance and maturity over time.

Required Qualifications:

• Bachelor’s degree in computer science or related field, or equivalent work experience.
• 1-5 years' experience managing security controls with Azure.
• Knowledge of implementing new security technologies and standard methodologies in cloud environments.
• Experience in a highly regulated industry, ideally financial services.
• Experience with cloud-native security tools such as Wiz, Prisma, Orca Security, Zscaler.
• Experience with Bicep, Crossplane, Ansible, Terraform, AWS CloudFormation, or Pulumi.
• Experience working in DevSecOps environments with CI/CD tools like Gitlab, Github, Bamboo, Bitbucket.

Preferred Qualifications:

• 1-5 years' experience managing security controls with AWS.
• 1-5 years' experience managing security controls with GCP.
• Database administration experience is a plus.

• Experience with Google BigQuery for data querying, transformation, and analysis.
• Ability to write and optimize SQL queries in BigQuery for large datasets.
• Knowledge of data modeling and performance tuning in BigQuery.

• Relevant cybersecurity certifications such as CISSP, CCSP, CCSK, and/or AWS cybersecurity certifications.
• Interest in staying updated on emerging security threats, vulnerabilities, and controls.
• Excellent communication skills to articulate complex concepts to technical teams and leadership.

This role is also eligible for bonus or incentive opportunities, in addition to the salary range.