Massachusetts Information Technology Jobs

Search for Jobs in Information Technology
MassHire JobQuest Logo

Job Information

First National Bank of Omaha Senior Cloud Security Engineer- Credit Card-as-a-Service in Massachusetts

At FNBO, our employees are the heart of our story—and we’re committed to their success! Please see below the details of this career opportunity and how it fits into our organization’s success.

The Opportunity:

Join FNBO’s Gen6 Ventures team to help us revolutionize consumer payments by creating a digital credit card services business. This business will deliver the speed and agility that digital-first fintech’s and API-driven brands need to drive loyalty and value through card payments.

Our Credit Card-as-a-Service ("CaaS") platform is led by technology and being built with a product mindset; shifting away from how legacy card issuers work today. This journey to create something new and innovative needs an individual to join our team who can embrace a start-up mentality, work alongside a high-functioning team and commit to exceeding expectations.

Gen6 is looking for a highly motivated, passionate, self-driven individual that loves creating desirable, simple and powerful API products that can transform the way a financial industry does business with digital brand partners. We are building a cloud native Credit Card as a Service API platform offering to attract digitally native brand partners who seek best in class API Card Products that can be seamlessly embedded into their digital brand customer experience. The CaaS team operates from a Product-led API first approach working “outside-in” to ensure we are focused on meeting the customers’ needs up front. This means, we obsess over delivering high value experiences for customers and users at each step.

To that end, the Gen6 CaaS team is seeking an experienced C loud Security Engineer that must provide a Cyber Security lens across all cloud-based disciplines such as design, development, platform & infrastructure, operations, run-time security configurations and monitoring, onboarding and access controls to our cloud ecosystem. They will also be instrumental in the building, maintaining, upgrading and continuously improving our cloud-based API Platform for our CaaS product suite across 4 pillars: credit card programs, account origination, account servicing, and account management. As part of a larger product team, you will be expected to set security best practices for the DevSecOps engineering cloud environment, design and implement security solutions, contribute and work closely with the API product architect, platform engineer and team lead engineer. The Cloud Security Engineer will own the security practices for design, development, deployment and runtime of the cloud platform.

Our Team goal is to stay centered and focused on the customer and the securing our customers data without diminishing the value our CaaS product suite delivers for our customers. This role will forge a critical “bond” across the various disciplines of Product Management, Architecture and Engineering within the cloud platform domain.

Role Description:

Responsible for the overall platform cloud security architecture, processes, and implementation to meet operations and regulatory requirements. This role will be part of the Information Security team and is a dedicated GEN6 Ventures team member that will focus on working within the CaaS product organization to help design secure cloud and hybrid solutions, understand the balance between business impact, cost and risk when implementing security controls, and possess security technical knowledge in developing secure solutions.

Key Accountabilities:

  • Establish best practices for cyber security measures for both development and runtime so that our product architect, product owner and engineers have a streamlined blueprint to work within

  • Create practices and help implement cloud-based programs that include identity and access management

  • Stay abreast of emerging security threats, vulnerabilities and control measures

  • Create practices and help implement the API Security strategy for API consumer / client access of the platform’s API enabled capabilities through API Gateways utilizing industry standard access controls.

  • Securely configure cloud environments for development, deployment and runtime (e.g., Sandbox, Non-Prod, Prod)

  • Perform threat modeling to identify and detect potential risks and facilitate or coordinate penetration testing.

  • Manage the cryptography and encryption of data within the CaaS cloud platform environments

  • Develop and implement incident response processes as needed as well as respond to detected incidents.

  • Provide security recommendations on platform, API and application design, development (e.g., coding), and deployment automations inclusive of security and vulnerability testing

  • Responsible for automation of security controls and the development of specialized security tools (such as APIs) as needed to promote a culture of continuous improvement.

  • Serve as a voice for the customer to the development teams in implementing new features or resolving security issues

Day-to-Day Duties:

  • Work closely with the CaaS team members (analysts, engineers, architect, product owner, testers) to achieve continuous improvement in cyber defense/resilience as it pertains to design, development, deployment and runtime environments

  • Attend daily standups and scrum sessions

  • Work with the product manager and lead engineer on establishing non-functional requirements for development and runtime solutions as it relates to security measures and features

  • Support and contribute to the engineering team members to help remove roadblocks or obstacles that prevent agility within the development and deployment cycles of our projects

  • Monitor, secure and protect the platform environments and our customer’s data

  • Research and maintain proficiency in tools, techniques, countermeasures, trends in vulnerabilities, and other security disciplines that will streamline and improve the security posture of cloud-native environments.

  • Manage and execution of technologies and processes that affect assigned global information protection capability, such as issue identification and resolution, documentation, integration with other tools, gap resolution, gap assessment and continuous improvement of the capability

  • Keep infrastructure fresh and current, make recommendations and participate in the implementation and continuous improvement of technologies and services in the information security domain

  • Provide guidance on security strategies, processes, response and technologies to security operations, monitoring and to the team

  • Responsive to incident response tickets on security related incidents

  • Participate in the development of business cases and presentations on information security technologies of interest to the organization and product team

  • Counsel and mentor team members on information security controls

Desired Qualifications:

  • A lot of Passion and Energy

  • Innovation-Driven thinker and willingness to share ideas

  • Humility, honesty and transparency

  • Willingness to lead and help others succeed

  • Strong desire to achieve - self-driven

  • Results focused

  • Highly collaborative and open minded

  • Ability to communicate clearly and respectfully with customers, partners and team members

  • Experience with leveraging API Security capabilities in authentication, authorization, and accounting (AAA) frameworks to intelligently control access to resources and enforce policies by using industry standard protocols such as OAUTH2 and OpenID

  • Knowledge of financial services compliance requirements, such as GLBA, PCI/DSS

  • Certifications

  • Certified Information Systems Security Professional (CISSP) certification

  • Combined with one of the following:

  • AWS Certified Solutions Architect

  • Microsoft MCSE Cloud Platform & Infrastructure

  • Google Professional Cloud Architect certification

  • Minimum 5 years’ experience in:

  • Cloud environments, cyber security and establishing cloud security practices and standards

  • Cloud platforms & services such as AWS, Azure, or GCP

  • CloudFormation, Terraform, or Ansible and working in an Infrastructure as Code environment

  • DevSecOps and supporting integration tools for monitoring, deployment, network segmentation and isolations, cloud security groups, test automation for security vulnerabilities, runtime threat detection, data aggregators and logging.

  • A variety of cloud platform components & services, applications and tools such as service mesh, Kubernetes, API-Gateways, API Management, Identity Management and Access Management

  • Understanding of software architecture and secure data access and integration techniques such as Request/Response, Event-Driven/Streaming and Batch/ETL architectures

Compensation:

Compensation range (base pay): $97,731.00-$156,146.00

IMPORTANT - This range is for the primary posting location of: Omaha - FNB

Final compensation offer to candidate may vary from posted hiring range based upon geographic location, work experience, education, and/or skill level.

Benefits Overview:

We offer a variety of benefits designed to keep you and your family physically and financially healthy. Not only do we offer a competitive salary and work-life balance, we offer benefits to match your needs:

  • Medical, Dental, Vision Insurance

  • 401k, With Matching Contributions

  • Time Off Programs

  • Health Savings Account (HSA)/Dependent Care

  • Employee Banking

  • Growth Opportunities

  • Tuition Assistance

  • Short-Term/Long-Term Disability Insurance

Learn more about FNBO benefits here: https://www.fnbo.com/careers/benefits/ .

For additional information regarding compensation and benefits, e-mail FNBO at TAGAdmin@fnni.com . To ensure you receive a response, include the number of this job (listed below) in the subject line of your message.

Job number: R-20211164

Equity, Diversity, & Inclusion:

FNBO is committed to belonging, inclusion, diversity and equity. We are committed to intentionally and proactively creating pathways to success for historically underrepresented populations. To accomplish this, we foster a culture of belonging and inclusion so that every employee is valued, and has opportunity and the ability to make an impact. FNBO strives to reflect the diversity of the communities we serve in the makeup of our workforce.

See the full FNBO Equity, Diversity, & Inclusion Statement here (https://www.fnbo.com/about-us/inclusion-diversity/)

All qualified applicants will receive consideration for employment without regard to age, race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, or disability status.

Click here (https://www.firstnational.com/common/communications/hr/assets/documents/hr/eeo_poster.pdf) to download 'EEO is The Law' Self-Print Poster

Click here (https://www.firstnational.com/common/communications/hr/assets/documents/hr/eeo_poster_federal_contractors.pdf) to download 'EEO is The Law' Supplement for Federal Contractors

Click here (https://www.firstnational.com/common/communications/hr/assets/documents/hr/eeo_poster_gina_supplement.pdf) to download 'EEO is The Law' GINA Supplement

Grow Your Career with FNBO!

For more than 160 years, our holding company - First National of Nebraska - has grown to nearly 5,000 employees with locations in seven states and $24 billion in assets. We are proud to serve our customers and communities with banking offices located in Nebraska, Colorado, Illinois, Iowa, Kansas, South Dakota and Texas.

First National Bank of Omaha (FNBO) believes that a bank should be a force for good in the world; to positively influence the lives of our employees, customers and the success of the communities we serve. Whether you're just beginning your career or taking it to the next level, you'll find your fit here.

FNBO is committed to belonging, inclusion, diversity and equity. We are committed to intentionally and proactively creating pathways to success for historically underrepresented populations, regardless of but not limited to their age, race, color, ethnicity, gender, gender identity, sexual orientation, disability, religion or military status. To accomplish this, we foster a culture of belonging and inclusion so that every employee is valued, and has opportunity and the ability to make an impact. FNBO strives to reflect the diversity of the communities we serve in the makeup of our workforce.

See the full FNBO Equity, Diversity, & Inclusion Statement here (https://www.fnbo.com/about-us/inclusion-diversity/)

Support: See the "Contact Us" section at the bottom of the Job Seeker Tips & Resources (https://www.fnbo.com/careers/job-seeker-resources/) page

DirectEmployers