Company Description

　　This position is eligible to work remotely if the candidate lives outside ofColorado in the following states: AR, IL, ID, FL, TN, OK, MO.Candidates residing outside of these states will not be eligible for remotewor

　　Ent Credit Union exists to improve the financial quality of life of the peoplewe serve. This mission drives us every day, but we are more than ourmission. We're also individuals using our unique abilities to make ourorganization, and the communities we serve, better than they wereyesterday. We're a not-for-profit that puts people above profits andactively invests in our community. Our rapidly growing team is expanding ourreach to serve more people throughout Colorado. To spread our mission far andwide, we need people like you. If you're interested in a paycheck with apurpose, apply with us today. Our people make the difference, and we trulybelieve you are our greatest asset.

　　Job Description

　　As a part of the agile cross-function team, the Cloud Security Engineer isresponsible for ensuring the security and compliance of cloud-based systemswithin the Azure platform. Their role includes designing, implementing,and maintaining security measures, conducting risk assessments, creatingand managing security policies, automating security processes, monitoringthreats, and addressing security incidents. They work to safeguard data,applications, and infrastructure in Azure, staying current with securitybest practices and evolving threats to maintain a secure cloud environment. Asthe primary security role on Ent's Cloud Team, the Security Engineer IIwill work directly with other Cloud team members in CloudOps and DevOps toensure secure access and use of cloud resources in our Azure environment.Additionally, this role is a key member of our Security Program and willseek guidance from our Security Architect and partner with our other securitydomains. The Cloud Security Engineer will also work across various IT teams tosupport their cloud security needs and ensure best practices related to cloudsecurity operations and engineering.

　　Essential FunctionsCloud Security: Implement, maintain, and enhance the security posture ofEnt's cloud platform. Create and manage identity access controls,policies, and configuration to ensure proper authentication andauthorization using Privilege Identity Management (PIM) and applicationregistrations. Ensure the protection of cloud assets, i. e. , data,applications, services, infrastructure, and networks. Perform routinepermission reviews of access, role, and managed identities. Perform andmaintain cloud security risk assessments for new and existing cloud resources.Define, implement, and maintain Azure Policy to enforce governance andsecurityAutomation & Release Management: Create and apply DevSecOps best practicesand processes to create security-focused efficiencies through automation.Develop and maintain automation policies for compliance and securityconfigurations. Review and approve releases and PRs requiring securityapproval for the cloud team.Monitoring & Alerting: Identify and remediate vulnerabilities usingstandard security tools and establish security baselines. Design and implementplatform security monitoring technologies, i. e. , Azure Monitor,diagnostic logging and log retention settings, log analytic workspaces,create and customize Defender and Azure monitor alerts. Review Azure DevOpsdeployment and Infrastructure as Code (IaC) template security. MaintainAzure Policy and Secure Score exceptions list. Review Defender Secure Scorecompliance reports and address issues. Document exceptions for Defender forCloSecurity Program & Cloud Team Collaboration: Daily work in an Agile teamwith CloudOps, DevOps, and Agile practice team members to address securityconcerns Drive and automate security operations in partnership with DevOpsengineers. Work closely wi h the Cloud Platform Manager and Security Architectto support Ent's security program roadmap related to our Azure cloudplatform and tools. Works closely with the Security Architect to implement adefense-in-depth approach using best practices that provide multiple securitycontrols and mechanisms to protect an organization's IT systems and data.Collaborate with other security roles within Ent's federated securityprogram to support our cybersecurity center of excellence.Research and Security Vigilance: Research native security features forimproved monitoring. Perform third-party vendor review. Review new resourcetypes and capabilities to understand associated security risks. ResearchSecurity Orchestration, Automation, and Response (SOAR) capabilities.Proactively engage in threat hunting and modeling.Bank Secrecy Act: Remains cognizant of and adheres to Ent policies andprocedures, and regulations pertaining to the Bank Secrecy Act.

　　Qualifications

　　Minimum Formal Qualifications for Cloud Security Engineer IIBachelor's Degree in Computer Science, Information Technology, orrelated field2+ years' overall experience working in a dedicated technical cloudsecurity roleMinimum Formal Qualifications for Cloud Security Engineer III:Bachelor's Degree in Computer Science, Information Technology, orrelated field4+ years' overall experience working in a dedicated cloud security roleMinimum Formal Qualifications for Cloud Security Engineer Sr:

　　Bachelor's Degree in Computer Science, Information Technology, orrelated field6+ years' overall experience working in a dedicated cloud security role

　　Each year of relevant work experience may be exchanged for a year in arelevant degree program or vice versa. For example,...