Job Specifications
Job information:
Functional title - VP, Cloud Security Specialist
Department - IT Security
Corporate level - Vice President
Report to - Global Director, Security Operations
Location - Iselin, NJ (Hybrid Onsite 2 days per week)
Expected full-time salary range between $ 150,000 - $180,000 + variable compensation + 401(k) match + benefits.
Note: Disclosure as required by NJ Pay Transparency Law of the expected salary compensation range for this role.
What you will be doing:
SME Consultancy:
As part of the IT Security team, develop and implement CLS IT Strategy in consultation with the CLS IT teams, ensuring that all initiatives are mirrored in respective strategies including the overall CLS Strategy
Provide security advice and support for information technology projects as Cloud Security subject matter expert (SME)
Research new security related products and services to ensure that CLS is equipped with appropriate industry best tools and solutions
Cloud Security:
Subject Matter Expert (SME) for cloud security within the Security Operations Department.
Experience working with and managing IDPS deployments such as Suricata/Snort including a strong PCAP analysis skillset.
Implement and optimize detection and response workflows in cloud-native/hybrid environments.
Monitor, investigate, and triage cloud security alerts from SIEM and cloud native tools.
Collaborate with cloud operations and infrastructure teams to ensure secure architecture and configuration.
Create and maintain cloud-focused detection rules and playbooks in collaboration with incident response teams.
Contribute to investigations and assist in threat hunting within environments.
Review cloud logs.
Support compliance efforts through evidence gathering, control validation, and reporting.
Participate in security reviews for existing integrations and new services etc.
Investigate and respond to security incidents escalated from the SOC.
Assist in implementing cloud workflows utilizing Lambda and Step functions which enable cloud incident response
Regulatory Compliance & Reporting:
Ensure incident response efforts and documentation comply with industry standards and best practices (GDPR, SOC, NIST, ISO etc.)
Maintain detailed documentation and reporting for audits and compliance reviews.
Process Improvement & Risk Mitigation:
Develop and refine incident response standard operating procedures and playbooks.
Conduct root cause analysis and post incident reports to identify areas for improvement.
Recommend and implement process improvements to enhance detection, response and recovery capabilities.
Operational:
Operate and maintain controls related to SIEM, DLP, Vulnerability Management, Cyber Threat Intelligence, Endpoint Protection, etc with an emphasis on cloud deployments and implementations.
Conduct IT Security risk assessments for all high impact projects, defining security mitigating controls that impact the technology architectures of CLS, service providers, and business partners
Review and update IT Security procedures to reflect best practice and mitigate current and emerging threats
Assigned ownership of IT Security Monitoring and Response related FRB and Internal Audit finding(s) and effective /timely resolution with IT Security
Maintain relationships with third-party IT security vendors and strategic partners
What we’re looking for:
‘Hands-on’ IT Security analysis and engineering experience including securing systems, networks and infrastructure; operational support, including on-call experience
Proven experience including combination of intrusion detection, malware analysis, forensics and incident response, particularly in cloud/hybrid environments.
Extensive knowledge of cloud environments such as AWS & Azure.
Monitor, tune and develop technical IT Security controls and frameworks to ensure appropriate preparation, monitoring and response to threats.
Ensure a risk-based approach to IT Security is adopted in every part of the business and solutions
Work with members of the IT Security team to help design, implement and maintain security
Prepare for, identify (hunt) and remediate cyber threats
Operate and maintain IT Security controls related to SIEM, DLP, Vulnerability Management, Cyber Threat Intelligence, Endpoint Protection, etc.
Deliver IT Security projects from concept, approval, design, and implementation to operation
Ability to collaborate effectively with others to drive forward key security objectives
Strong documentation and report writing skills (to both technical and business audiences)
Excellent time management and organizational skills combined with technical IT Security acumen
Expert knowledge of Firewalls, TCP/IP, IPS, DLP, proxies, SIEM, & Endpoint Protection software
Financial and/or Banking industry experience preferred
Professional qualifications / certifications
Virtualized and Cloud platforms experience such as Amazon Web Services, Microsoft Azure or Office 365
B.S. in a technology discipline (Computer Scien
About the Company
Trusted by thousands of counterparties within the global FX ecosystem, CLS makes FX safer, smoother and more cost effective. Trillions of dollars worth of currency flows through our systems each day.
Created by the market for the market, our unrivaled global settlement infrastructure reduces systemic risk and provides standardization for participants in many of the world’s most actively traded currencies. We deliver huge efficiencies and savings for our clients: in fact, our approach to multilateral netting shrinks funding ...
Know more