Technical Director of Cloud Security
We believe that, when done right, investing liberates people to create their own destiny. We are driven by our purpose to champion every client’s goals with passion and integrity. We respect and appreciate the diversity of our employees, our clients, and the communities we serve. We challenge conventions strategically to create value for our clients, our firm and the world. We live and bring to life the concept of ‘own your tomorrow’ every day. We champion our employee strengths, guide their development, and invest in their long-term success. We hire optimistic, results-oriented, curious, innovative, and adaptable people with the desire to help our clients and one another succeed.
As a company, we were established by Chuck over 40 years ago to champion Main Street over Wall Street, and to help Americans transform themselves from earners to owners. Through advocacy and innovation, we work to make investing more affordable, accessible and understandable for all. As we enter our fifth decade, we are looking for talented, innovative and driven people who believe they can help themselves, and our clients, create a better future.
The Technical Director of Cloud Security will be a cloud security technical expert with deep knowledge of devops, as well as knowledge of public/private/hybrid cloud infrastructures, security controls and implementation strategies. This position will be a proven technical leader capable of driving unified cloud securityarchitectures for the enterprise, and the adoption of well designed, architected and secure cloud applications. A Technical Director is a driven, self-starter individual contributor and team-player, and a partner to the business and operations teams.
What you’ll do:
- Help develop and sustain an enterprise-wide security model for cloud platforms that spans preventative and detective controls.
- Partner with Schwab Cybersecurity Services teammates to implement processes and technologies that reduce cloud security deficiencies, and help develop creative reporting mechanisms including metrics/key themes that communicate risk to business owners and leadership.
- Participate in development and implementation of security design & architecture principles and standards.
- Participate in the development and communication of cloud security Standards and Training.
- Be highly visible in the development and infrastructure communities at Schwab.
- Build and sustain good working relationships with development and infrastructure teams, and involve them in the overall application and cloud Security Technology strategy.
- Work with and influence business contacts in regards to technology controls, risk mitigation techniques related to application and cloud security.
- Participate in defining secure cloud design and deployment, secure configuration practices, and leveraging appropriate technology solutions, controls and practices as needed.
- Conduct research to identify new attack vectors facing applications and cloud services. Serve as a core team member of the Security Design team.
- Develop technical security requirements for the business, and see them through the development lifecycle. Collaborate with business contacts to ensure 3rd party cloud applications comply with our standards, controls, policies and principles.
- Participate in driving data protection strategies and standards that support application and cloud security.
- Provide attentive security consulting including design, reviews and recommendations for various IT projects and initiatives.
- Develop processes that assist management in identifying and remediating application and cloud security issues.
- Demonstrate a commitment to integrity, process improvement, and customer satisfaction.
What you have:
- Bachelordegree in Computer Science, Information Technology or demonstrated equivalent experiencerequired
- 7-10 years of experience in various security and technology domains
- Extensive experience in developing securityarchitecture solutions for financial environments is a major plus
- Subject matter expertise in cloud service provider security.
- Fluent in application security and development processes.
- Understanding of Cloud Security Alliance domains.
- Must have excellent verbal, written, and presentation communication skills, strong interpersonal skills and the ability to work effectively across project teams.
- Must demonstrate a keen understanding of security as a business enabler.
- CISSP or SANS - GIAC certification preferred, however consideration will be given to those that have certifications in technology platforms (Oracle, Microsoft, Redhat, etc.) as well.
You demonstrate these behaviors:
Diagnostic Information Gathering: Identifying the information needed to clarify a situation, seeking that information from appropriate sources, and using skillful questioning to draw out the information when others are reluctant to disclose it.
Fostering Innovation: Developing, sponsoring or supporting the introduction of new and improved methods, products, procedures, or technologies
Strategic Thinking: Analyzing an organization’s competitive position and developing a clear and compelling vision of what the organization needs for success in the future.
Decisiveness: Willingness to make difficult decisions in a timely manner.
Influencing Others: The ability to gain others’ support for ideas, proposals, projects, and solutions.
What you’ll get:
- Comprehensive Compensation and Benefits package
- Financial Health: 401k Match, Employee Stock Purchase Plan, Employee Discounts, Personalized advice, Brokerage discounts
- Work/Life Balance: Sabbatical, Paid Parental Leave, New Mothers returning to work Program, Tuition Reimbursement Programs, Time off to volunteer, Employee Matching Gifts Program
- Everyday Wellness: Health and Lifestyle Wellness Rewards, Onsite Fitness Classes, Healthy Food Choices, Wellness Champions
- Inclusion: Employee Resource Groups, Commitment to diversity, Strategic partnerships
- Not just a job, but a career, with an opportunity to do the best work of your life