Transamerica
Transamerica is looking for a Specialist, Enterprise Cloud Security Architect/Engineer (Remote) #JavaJobApplicationWorkFromHome #RemoteGoodJavaJob #EngineerJobs #SecurityJobs
Job Family IT Architecture Who We Are Transamerica has been helping people feel better about the future for more than 100 years. We provide investment, retirement, and life insurance solutions to more than 11 million customers throughout the U.S. But the way we see it, our responsibility goes beyond our clients accounts. Were in the business of helping people live well and empowering them to create a better tomorrow through the financial and health-related habits they form today. We help people prepare by providing solutions that consider the whole picture. What We Do Transamerica is organized by lines of business (Life Insurance, Annuities, Mutual Funds, Retirement Plans, Employee Benefits, and Financial Assets), which are supported by Transamerica Corporate (Corporate Development; Finance; Internal Audit; Legislative, Regulatory & Policy; Office of the CEO; People, Places & Brand; Risk; and Technology). Job Description Summary The Specialist, Enterprise Cloud Security Architect/Engineer is focused on the design and development of modern cloud security architectures to protect the confidentiality, integrity and availability of our cloud-based infrastructure in AWS. Define cloud security strategies, build a strong enterprise cloud security architecture practice by providing technology leadership, insight on new developments within the architecture space, and guidance in architectural and design decisions. Job Description Responsibilities Design, implement, and maintain security controls and procedures to protect the confidentiality, integrity, and availability of our cloud-based infrastructure on AWS, with a focus on cloud audit, entitlement reviews, and regulatory compliance. Support security assessments and audits of AWS infrastructure and services, and make recommendations for improvements. Develop and maintain AWS security policies, procedures, and standards in compliance with industry best practices and regulatory requirements. Advise management on the security roadmap and provide input on strategic security initiatives. Collaborate with cross-functional teams to ensure the security of new and existing AWS deployments, with a focus on compliance with regulatory requirements such as HIPAA, NYDFS and more Work with external and internal auditors to provide evidence of compliance with regulatory requirements. Provide guidance and support to development teams on secure application design and deployment in AWS Provide guidance to enterprise and solution architects for adopting cloud security best practices into their solutions. Architect and implement OAuth 2.0 solutions for securing cloud-based applications and APIs. Perform POCs on security products in the marketplace to evaluate their effectiveness in securing AWS infrastructure and services. Implement proactive and reactive security controls to detect and respond to security threats in AWS. Stay up-to-date with the latest AWS security trends, threats, and best practices, and proactively implement new security measures as needed. Utilize vulnerability scanning solutions like Nexpose, AWS Inspector, and Twistlock to identify and remediate vulnerabilities in AWS infrastructure and services. Collaborate with Stakeholders to implement and maintain data protection schemes data loss prevention(DLP) controls to safeguard sensitive data in the cloud. Qualifications Bachelors degree in computer science, math, engineering, MIS, or equivalent experience Six years of collective experience in the application of architecture, enterprise roadmaps, analytics, cloud, IT strategies, innovation, SAFE, TOGAF and data integration concepts and methodologies At least 5 years of experience in cloud security engineering and architecture, preferably in a large enterprise environment. Experience with AWS security services and features such as AWS Identity and Access Management (IAM), AWS Security Hub, KMS, AWS Config, and AWS CloudTrail. Advanced knowledge of AWS security groups, NACLs, VPCs, Landing zones Experience architecting and implementing OAuth 2.0 solutions. At least 2 years of experience architecting and implementing security in Kubernetes(EKS) and ECS. Experience with cloud audit, entitlement reviews, and regulatory compliance. Good exposure to IT control frameworks such as COBIT, ITIL, and SOX. Ability to identify gaps in the IT security controls and architect/implement solutions to fill the gaps. Basic understanding and working knowledge of IaC solutions like Terraform to automate the provisioning and configuration of AWS resources Basic understanding and working knowledge of DevOps pipelines to enable secure and compliant software delivery in AWS. Good hands-on experience with vulnerability scanning solutions like Nexpose, AWS Inspector, and Twistlock. Excellent communication and collaboration skills to work effectively with cross-functional teams and external auditors. Professional certifications such as AWS Certified Security Specialty, CISSP, or CISM are a plus. Experience in financial services would be a huge plus Leadership capability to effectively communicate with all levels of management Strong analytical skills and creative thinker Prioritization skills to meet tight deadlines The ability to work in a team environment Preferred Qualifications Masters degree Understanding of big data and real time streaming analytics processing architecture and ecosystems Software development experience in relevant programming languages (i.e. Java, Python, Scala, Node.js, SQL) Good working knowledge of Shell scripting and/or Powershell Thorough Knowledge of open API Specification, REST, API designs, Security and implementation Technology or platform certifications (e.g. AWS Security Specialty Certification or something equivalent) Strong knowledge of Network security in the cloud ( Palo alto firewalls, AWS Transit Gateway and more) Experience in large scale cloud migration projects Compensation: **Please note that the compensation information that follows is a good faith estimate for this position only and is provided pursuant to applicable pay transparency and compensation posting laws. It is estimated based on what a successful candidate might be paid in certain Company locations.** The US salary for this position generally ranges between $140,000 – $180,000 annually. This range is an estimate, based on potential employee qualifications and operational needs. Salary may vary above and below the stated amounts, as permitted by applicable law. Additionally in the US, this position is typically eligible for an Annual Bonus based on the Company Bonus Plan/Individual Performance and is at the Companys discretion. Working Conditions Office environment/work from home Moderate travel #LI-Remote What We Offer For eligible employees, we offer a comprehensive benefits package designed to support both the personal and financial well-being of our employees. Compensation Benefits Competitive Pay Bonus for Eligible Employees Benefits Package Pension Plan 401k Match Employee Stock Purchase Plan Tuition Reimbursement Disability Insurance Medical Insurance Dental Insurance Vision Insurance Employee Discounts Career Training & Development Opportunities Health and Work/Life Balance Benefits Paid Time Off starting at 160 hours annually for employees in their first year of service. Ten (10) paid holidays per year (typically mirroring the New York Stock Exchange (NYSE) holidays). Be Well Company holistic wellness program, which includes Wellness Coaching and Reward Dollars Parental Leave “ fifteen (15) days of paid parental leave per calendar year to eligible employees with at least one year of service at the time of birth, placement of an adopted child, or placement of a foster care child. Adoption Assistance Employee Assistance Program College Coach Program Back-Up Care Program PTO for Volunteer Hours Employee Matching Gifts Program Employee Resource Groups Inclusion and Diversity Programs Employee Recognition Program Referral Bonus Programs Peer Recognition Program (BRAVO) Inclusion & Diversity Transamerica has made a strong commitment to inclusion and diversity, and we are proud to be an organization where all perspectives are valued. Transamerica has earned recognition for its strong efforts year-over-year, including from the Human Rights Campaigns Foundation Corporate Equality Index, the Diversity Best Practices Inclusion Index, and Seramounts 100 Best Companies list. In addition, as part of Transamericas commitment to maintaining an inclusive workplace, the company sponsors employee-driven Employee Resource Groups (ERGs), which are formed around a shared interest or a common characteristic of diversity. ERGs are open to all employees and provide a supportive environment for raising diversity awareness and promoting inclusive behavior. Giving Back Transamerica believes our responsibilities extend beyond our corporate walls. That’s why we created the Aegon Transamerica Foundation in 1994. Through a combination of financial grants and the volunteer commitment of our employees, this foundation supports nonprofit organizations focused on the education, health, and well-being of the communities where we live and work. Transamericas Parent Company acquired the Transamerica business in 1999. Aegons roots go back more than 175 years to the first half of the nineteenth century. Since then, Aegon has grown into an international company, with businesses in the Americas, Europe, and Asia. Today, Aegon is one of the worlds leading financial services organizations, providing life insurance, pensions, and asset management. As a leading global investor and employer, the company seeks to have a positive impact by addressing critical environmental and societal issues, with a focus on climate change and inclusion and diversity. Websites Management Team
Transamerica