Cloud Security Engineer

Position Summary At Busey, the Information Security team serves as a critical line of defense for the organization in protecting ourselves and our customers from the continually evolving landscape of cybersecurity threats. We are a passionate group of Information Security professionals with a desire for continuous learning. Given the shifting technology landscape, awareness of new and emerging technologies is key in ensuring that our team has the requisite knowledge and expertise to provide consultative guidance to organizational stakeholders on configurations to limit the organization’s risk.

As a Cloud Security Engineer, you will play a pivotal role in the protection of our organization’s cloud infrastructure, sensitive data, and systems. You will be responsible for assisting in the coordination, administration, monitoring, and maintenance of core cloud security infrastructure. This includes, but is not limited to endpoint security platforms, internet security/SASE tools, firewall analysis tools, vulnerability management and cloud security posture management platforms, and data security tools.

Duties & Responsibilities Primary administrator for SASE/Internet Security platform, including cloud-delivered firewall, internet content filtering, and data loss prevention controls.

Lead and manage firewall configuration audits and rule reviews on a scheduled basis

Manage and monitor security controls for cloud infrastructure environments (e.g., AWS, Azure)
Primary administrator of cloud security posture management platform, analyzing and prioritizing remediation of vulnerabilities and configuration issues discovered and working with internal teams to address findings within agreed upon SLAs.Participate in internal and external vulnerability management processes to analyze risks and threats to the Bank and reporting metrics to responsible groups within the Technology department (e.g., Networking, Infrastructure, Service Desk).Hybrid role working with the Security Operations team to monitor SIEM logging and incidents, as well as managing and maintaining log source connections, specifically for cloud security platforms.

Assist Security Operations team with Digital Risk Protection alerts, assessing risk and impact, and coordinating with MSSP on domain takedowns

Lead and participate in security projects, audits and penetration testing, and cloud-related compliance reviews.

Collaborate with cloud infrastructure and application teams, as well as external service providers, to ensure secure deployment pipelines and environment hardening and ensuring cloud security best practices are followed.

Oversee and guide the implementation of products and services required to maintain compliance with existing, new, or changing regulations and audit recommendations.

Lead the creation and maintenance of security documentation and configuration practices.

Automate repetitive tasks and drive efficiencies so analysts and engineers can work on more advanced tasks.

Collaborate with IT Security Management to identify strategic opportunities to enhance the security posture of the Bank and create efficiencies for the Security Engineering team.

Crosstrain on other core security platforms (e.g., EDR, DSPM, Email Security, IAM).Perform other duties as assigned.

Education & Experience Knowledge Of:

Strong knowledge of internet security and SASE platforms and ability to manage, monitor, and maintain the system to adhere to security best practices

Proficiency in Cloud Security Posture Management (CSPM) with the ability to analyze and prioritize findings, communicate threats, and recommend solutions.

Strong knowledge of cloud infrastructure platforms, preferably AWS, and best practices for configuration of security controls and features within them.

Advanced knowledge and proficiency with workstation and server operating systems (e.g., Windows, Linux, MacOS)
Experience integrating systems with SIEM platforms using API, Syslog, or other log collection methods.

Knowledge of Data Security Posture Management (DSPM) processes and tools to effectively manage and monitor the security of data.

Advanced knowledge of Internal and External Vulnerability Management tools and ability to analyze and prioritize threat and vulnerability data.

Knowledge of application and code scanning tools (SAST, DAST, SCA), and ability to communicate and prioritize risks to development teams and leadership.

Advanced knowledge and understanding of networking and firewall concepts, and securing traffic across LAN, WAN, Cloud, and Internet infrastructure.

Experience in conducting risk assessments that protect the business and adhere with compliance and privacy laws.

Familiarity with security frameworks and standards, such as ISO
27001, NIST, CIS Controls, and Cloud Security Alliance.

Knowledge of one or more compliance standards, including Payment Card Industry (PCI), Gramm-Leach-Bliley Act (GLBA).Ability to:

Proven trustworthiness and history of acting with integrity, taking pride in work, looking to…