Job Description

Cloud Engineer
The Cloud Engineer India assists in the design planning for the company\'s cloud platform. Working under close supervision, this job supports operational plans for the processes and standards of developing the organization\'s technology architecture through the creation of a new cloud platform design. This job is also responsible for maintaining consistent knowledge of emerging trends and technologies in the related technology space.

Key Responsibilities and Duties

• Participates in the collaboration with various stakeholders on the strategic vision for the enterprise leveraging cloud, managed solutions and traditional capabilities and makes recommendations on new solutions and technologies.
• Supports the design and implementation of cutting edge cloud platform within the organization.
• Ensures cloud platform allows business applications to transform into scalable, elastic systems that can be created on demand.
• Assists with hardware and software infrastructure updates and improvements as needed and integration with the cloud infrastructure.
• Provides threat analysis consultation, when needed, across functional teams of the organization, both within the operating business unit and to information technology (IT) teams.
• Maintains technical knowledge of IT trends and emerging technologies to best inform cloud design, architecture and decision making processes.
• Communicates with management to provide updates and ensure integration of new system with existing operations to support the organization\'s cloud strategy.

Educational Requirements

• University (Degree) Preferred

Work Experience

• No Experience Required

Physical Requirements

• Physical Requirements: Sedentary Work

Career Level
5IC

Role: Cloud Security Engineer with SaaS (Multi-Cloud)

Implement cloud security strategy, standards, procedures, best practices, and DevSecOps.

Implement processes and technical controls supporting cloud security standards including integration of cloud services and workloads into corporate cybersecurity services.

Collaborate with operations and engineering teams to implement and tune cloud-native security monitoring, tooling and reporting

Implement CSPM tools such as wiz.io across multiple cloud platforms

Define cloud security policies, standards, and best practices in a multi-cloud environment

Promote awareness of corporate cybersecurity policy, standards and guidelines

Design cloud-based network traffic flows to drive anomaly detection capability

Mentor engineering and operations staff on unique cloud-based security controls

Develop tools to improve cloud specific anomaly detection requirements

Foster a culture of security by partnering with solutions architects & other business teams to balance key performance and security

Perform regular reviews of cloud infrastructure for security, and cloud best practices.

Develop threat models to identify risks and prioritize improvements to our architecture.

Drive the adoption of Authentication and Authorization reference architectures for managing cloud infrastructure.

Educate peers on applying the latest cloud native technologies when developing new services, systems and applications.

Contribute to a secure/compliant cloud-native service catalog, repositories

Maintain Compliance across our Production, Development and Corporate systems hosted in the public clouds

Collaborate with engineering and operations teams toward implementing controls and processes that address identified gaps

Document SaaS application configuration settings, integrations, service accounts and take ownership of recertification needs.

Build compliance requirements and SaaS Application security baselines, ensuring SaaS applications are implemented to align with requirements.

Evaluate new applications to ensure implementation can meet security baselines.

Research options for compliance remediation and coordinate with the Systems Administration team to implement solutions.

Determine risks and remediation options with implemented SaaS applications.

Ensure all SaaS applications are configured with best practices and perform routine auditing of settings and newly released features.

Examine all relevant application logs to determine trends and identify incidents or areas for concern.

Validate and maintain incident response plans and processes to address potential threats.

Compile and analyze data for management reporting and metrics.

Ensure that all SaaS applications follow a standardize lifecycle management process and perform routine audits as necessary.

Perform account lifecycle management auditing tasks and create documentation detailing account lifecycle needs.

Perform continuous monitoring of company applications identifying areas of shadow IT and initiating remediation efforts.

Preferred qualifications & experience:

Compliance Automation

Strong experience in vulnerability management & risk assessment

Strong experience in implementing CIS, NIST & other benchmarks

Encryption theory & key management (PKI)

Multi-Cloud security experience working in the Financial industry

Proficient in analyzing architecture patterns, diagrams, Network & application architecture

Ability to identify threat surfaces & identify pro-active & reactive security controls to minimize the overall residual risk.

Cloud certifications in AWS & GCP is preferred.

3+ years experience managing or auditing SaaS applications. Security+, CISSP, or related certification preferred.

Demonstrated experience with process automation and improvement.

Proficiency with at least one scripting language (e.g., Perl, Python and PowerShell).

Related Skills

Application Programming Interface (API) Development/Integration, Automation, Communication, Consultative Communication, Containerization, DevOps, Enterprise Application Integration, Influence, Organizational Savviness, Problem Solving, Prototyping, Relationship Management, Scalability/Reliability, Software Development Life Cycle, Systems Design/Analysis



Company Overview

TIAA GBS India was established in 2016 with a mission to tap into a vast pool of talent, reduce risk by insourcing key platforms and processes, as well as contribute to innovation with a focus on enhancing our technology stack. TIAA GBS India is focused on building a scalable and sustainable organization , with a focus on technology , operations and expanding into the shared services business space.

Working closely with our U.S. colleagues and other partners, our goal is to reduce risk, improve the efficiency of our technology and processes and develop innovative ideas to increase throughput and productivity.

We are an Equal Opportunity/Affirmative Action Employer. We consider all qualified applicants for employment regardless of age, race, color, national origin, sex, religion, veteran status, disability, sexual orientation, gender identity, or any other protected status.

Accessibility Support

TIAA offers support for those who need assistance with our online application process to provide an equal employment opportunity to all job seekers, including individuals with disabilities.

If you are a U.S. applicant and desire a reasonable accommodation to complete a job application please use one of the below options to contact our accessibility support team:

Phone: (800) 842-2755

Email:

Privacy Notices

For Applicants of TIAA, Nuveen and Affiliates residing in US (other than California), click .

For Applicants of TIAA, Nuveen and Affiliates residing in California, please click .

For Applicants of Nuveen residing in Europe and APAC, please click .

For Applicants of Greenwood residing in Brazil (English), click .

For Applicants of Greenwood residing in Brazil (Portuguese), click .

For Applicants of Westchester residing in Brazil (English), click .

For Applicants of Westchester residing in Brazil (Portuguese), click .

TIAA