Job Description Summary
Job Description
Job Overview
General Electric (GE) Vernova is seeking a motivated Staff Cloud Security Engineer responsible for strategic technical development, Including cloud security automation capabilities in AWS and Azure. The successful candidate will have strong problem-solving, time management and analytical skills. As part of the GE Cybersecurity team, a curiosity to learn combined with a builder-attitude will be critical in our mission to address evolving threats and protect company information and resources.
Specific Responsibilities Include
- Design, build and implement enterprise cyber technology for production environments
- Align technical risk management standards, frameworks and policy with overall GE Vernova business and digital requirements.
- Drive efforts with program application leads and stakeholders to architect Cloud solutions using tools and services aligned to standards and secure design patterns.
- Design and implement automated security controls (AWS SCP, Azure Policy, Cloud Custodian, Wiz.io remediation) to proactively enforce Security, Risk and Compliance standards for applications.
- Develop libraries of common secure patterns for deploying cloud infrastructure and applications, including applications provided by GE Vernova Cloud Service Providers
- Provide mechanism to demonstrate consistent application of controls and configurations, including creation of real-time tool providing across GE Power cloud accounts.
- Engineer secure technology solutions that promote adoption of SecDevOps and Cloud services (IaaS, PaaS & SaaS).
- Understand current and evolving threats for Cloud, including mitigation tools and techniques.
- Research, recommend and implement controls for developing technology such as container orchestration, machine learning and serverless technologies.
- Apply native cloud service provider security and monitoring services in the cloud, including network access controls, encryption, alerting and secrets management.
- Identify security design gaps in existing and proposed architectures and recommend and deploy changes and enhancements
Basic Qualifications
- Bachelor's degree or equivalent knowledge or experience in Information Systems (IS), Information Technology (IT), Computer Science or Engineering from an accredited college or university;
- Minimum significant experience architecting secure Cloud platforms (AWS or Azure);
- Minimum significant experience with programming or scripting languages;
- Minimum proven experience with Cloud automation capabilities
Eligibility Requirements: (Country Specific)
- India, Budapest (GE Vernova locations preferred) & Remote.
Desired Characteristics
- Experience reviewing and understanding cloud architecture and security best practices.
- Highly technical, eager to learn with strong analytical and problem-solving skills.
- Working knowledge of Cloud provider security architecture, resilience and compliance design patterns
- Experience delivering compliance automation via AWS SCP, Azure Policy, Cloud Custodian and CNAPP or CSPM tooling.
- Knowledge of current programming language (Python preferred), source code management and related technology to evaluate infrastructure as code safeguards.
- Knowledge of cloud automation technologies at scale, including CloudFormation, Terraform
- Ability to define program KPIs and metrics.
- Experience leveraging agile methods within development and project efforts.
- Experience performing design reviews to assess security risk for application architecture or introduction of new cloud services.
- Experienced in Cloud operations and use of threat intelligence services in a global regulatory environment
- Knowledge of IT service management and cybersecurity processes including change management, incident management, configuration management, threat and vulnerability management.
- Advanced degree In Information Systems, Information Technology, Computer Science or Engineering from an accredited college or university.
- Associate or Professional-level Cloud certification(s).
