What are the responsibilities and job description for the Cloud Security Specialist/Strategist position at Envestnet?
Envestnet Financial Technologies, Inc. seeks a Cloud Security Specialist/Strategist in Berwyn, PA.
Duties: Drive the security requirements and evolve our policy framework to enable the secure delivery of Envestnet's services in the cloud. Work with Envestnet infrastructure security, engineering, and product teams to ensure we have a secure and compliant cloud infrastructure. Lead and participate in service discussions, product reviews and various teams understand and adhere to our information security policies, industry standards, and to meet compliance requirements. Help ensure cyber-security best practice adherence across the business for the transformational design, operations, and changes needed for combination of on-premises (private), hybrid and cloud-based solutions. Provide the assurance for securing Envestnet's information systems. Establish security control requirements to enhance security posture of Enterprise infrastructure in-line with industry standards and best practices. Help refresh, develop, and design security policies, standards, and communication materials to support the ongoing evolution of our information security program. Support cloud security strategic planning and execution provide guidance on cloud security architecture, practices, and solutions to help business units build and deliver solutions. Participate in discussions related to building secure, resilient, and cloud ready solutions based on multi-tenancy architecture, cloud-native development. Provide advice, leadership, guidance, and direction on information security for the teams performing the design and implementation of automated solutions, based on a set of standards and processes that enable developers to easily consume security and compliance services. Coordinate with infrastructure security, application security, and IT teams to implement a comprehensive security program in a Devops environment. Leverage Devops tools to build, harden, maintain, and instrument a comprehensive cloud-based security orchestration platform to be consumed in product ci/cd pipelines. Establish security requirements and capabilities for the cloud needed to provide services. Drive cyber security strategy compliance. Align activities to current BAU audit activities from legacy business to ensure consistency in approach for cloud adoption interpreting standards, requirements, and their application to the Enterprise cloud environment in the most reasonable and cost-effective manner. Collaborate with security compliance leaders and technical security teams to define and implement security processes and procedures based on financial services requirements and industry-standard best practices. Assist team members and internal clients in addressing highly complex security issues applicable to the financial services cloud environment experience risk assessment processes, policy development, proposals, work statements, product evaluations, and delivery of technology directly. Support the customer engagement program on various activities such as security reviews and audits qualifications.
This position requires a Master's degree, or foreign equivalent, in Systems Engineering or a related field, plus 5 years of experience in information security or a related field. Additionally, the applicant must have professional experience with: (1) Developing cloud related security architecture including sound information security risk management, governance, and compliance practices; (2) Implementing NIST risk management, NIST SP 800 series, CSA, and iso 27000 series to support development of the cloud security policy design framework; (3) Utilizing cloud computing standards and iso 27000 series to support development of the cloud security policy design framework; and (4) Developing cloud security architectures supporting governance, and compliance practices. Telecommuting permitted.
40 hours/week, Must also have authority to work permanently in the U.S. Applicants who are interested in this position may apply Reference Job ID #55296.
Employee Referral Bonus Eligible:
Envestnet recognizes that employee referrals of colleagues and friends often result in high-quality candidates and employees.
Envestnet offers a $1,000 bonus to employees for referring applicants for positions who are subsequently hired and complete the 90-day new hire introductory Employment period. Both the referring employee and the referred employee must be active Envestnet employees in the pay period of bonus payment to be eligible.
The referral must be noted in a cover letter when the applicant completes the employment application.
Current employees may refer to Page 12 of the Envestnet Employee Handbook - US Employee Addendum for further information.
