Who we are looking for
The State Street Cyber Architecture & Engineering team is looking for a Staff Secure DevOps & Secure Systems Engineer. The Security Architecture Governance Engineering team delivers architectural solutions, platforms, pipelines, and security tooling to secure State Street’s digital footprint. We are looking for established experience with cloud platform services, AppSec, DevSecOps, Site Reliability Engineering, and Cloud Security Engineering practices such as build/release management, secure SDLC/DevSecOps practices such as automating security processes in CI/CD pipeline, and general automation. The candidate will also have experience with Systems Security Engineering (SSE) including application security, secure configuration management, continuous compliance monitoring and systems integrity assurance in cloud-native and multi-hybrid cloud environments. The ideal candidate will show eagerness to learn and grow in all aspects of technical solutioning and will design, implement, and support agile solutions and processes leveraged by a large number of applications and infrastructure platforms hosted in our environments.
What you will be responsible for
- Help to build our SecDevOps & AppSec Strategy and Cyber MESH (Multi-cloud Extensible Security Harness) to integrate cybersecurity into the organizational adoption and improvement of agile practices.
- Partner with Engineering team leads to create, implement, and apply SecDevOps, CloudSec & AppSec principles, processes and culture that are consumed by corporate engineering operations teams.
- Provide subject matter expertise in various risk assessments, working in an Agile environment with an understanding of the full software development lifecycle.
- Partner with development and operations teams to facilitate practical automation solutions and custom modules. Troubleshoot automation issues and when required, engage the resources to find practical solutions that move projects forward in a timely manner.
- Support the design and development of security architectures for cloud and cloud/hybrid-based systems. Possess a firm understanding of the offerings within both Amazon Web Services (AWS) and the Microsoft Azure platforms. Represents security engineering in development and implementation of the overall global cloud architecture.
- Assist application teams with onboarding to the adopted security tools/technologies; working with vendors to troubleshoot the platform and issues related to such integrations.
- Deliver tasks based on project objectives; technically support projects through to completion.
- Ensure deliverables are completed within target timeframes and are consistently of high-quality, documented and support transition of operational activities.
- Work with teams to continuously improve SecDevOps, SSE and SRE processes and tools.
- You will mentor other engineers and promote software engineering best practices across the organization designing systems with monitoring, auditing, reliability, and security at their core and be active in evaluating and recommending new technologies.
- Design and implement secure architectures for cloud-based applications, focusing on encryption, identity management, monitoring, alerting, detection network security, and data protection.
- Work with our team, stakeholders, and teaming partners throughout the systems implementation lifecycle to understand the enterprise requirements and develop the holistic technical solution that is both unique and best positioned.
What we value
These skills will help you succeed in this role
- Experience building and securing cloud-based and on-premise environments such as AWS, Azure, GCP, CoLos and physical data centers.
- Knowledge of vendor and CSP native CSPM, CWPP, and CNAPP tools and ability to interrogate and analyze cloud architectures and object graphs using native consoles and APIs.
- Knowledge of securing technologies such as, but not limited to; Cloud-Native Services (e.g., VPCs, S3 buckets), Container Platforms (e.g., Docker, Kubernetes), APIs, Identity and Access Management, Serverless (e.g., Lambda, Azure Functions)
- Current information security certification, including Certified Information Security Manager (CISM), or Certified Information Systems Security Professional (CISSP), AWS Professional Architect, AWS Security Specialty
- Experience with automation and orchestration tools, such as Ansible, Terraform, or Kubernetes, is valuable. Knowledge of Infrastructure as Code (IaC) principles and experience in automating deployment and management tasks in a hybrid cloud environment is beneficial.
- Proven technical solutioning experience with current and emerging technologies including, but not limited to: Agile Development, DevOps, Cloud Engineering, System Hardening, DevSecOps, Cybersecurity, Cloud Security.
- Excellent verbal and written communication skills across internal and external organizations.
- Ability to prioritize and manage several projects or priorities simultaneously.
Education & Preferred Qualifications
- Bachelor’s degree in Information Technology (IT), computer science, or related field with 8 years of relevant experience in industry, government, or consulting roles.
- Master’s degree in IT, computer science, or related field with 6+ years of relevant professional experience.
- Experience building and leading teams of DevSecOps, SRE, or SSE Engineers.
- Deep experience with cloud DevOps tooling and expertise in container native systems and associated security and scaling considerations – ability to work with and build tooling that works in a multi/hybrid cloud environment with modern CI/CD, IaC, DataOps, and DevSecOps best practices.
- Experience working or developing Kubernetes autoscaling tools and deep experience with container and cloud security principles.
- Experience with Information Security: applying STIGs, IAVAs, CIS hardening guidelines and maintaining/updating security documentation and systems security plans.
- Experience with VMware/VMC, Nutanix, Network Platforms, Windows & Linux administration.
- Security+ or other cybersecurity or network security certification.
- Experience using common automation tools such as Ansible, Chef, or Terraform.
- Experience with one or more common programming languages such as Python, Perl, etc.
Are you the right candidate? Yes!
We truly believe in the power that comes from the diverse backgrounds and experiences our employees bring with them. Although each vacancy details what we are looking for, we don’t necessarily need you to fulfil all of them when applying. If you like change and innovation, seek to see the bigger picture, make data driven decisions and are a good team player, you could be a great fit.
Why this role is important to us
Our technology function, Global Technology Services (GTS), is vital to State Street and is the key enabler for our business to deliver data and insights to our clients. We’re driving the company’s digital transformation and expanding business capabilities using industry best practices and advanced technologies such as cloud, artificial intelligence and robotics process automation.
We offer a collaborative environment where technology skills and innovation are valued in a global organization. We’re looking for top technical talent to join our team and deliver creative technology solutions that help us become an end-to-end, next-generation financial services company.
Join us if you want to grow your technical skills, solve real problems and make your mark on our industry.
About State Street
What we do. State Street is one of the largest custodian banks, asset managers and asset intelligence companies in the world. From technology to product innovation, we’re making our mark on the financial services industry. For more than two centuries, we’ve been helping our clients safeguard and steward the investments of millions of people. We provide investment servicing, data & analytics, investment research & trading and investment management to institutional clients.
Work, Live and Grow. We make all efforts to create a great work environment. Our benefits packages are competitive and comprehensive. Details vary by location, but you may expect generous medical care, insurance and savings plans, among other perks. You’ll have access to flexible Work Programs to help you match your needs. And our wealth of development programs and educational support will help you reach your full potential.
Inclusion, Diversity and Social Responsibility. We truly believe our employees’ diverse backgrounds, experiences and perspectives are a powerful contributor to creating an inclusive environment where everyone can thrive and reach their maximum potential while adding value to both our organization and our clients. We warmly welcome candidates of diverse origin, background, ability, age, sexual orientation, gender identity and personality. Another fundamental value at State Street is active engagement with our communities around the world, both as a partner and a leader. You will have tools to help balance your professional and personal life, paid volunteer days, matching gift programs and access to employee networks that help you stay connected to what matters to you.
State Street is an equal opportunity and affirmative action employer.
Salary Range:
$140,000 - $222,500 Annual
The range quoted above applies to the role in the primary location specified. If the candidate would ultimately work outside of the primary location above, the applicable range could differ.
#J-18808-Ljbffr