First National Bank of Omaha Senior Cloud Security Engineer- Credit Card-as-a-Service in Massachusetts
At FNBO, our employees are the heart of our story—and we’re committed to their success! Please see below the details of this career opportunity and how it fits into our organization’s success.
Join FNBO’s Gen6 Ventures team to help us revolutionize consumer payments by creating a digital credit card services business. This business will deliver the speed and agility that digital-first fintech’s and API-driven brands need to drive loyalty and value through card payments.
Our Credit Card-as-a-Service ("CaaS") platform is led by technology and being built with a product mindset; shifting away from how legacy card issuers work today. This journey to create something new and innovative needs an individual to join our team who can embrace a start-up mentality, work alongside a high-functioning team and commit to exceeding expectations.
Gen6 is looking for a highly motivated, passionate, self-driven individual that loves creating desirable, simple and powerful API products that can transform the way a financial industry does business with digital brand partners. We are building a cloud native Credit Card as a Service API platform offering to attract digitally native brand partners who seek best in class API Card Products that can be seamlessly embedded into their digital brand customer experience. The CaaS team operates from a Product-led API first approach working “outside-in” to ensure we are focused on meeting the customers’ needs up front. This means, we obsess over delivering high value experiences for customers and users at each step.
To that end, the Gen6 CaaS team is seeking an experienced C loud Security Engineer that must provide a Cyber Security lens across all cloud-based disciplines such as design, development, platform & infrastructure, operations, run-time security configurations and monitoring, onboarding and access controls to our cloud ecosystem. They will also be instrumental in the building, maintaining, upgrading and continuously improving our cloud-based API Platform for our CaaS product suite across 4 pillars: credit card programs, account origination, account servicing, and account management. As part of a larger product team, you will be expected to set security best practices for the DevSecOps engineering cloud environment, design and implement security solutions, contribute and work closely with the API product architect, platform engineer and team lead engineer. The Cloud Security Engineer will own the security practices for design, development, deployment and runtime of the cloud platform.
Our Team goal is to stay centered and focused on the customer and the securing our customers data without diminishing the value our CaaS product suite delivers for our customers. This role will forge a critical “bond” across the various disciplines of Product Management, Architecture and Engineering within the cloud platform domain.
Responsible for the overall platform cloud security architecture, processes, and implementation to meet operations and regulatory requirements. This role will be part of the Information Security team and is a dedicated GEN6 Ventures team member that will focus on working within the CaaS product organization to help design secure cloud and hybrid solutions, understand the balance between business impact, cost and risk when implementing security controls, and possess security technical knowledge in developing secure solutions.
Establish best practices for cyber security measures for both development and runtime so that our product architect, product owner and engineers have a streamlined blueprint to work within
Create practices and help implement cloud-based programs that include identity and access management
Stay abreast of emerging security threats, vulnerabilities and control measures
Create practices and help implement the API Security strategy for API consumer / client access of the platform’s API enabled capabilities through API Gateways utilizing industry standard access controls.
Securely configure cloud environments for development, deployment and runtime (e.g., Sandbox, Non-Prod, Prod)
Perform threat modeling to identify and detect potential risks and facilitate or coordinate penetration testing.
Manage the cryptography and encryption of data within the CaaS cloud platform environments
Develop and implement incident response processes as needed as well as respond to detected incidents.
Provide security recommendations on platform, API and application design, development (e.g., coding), and deployment automations inclusive of security and vulnerability testing
Responsible for automation of security controls and the development of specialized security tools (such as APIs) as needed to promote a culture of continuous improvement.
Serve as a voice for the customer to the development teams in implementing new features or resolving security issues
Work closely with the CaaS team members (analysts, engineers, architect, product owner, testers) to achieve continuous improvement in cyber defense/resilience as it pertains to design, development, deployment and runtime environments
Attend daily standups and scrum sessions
Work with the product manager and lead engineer on establishing non-functional requirements for development and runtime solutions as it relates to security measures and features
Support and contribute to the engineering team members to help remove roadblocks or obstacles that prevent agility within the development and deployment cycles of our projects
Monitor, secure and protect the platform environments and our customer’s data
Research and maintain proficiency in tools, techniques, countermeasures, trends in vulnerabilities, and other security disciplines that will streamline and improve the security posture of cloud-native environments.
Manage and execution of technologies and processes that affect assigned global information protection capability, such as issue identification and resolution, documentation, integration with other tools, gap resolution, gap assessment and continuous improvement of the capability
Keep infrastructure fresh and current, make recommendations and participate in the implementation and continuous improvement of technologies and services in the information security domain
Provide guidance on security strategies, processes, response and technologies to security operations, monitoring and to the team
Responsive to incident response tickets on security related incidents
Participate in the development of business cases and presentations on information security technologies of interest to the organization and product team
Counsel and mentor team members on information security controls
A lot of Passion and Energy
Innovation-Driven thinker and willingness to share ideas
Humility, honesty and transparency
Willingness to lead and help others succeed
Strong desire to achieve - self-driven
Highly collaborative and open minded
Ability to communicate clearly and respectfully with customers, partners and team members
Experience with leveraging API Security capabilities in authentication, authorization, and accounting (AAA) frameworks to intelligently control access to resources and enforce policies by using industry standard protocols such as OAUTH2 and OpenID
Knowledge of financial services compliance requirements, such as GLBA, PCI/DSS
Certified Information Systems Security Professional (CISSP) certification
Combined with one of the following:
AWS Certified Solutions Architect
Microsoft MCSE Cloud Platform & Infrastructure
Google Professional Cloud Architect certification
Minimum 5 years’ experience in:
Cloud environments, cyber security and establishing cloud security practices and standards
Cloud platforms & services such as AWS, Azure, or GCP
CloudFormation, Terraform, or Ansible and working in an Infrastructure as Code environment
DevSecOps and supporting integration tools for monitoring, deployment, network segmentation and isolations, cloud security groups, test automation for security vulnerabilities, runtime threat detection, data aggregators and logging.
A variety of cloud platform components & services, applications and tools such as service mesh, Kubernetes, API-Gateways, API Management, Identity Management and Access Management
Understanding of software architecture and secure data access and integration techniques such as Request/Response, Event-Driven/Streaming and Batch/ETL architectures
Compensation range (base pay): $97,731.00-$156,146.00
IMPORTANT - This range is for the primary posting location of: Omaha - FNB
Final compensation offer to candidate may vary from posted hiring range based upon geographic location, work experience, education, and/or skill level.
We offer a variety of benefits designed to keep you and your family physically and financially healthy. Not only do we offer a competitive salary and work-life balance, we offer benefits to match your needs:
Medical, Dental, Vision Insurance
401k, With Matching Contributions
Time Off Programs
Health Savings Account (HSA)/Dependent Care
Short-Term/Long-Term Disability Insurance
Learn more about FNBO benefits here: https://www.fnbo.com/careers/benefits/ .
For additional information regarding compensation and benefits, e-mail FNBO at TAGAdmin@fnni.com . To ensure you receive a response, include the number of this job (listed below) in the subject line of your message.
Job number: R-20211164
Equity, Diversity, & Inclusion:
FNBO is committed to belonging, inclusion, diversity and equity. We are committed to intentionally and proactively creating pathways to success for historically underrepresented populations. To accomplish this, we foster a culture of belonging and inclusion so that every employee is valued, and has opportunity and the ability to make an impact. FNBO strives to reflect the diversity of the communities we serve in the makeup of our workforce.
See the full FNBO Equity, Diversity, & Inclusion Statement here (https://www.fnbo.com/about-us/inclusion-diversity/)
All qualified applicants will receive consideration for employment without regard to age, race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, or disability status.
Click here (https://www.firstnational.com/common/communications/hr/assets/documents/hr/eeo_poster.pdf) to download 'EEO is The Law' Self-Print Poster
Click here (https://www.firstnational.com/common/communications/hr/assets/documents/hr/eeo_poster_federal_contractors.pdf) to download 'EEO is The Law' Supplement for Federal Contractors
Click here (https://www.firstnational.com/common/communications/hr/assets/documents/hr/eeo_poster_gina_supplement.pdf) to download 'EEO is The Law' GINA Supplement
Grow Your Career with FNBO!
For more than 160 years, our holding company - First National of Nebraska - has grown to nearly 5,000 employees with locations in seven states and $24 billion in assets. We are proud to serve our customers and communities with banking offices located in Nebraska, Colorado, Illinois, Iowa, Kansas, South Dakota and Texas.
First National Bank of Omaha (FNBO) believes that a bank should be a force for good in the world; to positively influence the lives of our employees, customers and the success of the communities we serve. Whether you're just beginning your career or taking it to the next level, you'll find your fit here.
FNBO is committed to belonging, inclusion, diversity and equity. We are committed to intentionally and proactively creating pathways to success for historically underrepresented populations, regardless of but not limited to their age, race, color, ethnicity, gender, gender identity, sexual orientation, disability, religion or military status. To accomplish this, we foster a culture of belonging and inclusion so that every employee is valued, and has opportunity and the ability to make an impact. FNBO strives to reflect the diversity of the communities we serve in the makeup of our workforce.
See the full FNBO Equity, Diversity, & Inclusion Statement here (https://www.fnbo.com/about-us/inclusion-diversity/)
Support: See the "Contact Us" section at the bottom of the Job Seeker Tips & Resources (https://www.fnbo.com/careers/job-seeker-resources/) page