Staff Cloud Security Engineer
Bengaluru, INDIA
Job description
Job Description Summary
Job Description
Job Overview:
General Electric (GE) Vernova is seeking a motivated Staff Cloud Security Engineer responsible for strategic technical development, Including cloud security automation capabilities in AWS and Azure. The successful candidate will have strong problem-solving, time management and analytical skills. As part of the GE Cybersecurity team, a curiosity to learn combined with a builder-attitude will be critical in our mission to address evolving threats and protect company information and resources.
Specific Responsibilities Include:
Design, build and implement enterprise cyber technology for production environments
Align technical risk management standards, frameworks and policy with overall GE Vernova business and digital requirements.
Drive efforts with program application leads and stakeholders to architect Cloud solutions using tools and services aligned to standards and secure design patterns.
Design and implement automated security controls (AWS SCP, Azure Policy, Cloud Custodian, Wiz.io remediation) to proactively enforce Security, Risk and Compliance standards for applications.
Develop libraries of common secure patterns for deploying cloud infrastructure and applications, including applications provided by GE Vernova Cloud Service Providers
Provide mechanism to demonstrate consistent application of controls and configurations, including creation of real-time tool providing across GE Power cloud accounts.
Engineer secure technology solutions that promote adoption of SecDevOps and Cloud services (IaaS, PaaS & SaaS).
Understand current and evolving threats for Cloud, including mitigation tools and techniques.
Research, recommend and implement controls for developing technology such as container orchestration, machine learning and serverless technologies.
Apply native cloud service provider security and monitoring services in the cloud, including network access controls, encryption, alerting and secrets management.
Identify security design gaps in existing and proposed architectures and recommend and deploy changes and enhancements
Basic Qualifications:
Bachelor’s degree or equivalent knowledge or experience in Information Systems (IS), Information Technology (IT), Computer Science or Engineering from an accredited college or university;
Minimum significant experience architecting secure Cloud platforms (AWS or Azure);
Minimum significant experience with programming or scripting languages;
Minimum proven experience with Cloud automation capabilities
Eligibility Requirements: (Country Specific)
India, Budapest (GE Vernova locations preferred) & Remote.
Desired Characteristics:
Experience reviewing and understanding cloud architecture and security best practices.
Highly technical, eager to learn with strong analytical and problem-solving skills.
Working knowledge of Cloud provider security architecture, resilience and compliance design patterns
Experience delivering compliance automation via AWS SCP, Azure Policy, Cloud Custodian and CNAPP or CSPM tooling.
Knowledge of current programming language (Python preferred), source code management and related technology to evaluate infrastructure as code safeguards.
Knowledge of cloud automation technologies at scale, including CloudFormation, Terraform
Ability to define program KPIs and metrics.
Experience leveraging agile methods within development and project efforts.
Experience performing design reviews to assess security risk for application architecture or introduction of new cloud services.
Experienced in Cloud operations and use of threat intelligence services in a global regulatory environment
Knowledge of IT service management and cybersecurity processes including change management, incident management, configuration management, threat and vulnerability management.
Advanced degree In Information Systems, Information Technology, Computer Science or Engineering from an accredited college or university.
Associate or Professional-level Cloud certification(s).