Apply on Employer Site

CLS Group · 1 week ago

Vice President - Cloud Security

Iselin, New Jersey, United States

Full-time

Hybrid

Senior Level

$150K/yr - $180K/yr

CLS is a leading entity in the global FX ecosystem, ensuring safer and more efficient currency transactions. The Vice President of Cloud Security will oversee the implementation of IT security strategies, focusing on cloud security initiatives and compliance, while collaborating with various teams to enhance security measures and respond to incidents.

Financial Services

Responsibilities

As part of the IT Security team, develop and implement CLS IT Strategy in consultation with the CLS IT teams, ensuring that all initiatives are mirrored in respective strategies including the overall CLS Strategy

Provide security advice and support for information technology projects as Cloud Security subject matter expert (SME)

Research new security related products and services to ensure that CLS is equipped with appropriate industry best tools and solutions

Subject Matter Expert (SME) for cloud security within the Security Operations Department

Experience working with and managing IDPS deployments such as Suricata/Snort including a strong PCAP analysis skillset

Implement and optimize detection and response workflows in cloud-native/hybrid environments

Monitor, investigate, and triage cloud security alerts from SIEM and cloud native tools

Collaborate with cloud operations and infrastructure teams to ensure secure architecture and configuration

Create and maintain cloud-focused detection rules and playbooks in collaboration with incident response teams

Contribute to investigations and assist in threat hunting within environments

Review cloud logs

Support compliance efforts through evidence gathering, control validation, and reporting

Participate in security reviews for existing integrations and new services etc

Investigate and respond to security incidents escalated from the SOC

Assist in implementing cloud workflows utilizing Lambda and Step functions which enable cloud incident response

Ensure incident response efforts and documentation comply with industry standards and best practices (GDPR, SOC, NIST, ISO etc.)

Maintain detailed documentation and reporting for audits and compliance reviews

Develop and refine incident response standard operating procedures and playbooks

Conduct root cause analysis and post incident reports to identify areas for improvement

Recommend and implement process improvements to enhance detection, response and recovery capabilities

Operate and maintain controls related to SIEM, DLP, Vulnerability Management, Cyber Threat Intelligence, Endpoint Protection, etc with an emphasis on cloud deployments and implementations

Conduct IT Security risk assessments for all high impact projects, defining security mitigating controls that impact the technology architectures of CLS, service providers, and business partners

Review and update IT Security procedures to reflect best practice and mitigate current and emerging threats

Assigned ownership of IT Security Monitoring and Response related FRB and Internal Audit finding(s) and effective /timely resolution with IT Security

Maintain relationships with third-party IT security vendors and strategic partners

Qualification

Cloud SecurityIncident ResponseAWS & AzureSecurity CertificationsSIEMVulnerability ManagementCyber Threat IntelligenceEndpoint ProtectionProcess ImprovementRoot Cause AnalysisFinancial Industry ExperienceTechnical DocumentationTime ManagementCollaboration Skills

Required

Hands-on IT Security analysis and engineering experience including securing systems, networks and infrastructure; operational support, including on-call experience

Proven experience including combination of intrusion detection, malware analysis, forensics and incident response, particularly in cloud/hybrid environments

Extensive knowledge of cloud environments such as AWS & Azure

Monitor, tune and develop technical IT Security controls and frameworks to ensure appropriate preparation, monitoring and response to threats

Ensure a risk-based approach to IT Security is adopted in every part of the business and solutions

Work with members of the IT Security team to help design, implement and maintain security

Prepare for, identify (hunt) and remediate cyber threats

Operate and maintain IT Security controls related to SIEM, DLP, Vulnerability Management, Cyber Threat Intelligence, Endpoint Protection, etc

Deliver IT Security projects from concept, approval, design, and implementation to operation

Ability to collaborate effectively with others to drive forward key security objectives

Strong documentation and report writing skills (to both technical and business audiences)

Excellent time management and organizational skills combined with technical IT Security acumen

Expert knowledge of Firewalls, TCP/IP, IPS, DLP, proxies, SIEM, & Endpoint Protection software

B.S. in a technology discipline (Computer Science, Computer Engineering, Cybersecurity or equivalent)

Virtualized and Cloud platforms experience such as Amazon Web Services, Microsoft Azure or Office 365

Preferred

Financial and/or Banking industry experience preferred

Security certifications such as CISSP and at least one GIAC GSEC, GCED, GCIA, GCIH, GREM, GCFR or equivalent is preferred

Cloud certifications such as AWS Solution Architect, AWS Security Specialty etc

Knowledge of incident handling life cycle based on an established framework: ISO 27035, SANS, NIST SP 800-61, CERT, ENISA

Experience with security and automation in cloud native environments

Benefits

Holiday - UK/Asia: 25 holiday days and 3 ‘life days’ (in addition to bank holidays). US: 23 holiday days.

2 paid volunteer days so that you can actively support causes within your community that are important to you.

Generous parental leave policies to ensure you can enjoy valuable time with your family.

Parental transition coaching programmes and support services.

Wellbeing and mental health support resources to ensure you are looking after yourself, and able to support others.

Employee Networks (including our Women’s Forum, Black Employee Network and Pride Network) in support of our organisational commitment to embrace and always be learning more about inclusivity.

Hybrid working to promote a healthy work/life balance, enabling employees to work collaboratively in the office when needed and work from home when they don’t.

Active support of flexible working for all employees where possible.

Monthly ‘Heads Down Days’ with no meetings across the whole company.

Generous non-contributory pension provision for UK/Asia employees, and 401K match from CLS for US employees.

Private medical insurance and dental coverage.

Social events that give you opportunities to meet new people and broaden your network across the organisation.

Annual flu vaccinations.

Discounts and savings and cashback across a wide range of categories including health and retail for UK employees.

Discounted Gym membership – Complete Body Gym Discount/Sweat equity program for US employees.

All employees have access to Discover – our comprehensive learning platform with 1000+ courses from LinkedIn Learning.

Access to frequent development sessions on a number of topics to help you be successful and develop your career at CLS.