×
Register Here to Apply for Jobs or Post Jobs. X

Defender Cloud Engineer

Job in New Bedford, Bristol County, Massachusetts, 02746, USA
Listing for: Openkyber
Full Time position
Listed on 2026-07-01
Job specializations:
  • IT/Tech
    Cybersecurity, Cloud Computing: Infrastructure & Operations, AWS, Systems Engineer
Salary/Wage Range or Industry Benchmark: 120000 - 160000 USD Yearly USD 120000.00 160000.00 YEAR
Job Description & How to Apply Below
Position: Defender for Cloud Engineer

Role: Cyber Security Engineering Lead/ Architect

Location:

Boston, MA (Hybrid)- Local to MA Exp: 14+ Yrs Duration:
Long Term Interview:
In-Person

POSITION SUMMARY:

This is a unique opportunity for a strong technologist to be one of the founding members of the team building a strategic data and AI platform from scratch for a well-established bank Security Engineering Manager will lead and execute cybersecurity engineering across our existing on-premises infrastructure, new AWS cloud environment, Snowflake data platform, and emerging AI application ecosystem. This is not a pure oversight or policy role.

The primary need is a senior technical security practitioner who can hands‑on design, build, harden, implement, troubleshoot, and continuously improve security controls. The role will manage and mentor a small team of talented security engineers, but the individual must remain deeply hands‑on and comfortable acting as the senior technical architect executor for cybersecurity engineering. The ideal candidate has strong financial services experience, has previously helped secure a new AWS environment from the ground up, understands traditional infrastructure and data center security, and can help the Bank safely adopt cloud, data, and AI technologies.

Key Responsibilities
  • Security Engineering & Architecture Own the design, implementation, and continuous improvement of security controls across infrastructure, cloud, applications, data platforms, and AI solutions.

    Responsibilities include:

    Design and implement practical security architectures for on-premises systems, AWS, Snowflake, and internally developed AI applications. Translate cybersecurity standards and risk requirements into deployable technical controls. Build secure‑by‑design patterns for identity, network segmentation, encryption, logging, monitoring, endpoint protection, vulnerability management, and access governance. Serve as a senior technical security advisor to infrastructure, engineering, data, AI, and vendor teams. Evaluate new technologies and ensure security requirements are embedded early in design and delivery.

    AWS security is a critical part of this role. AWS defines cloud security as a shared responsibility model, where AWS is responsible for security of the cloud and customers are responsible for security in the cloud. This role will own the Bank's side of that responsibility across identity, networking, data protection, monitoring, governance, and workload security.
  • AWS Cloud Security Lead the security design and implementation for the Bank's new AWS environment.

    Responsibilities include:

    Secure a new AWS environment from initial design through operationalization. Implement multi‑account security patterns, IAM controls, least privilege access, SCPs, logging, monitoring, encryption, secrets management, vulnerability scanning, and network segmentation. Design secure VPC, subnet, routing, security group, and NACL patterns. Implement controls across services such as IAM, Organizations, Cloud Trail, Cloud Watch, Guard Duty, Security Hub, Config, KMS, Secrets Manager, Macie, Inspector, S3, Lambda, RDS, EC2, ECS/EKS as applicable.

    Partner with infrastructure and engineering teams to embed security into CI/CD, IaC, cloud provisioning, and operational support. Establish AWS security baselines and exception management processes. AWS specifically highlights data protection, encryption in transit, IAM, infrastructure security, security groups, subnet controls, resilience, and compliance validation as part of managing security responsibilities for Amazon VPC.
  • On‑Premises Infrastructure & Data Center Security Own security engineering for the Bank's existing data center and infrastructure environment.

    Responsibilities include:

    Maintain and improve controls across servers, endpoints, firewalls, networks, Active Directory, privileged access, remote access, vulnerability management, patching, EDR, SIEM/logging, backup security, and segmentation. Strengthen identity and access controls across Microsoft/Windows environments. Support remediation of audit findings and security gaps across existing infrastructure. Partner with IT operations to ensure…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary