Sr. Cybersecurity Cloud Engineer | Darden Restaurant Support Center

JOB OVERVIEW:

Under direction of senior team members, the Sr. Cybersecurity Cloud Engineer provides technical expertise and direction in developing and supporting secure cloud architecture and practices. Individuals in this role are responsible for aligning industry security best practices and technology solutions with business strategies. Based on knowledge of assigned customers’ businesses, the Sr. Cybersecurity Cloud Engineer is responsible for proactively identifying risks and remedial actions that apply to technologies for business processes. In addition to providing technical expertise, they will consistently demonstrate strong leadership, initiative, and communication skills. The Sr. Cybersecurity Cloud Engineer will have a proven track record of being actively sought out by other team members for their technical advice.

ROLES AND RESPONSIBILITES:

-Participates in development and implementation of cloud security policies and procedures; develops security guidelines and safe practices for company-wide computing and networking systems.

-Collaborate with various internal Darden teams and external solution vendors to develop and maintain reference architecture and solution patterns for modern data platform implementation which includes cloud-based enterprise security and related components.

-Leads vulnerability assessment, risk management, network intrusion detection, endpoint protection technologies, firewalls, SIEM, data loss prevention, Web proxy, Web Application Firewalls, email protection, malware analysis, cloud security, and Incident response.

-Develop, create, document, and evolve cloud security components and tools.

-Builds and maintains cloud environments hosting security tools and for maintaining the cloud security tools that are used to secure production clouds.

-Ensure that cloud platforms adhere to security best practices and compliance regulations.

-Monitoring the health and status of our cloud environment.

-Anticipates problems and proactively manage them to resolution.

-Reviews, updates, and enforces cloud security policies within the Darden tenants.

-Assess the cloud security posture and develop a remediation plan for any identified gaps.

-Coordinates and participates in cloud projects ensuring that security is embedded in the process in the early stages of development.

-Work within a DevOps security model so that security is automated and elastic across all cloud platforms.

-Acts as subject matter expert on cloud security to guide more junior team members through technical situations.

-Acts in partnership with assigned customers’ businesses to proactively identify risks and remedial actions that apply to technologies for business processes.

-Informs and advises customers on information system technologies, functionality, costs, benefits and implementation requirements.

-Participates in incident response activities and provide technical knowledge.

-Participate in the Cybersecurity team on-call rotation.

-Contribute the establishment of a Cloud Center of Excellence. Participate in the creation of standards and processes that maintain the quality of Darden's data domains. Serve as a member of the Cloud Center of Excellence. In addition to serving as a contributing member of Architecture Review Board and DevSecOps Center of Excellence. Evolve the practices and standards to preserve accuracy, security and volume of data.

-Adhere to Software Development Lifecycle and technology architecture requirements. Contribute to architecture design principles and standards as appropriate.

-Proactively identify and communicate potential problems and issues to project team members/leaders.

-Proactively identify alternatives and recommend/implement solutions as appropriate.

-Ensure accurate project status and work estimates (ETCs) are always reported /communicated to project leaders/managers in a timely fashion.

-Consistently enhance skills and job knowledge by researching technologies, software products and industry trends. Read professional publications; maintain personal networks and participate in professional organizations. Proactively advise Darden of shifts in the industry and market disruptors.

-Articulate complex technical ideas to non-technical and executive audience and get buy-ins for technical projects.

REQUIRED TECHNICAL SKILLS:

-Minimum 5 -7 years in the Cybersecurity field with at least 4 years focused on Cloud Security.

-Demonstrated competency in designing, programming, testing and maintaining complex cloud platforms and components.

-Demonstrated experience in the following areas:

-Supporting cloud security design concepts, including testing and implementation of security enhancements.

-Implementing and maintaining cloud native application protection platform (CNAPP) including major components like CSPM, CIEM, CWAPP, IAAC, Kubernetes protection.

-Administration of a CASB solutions.

-Proven ability handling and resolving incidents of security breach, to include system intrusions and abuse; acts as primary point of contact.

-Demonstrated broad knowledge of all facets of cybersecurity operations, including vulnerability assessment, risk management, network intrusion detection, endpoint protection technologies, firewalls, SIEM, data loss prevention, Web proxy, Web Application Firewalls, file integrity monitoring, email protection, malware analysis, cloud security, and Incident response.

-Solid understanding of network, workstation, and server security configuration.

-Expertise in best commercial practices for information security and a thorough knowledge and understanding of the Cyber Security marketplace.

-Strong knowledge of IAM functions as it relates to the cloud.

-Knowledge of security tokens and key management for cloud platforms.

-Knowledge of Azure DevOps.

-Experience in ITIL concepts.

-Experience working within in an Agile framework.

-Experience with all the main cloud vendors (Amazon Web Service, Azure, Google Cloud Platform).

-Knowledge of regulatory compliance regulations (PCI, SOX).

-Must be able to effectively interact with other teams across the organization.

-Ability to manage multiple tasks along a parallel process.

REQUIRED EDUCATION:

-Bachelor’s degree in computer science, Information Security, or a relevant field (will consider work experience in lieu of education).

OTHER KEY QUALIFICATIONS:

-Strong interpersonal and consultative skills.

-Ability to effectively prioritize and execute tasks in a high-pressure environment.

-Excellent written & verbal communication skills.

-Proven technical documentation skills.

-Excellent presentation skills.

-Experience working in a team-oriented, collaborative environment.

-Demonstrated ability to lead and support technical teams.

-Strong work ethic.

-Demonstrated initiative and ownership.

-Proven ability to effectively interact professionally with a diverse group of people at all levels of the organization.

-Strong analytical, problem-solving and conceptual skills.

PREFERRED SKILLS AND EXPERIENCES:

-Minimum of two current technical certifications (e.g., CISSP, CEH, GIAC, GSEC).

-One or more of the following certifications or equivalent Cloud Security certificate:

-AWS Certified Solutions Architect – Associate Level.

-Microsoft Certified: Azure Solutions Architect Expert.

-ISC2 Certified Cloud Security Professional (CCSP).

-Strong networking skills.

-Proven track record of success working on enterprise security projects.

-Knowledge of restaurant business.

-Knowledge of other retail business.