Sr DevSecOps Engineer

Location:

For Those Who Work At Home - Various, Ohio 44145

Job Profile Summary

Use skills, experience, and talent to help Key grow an effective information security program by analyzing, assessing, and helping mitigate security issues.

Applicant must be able to demonstrate the ability to:

• Deliver new security solutions to partner technology teams for implementation, based on established and scoped security standards.
• Evaluate and determine the most effective method of mitigating business and security risk for new and existing technologies.

Applicant must have an excellent technical background across a wide range of security disciplines and solutions and must have excellent presentation, writing, communication, and customer interface skills.

Essential Job Functions

Abilities

• Partner with technology and security teams to design and PoC security solutions for set business initiatives.
• Coordinate with the Security Architecture team to understand and ensure implementation of security policies and standards for new technologies.
• Interface with Security Engineering teams to implement new security controls and educate on the purpose and capabilities.
• Cultivate the engineering mindset in partner security teams when collaborating to design and PoC security solutions.

Knowledge of:

• Authentication, authorization, and access control methods. 
• Cloud Security and Security Engineering principles as well as the Information Security Lifecycle
• Computer, network communication, and encryption methods, protocols, principles, and concepts.
• Cyber defense and vulnerability assessment tools and their capabilities. 
• Enterprise information security architecture. 
• Awareness of new and emerging Information Technology (IT) and cybersecurity technologies. 
• Integrating the organization’s goals and objectives into the architecture and translating operational requirements into protection needs.

Skills:

• Identifying, evaluating, communicating, and remediating security and business risks.
• Designing, testing, and developing implementation plan for security controls.
• Effective communication skills and collaboration with team members.
• Adhere to technical standards and participate in standards evolution.
• Thorough knowledge of continuous integration, continuous delivery, continuous testing, and configuration management methodologies.
• Thorough knowledge of analytical thinking concepts and techniques.
• Strong foundation of GCP security and infrastructure concepts and best practices
• Experience in development and automation of security tools and procedures

Tasks:

• Manage, inform, report, and reduce business and security risk.
• Design security solution that supplements a technology team's business need.
• Enable technology teams to effectively support security solutions.
• Communicate issues with security standards.
• Contribute to the maintenance of the security control inventory.

Required Qualifications

• Bachelor’s degree or equivalent work experience.
• Professional security certification desired (CISSP, CISM, CISA, etc.).
• Basic understanding of security threats and knowledge of financial industry.
• Strong risk-based analysis and decision-making skills.
• Proven ability to identify and implement process improvement opportunities.
• Results oriented, a team player, and self-starter with ability to work with general direction.
• Ability to manage competing priorities.

COMPENSATION AND BENEFITS

This position is eligible to earn a base salary in the range of $150,000 to $175,000 annually depending on job-related factors such as level of experience. Compensation for this role also includes eligibility for short-term incentive compensation and deferred incentive compensation subject to individual and company performance. Please click here for a list of benefits for which this position is eligible.

Please click here for a list of benefits for which this position is eligible.

Key has implemented a role-based Mobile by Design approach to our employee workspaces, dedicating space to those whose roles require specific workspaces, while providing flexible options for roles which are less dependent on assigned workspaces and can be performed effectively in a mobile environment. As a result, this role may be Mobile or Home-based, which means you may work primarily either at a home office or in a Key facility to perform your job duties.

Job Posting Expiration Date: 07/20/2024

KeyCorp is an Equal Opportunity and Affirmative Action Employer committed to building a diverse, equitable and inclusive culture. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status or other protected category.

 

Qualified individuals with disabilities or disabled veterans who are unable or limited in their ability to apply on this site may request reasonable accommodations by emailing HR_Compliance@keybank.com.

#LI-Remote