Senior Network, Security & AWS Cloud Engineer

If you are unable to complete this application due to a disability, contact this employer to ask for an accommodation or an alternative application process.

Regular Full-Time AB New York, New York, NY, US

4 days ago Requisition

Salary Range: $ To $ Annually

Depending on experience, this role is open to Vice President or Assistance Vice President level candidates.

Sumitomo Mitsui Trust Bank, Limited was established through the merger of The Sumitomo Trust and Banking Co., Ltd with Chuo Mitsui Trust and Banking, Ltd. on April 1, 2012. We are one of the largest asset managers in Asia and number one among Japanese financial institutions by AUM, with approximately $850 Billion USD in AUM. The Bank provides an assortment of financial solutions and manages a broad spectrum of financial products across its global branches.

The Americas Division (“AD”) was established in the Sumitomo Mitsui Trust Bank, Limited, New York Branch) (“SMTBNY”) to perform corporate functions and supervise U.S. entities. Established under the AD are the “Global Banking Unit (“GBU”), Americas Division” and “Global Markets Unit (“GMU”), Americas Division” which performs business functions. The Information Technology Department (“ITD”) provides the users of the Branch’s information systems with sufficient and appropriate system resources and functionality to complete their day-to-day business and keeps security and consistency of the important information that is stored in the systems.

Fully knowledgeable in the day-to-day operations of enterprise network, cybersecurity, and AWS cloud environments. Resolves complex issues requiring expertise in interpreting policies, security frameworks, and operational guidelines. Acts as a subject matter expert across networking, firewall security, and cloud infrastructure. Focuses on hands‑on operational execution while contributing to strategic planning and implementing new projects. May manage or mentor junior staff and collaborate closely with operations and security teams.

Your

Duties and Responsibilities:

• Manages and maintains Fortinet firewalls and Cisco switches across corporate offices and data centers, including firewall policy conversion, rule optimization, and traffic validation.
• Designs, optimizes, and audits firewall rule sets aligned with NIST, CIS Benchmarks, and internal security standards.
• Performs cybersecurity audits, identifies security gaps, and leads remediation efforts to meet regulatory and organizational requirements.
• Design and optimizes network architectures to improve performance, reduce latency, and ensure scalability and resiliency.
• Configures and troubleshoots routing protocols including MPLS, EIGRP, BGP, and OSPF across enterprise and cloud environments.
• Administers and supports Cisco ISE for network access control and policy enforcement.
• Designs, implements, and troubleshoots NAT configurations (Static NAT, Dynamic NAT, PAT).
• Implements and supports WAN solutions, including policy-based traffic steering, failover mechanisms, and performance troubleshooting.
• Administers cloud security and Zero Trust architecture, including secure web access, proxy configurations, and remote user access controls.
• Manages AWS networking and security services, including VPC design, security groups, NACLs, VPNs, and monitoring/logging integrations.
• Implements and maintains threat protection controls, including DDoS mitigation, IDS/IPS, and collaborates with SOC teams for incident response.
• Leads advanced troubleshooting efforts using packet captures, log analysis, and performance diagnostics.
• Collaborates with vendors such as Cisco, Fortinet, KEMP, and AWS to resolve complex networking and security issues.
• Administers Cyber Ark Privileged Access Management (PAM), including credential vaulting, access policies, and compliance enforcement.
• Develops and maintains technical documentation, including firewall rules, network diagrams, and audit evidence.
• Creates automation scripts using…