Cloud Security Program Manager
What great looks like in this role
Our ideal candidate is passionate, collaborative and highly knowledgeable in the cloud security space. You'll use your skills to make a significant impact in an area with high visibility. As such, we are looking for an exceptional candidate that will help build the enterprise wide cloud security controls and lead the development, execution, and enhancements of MassMutual's cloud cyber security risk assessment and governance program producing key performance indicators to drive the right behavior over time
Objectives of this role
- Define and execute the cloud security control strategy.
- Perform the control gap analysis to prioritize the implementation of Security Controls across multiple Cloud environments (IaaS/PaaS).
- Design and develop solutions to implement security controls across multiple IaaS & PaaS Cloud environments.
- Build and leverage KPIs to measure the effectiveness of the Cloud Security program.
Daily and monthly responsibilities
- Influence major stakeholders and work with them to implement the Cloud Security Controls in Cloud environments (IaaS/PaaS).
- Work with various Security Control owners to re-architect/re-design and implement the Security Controls across multiple IaaS/PaaS environments.
- Perform the control gap assessments to prioritize the implementation of Security Controls across multiple Cloud environments (IaaS/PaaS)
- Lead the solution design for securely storing the sensitive data (structured and unstructured data) in the cloud.
- Lead the Data Protection activities (inside-out) by managing the daily tasks, driving the behavior changes and handling various stakeholders.
- Work with the networking Infrastructure and IT Teams to implement the security controls and configurations for the Hybrid Cloud environment.
- Successfully migrated an on-premise solution to a CASB solution for monitoring various SaaS storage solutions.
- Help run the steering committee consists of senior leaders to track the progress of the programs.
- Design the end-to-end Security Configuration and Vulnerability Management processes for Cloud Assets.
Skills and qualifications
- 10 years of experience with web application and network security
- 5 years of experience with public cloud
- Being able to define proper risk levels that align with the company risk appetite and do not diminish velocity or innovation.
- Expert knowledge of Cloud methodologies (IaaS, PaaS, SaaS), automation, orchestration, cost frameworks, trends, and industry-leading cloud vendor offerings and integrations.
- Hands-on experience configuring AWS security services such as IAM, KMS, and CloudTrail and Google Cloud security services with appropriate security certifications.
- Experience with DevSecOps and Agile Methodologies along with experience with third-party Cloud security tools, and dealing with Cloud Native Application Architectures and their associated security implications.
- Strong interpersonal, verbal presentation and written communication skills along with the ability to work independently.
- Ability to interface with stakeholders, utilizing consulting and negotiating skills
- Able to work east coast hours
- Willing to travel to Boston, MA; NY, NY and Springfield, MA as needed
- Bachelor s Degree in Computer Science/Engineering or equivalent
Preferred qualifications
- Cloud providers certifications: AWS Certified Security Specialty, Azure Security Engineer, Google Professional Cloud Security Engineer and other related certifications
- Master s Degree in Computer Science/Engineering or equivalent
target job salary $100,900.00 - $176,600.00 USD Annual
#LI-BO1
#LI-Remote
MassMutual is an Equal Employment Opportunity employer Minority/Female/Sexual Orientation/Gender Identity/Individual with Disability/Protected Veteran. We welcome all persons to apply. Note: Veterans are welcome to apply, regardless of their discharge status.