Sr. Cloud Security Engineer II at Pacific Life in Newport Beach, California

Posted in Other 2 days ago.

Job Description:

Job Description:

Sr. Cloud Security Engineer II

Pacific Life is investing in bright, agile and diverse new talent to ensure we continue to innovate and strengthen relationships with our policyholders. That's why we're actively seeking an experienced Sr. Cloud Security Engineer II to join our team and take part in our people-first culture.

As Sr. Cloud Security Engineer II, you'll play a key role in Pacific Life's growth and long-term success by managing the overall security of our cloud platforms. You'll ensure that our systems are hardened and compliant. You'll develop new tooling and automations to respond to threats and incidents. While joining the enterprise cloud engineering team, you'll support our business divisions in their growth and modernization to be a leader in the markets that we serve.

If you're experienced in Cloud DevSecOps, you're a great fit for this role. Technical capabilities aside, if you're a mission-driven self-starter who's comfortable with ambiguity and autonomy, and who thrives in a fast-paced, collaborative culture, you're a perfect fit for Pacific Life.

Here, we believe you should be given the time, space, and trust to do your best work - your way. As part of our transition toward a more digitally oriented, inclusive and employee-focused company, we're opening this role to candidates near Newport Beach, CA; as well as those looking to work 100% remote.

How You'll Contribute

  • Design and implement automation frameworks, security policies, and security best practices for public cloud platforms.

  • Develop a roadmap to move towards identity-based zero-trust model. Work with enterprise cloud architect(s) to integrate solutions that align to zero-trust and defense in depth models.

  • Consult on enterprise cloud security strategy and participate in maturity mapping activities

  • Ensure security of all assets in the cloud by integrating security best practices for identity-based security, shared secrets, key rotation, and other security requirements. Work with corporate security team to enforce policies and deploy cloud security tools to protect and monitor access.

  • Assess, harden, and develop secure infrastructure as code, Terraform modules, golden images, and other resources for consumption by application developers.

  • Work within an Agile methodology to prioritize and organize work efforts.

  • Mentor others in the principles and best practices of cloud security and secure-by-design deployments

  • Integrate events and related lots with enterprise SIEM tools.

  • Develop cloud monitoring capabilities, dashboards, and associated KPI/KRIs.

  • Implement event-driven automations on cloud-native tooling (e.g. Lambda, Step, etc.) to respond to security incidents.

  • Develop response artifacts for security incidents, internal and external audits, security assessments, and risk findings.

  • Collaborate with people at all levels in the organization. Closely work with business stakeholders, support team and engineering teams in providing solutions.

  • Recognized as an expert within the organization both within and beyond own function. Interprets internal or external business issues and recommends process, product, or service improvements. Contributes to the development of functional strategy.

Factors for Success

  • 8+ years of experience in an applicable cloud, infrastructure, or software engineering role.

  • 2-4 years of hands-on experience in managing cloud security and/or hardening cloud platforms and resources.

  • BS in Computer Science and/or Engineering, or equivalent experience and certifications (AWS or Azure Security).

  • Experience implementing and managing cloud security tooling such as AWS Security Hub, Microsoft CAS, AWS Inspect, AWS GuardDuty, or similar applicable tools.

  • Ability to communicate complex details in a way that non-technical people can understand.

  • Experience working as part of a Scrum or Agile team.

  • Strong background in network, OS, and API security.

  • Adept in at least one programming language such as Python, Java, or Node.JS. Experience with bash and PowerShell as well as the command-line interface to at least one major cloud service, preferably AWS CLI.

  • Experience leveraging configuration management platforms such as Ansible, CloudGuard, or others.

  • Effective communicator with the ability to interact with a wide variety of stakeholders and with experience presenting to non-technical business audiences.

  • Preferred: Experience writing Terraform.

At Pacific Life, the work we do matters. That's why you'll find those who work passionately each day to drive our company forward enjoy job security, flexible scheduling and great opportunities for career growth. If you're seeking a thriving career doing the type of meaningful work that's all too rare at a Fortune 300 Company, you're the perfect cultural fit for our team. #LI-JB1

How We Help You Succeed:

We're fostering a culture of shared values across our company by providing generous compensation and comprehensive benefits that allow our employees to find fulfillment and security in personal life and career alike. These include:

  • Competitive Salary and Benefits

  • Work-Life Balance & Flexible Scheduling

  • Medical, dental, and vision as part our commitment to investing in the health and wellbeing of our employees

  • Two retirement savings plans: 401k savings plan with company match and Company Retirement Contribution (company-paid)

  • Generous PTO and holiday pay

  • Warm Colleagues & Inspiring Culture

EEO Statement:

Pacific Life Insurance Company is an Equal Opportunity /Affirmative Action Employer, M/F/D/V. If you are a qualified individual with a disability or a disabled veteran, you have the right to request an accommodation if you are unable or limited in your ability to use or access our career center as a result of your disability. To request an accommodation, contact a Human Resources Representative at Pacific Life Insurance Company.