Associate Principal AWS Security Architect

CoBank

  • Greenwood Village, CO
  • $10,000 per month
  • Permanent
  • Full-time
  • 2 months ago
Job DescriptionWe are seeking a highly skilled and experienced Associate Principal AWS Security Architect to join our infrastructure security team. The Candidate must have in depth, hands on, AWS development and AWS security experience, ideally in financial services or other highly regulated industry. This role involves leading the security of our AWS infrastructure, identifying and mitigating security risks, and ensuring compliance with industry regulations. The successful candidate will play a crucial role in enhancing the security posture of our organization while leveraging advanced AWS and third-party technologies to protect sensitive financial data. They will also be responsible for mentoring more junior staff and peers in AWS.Essential Functions1. Ensures AWS security is integrated into each step of development by collaborating with IT Architects.
2. Implements and enforces security policies, standards, and best practices to ensure compliance with industry regulations and internal security requirements. Conducts regular security audits.
3. Implements and maintains security configurations for AWS services including IAM, VPC, CloudTrail, and Security Hub.
4. Performs critical analysis of security controls in CI/CD pipelines to determine appropriate implementation contexts, including when to apply, exempt, or customize controls (e.g., AWS KMS CMK requirements for S3 buckets in cross-account scenarios), and crafts policies that balance security requirements with functional needs while documenting rationale for security exceptions.
5. Designs, implements, and maintains automated security processes and controls using AWS tools and services to identify and remediate vulnerabilities and threats.
6. Collaborates with the Cloud Platform Engineers to create/maintain reusable Terraform modules for secure infrastructure provisioning.
7. Automates security processes and controls to identify and remediate vulnerabilities.
8. Implements continuous monitoring solutions to detect and respond to security incidents, working closely with the incident response team.
9. Conducts security risk assessments and develop strategies to mitigate identified risks. Implement automated security processes and controls to identify and remediate vulnerabilities and threats.
10. Maintains documentation for security processes, configurations, and procedures.
11. Uses Terraform for infrastructure security provisioning and management, creating and managing AWS resources using Terraform scripts.
12. Provides training and guidance to development and operations teams to ensure security throughout the SDLC using DevSecOps principles.
13. Integrates security practices/tools into CI/CD pipelines in GitHub.Education
  • Bachelor's Degree in computer science, Information Technology, or a related field. required
  • Bachelor's degree may be substituted with four years of related experience (in addition to what is minimally required for the role), or an equivalent combination of education and related experience.
Work Experience8 years of experience in AWS security and architecture roles required. Focus on the financial services industry, particularly the banking sector, preferred
5 years of experience working with AWS security tools required
Certifications in relevant security practices (CISSP, CISM, Comptia Sec+, etc…) preferredAbout CoBankThe typical base pay range for this role is between $144,300 - $177,440. Compensation may vary based on individual job-related knowledge, skills, expertise, and experience. This position is eligible for a discretionary annual incentive program driven by organization and individual performance.The listed salary, other compensation and benefits information is accurate as of the date of this posting. This job will be posted for a minimum of five (5) business days or until the position is filled. CoBank reserves the right to adjust compensation for all positions and to modify or discontinue benefits programs at any time in its sole discretion, subject to applicable law.CoBank is a cooperative bank serving vital industries across rural America. The bank provides loans, leases, export financing and other financial services to agribusinesses and rural power, water and communications providers in all 50 states. The bank also provides wholesale loans and other financial services to affiliated Farm Credit associations serving more than 76,000 farmers, ranchers and other rural borrowers in 23 states around the country. CoBank is a member of the Farm Credit System, a nationwide network of banks and retail lending associations chartered to support the borrowing needs of U.S. agriculture, rural infrastructure and rural communities. Headquartered outside Denver, Colorado, CoBank serves customers from regional banking centers across the U.S. and also maintains an international representative office in Singapore.REASONABLE ACCOMMODATIONWe are committed to ensuring that our online application process provides an equal employment opportunity to all applicants, including qualified individuals with disabilities. If you are an applicant with a disability, or are assisting an applicant with a disability, and require accessibility assistance or would like to request a reasonable accommodation for any aspect of the application process, including completing an application, interviewing, or otherwise participating in the employee selection process, please submit a request by emailing recruiting@cobank.com. Include your contact information and specific details about your requested accommodation.Applicants must be authorized to work for any employer in the U.S. We are unable to sponsor or take over sponsorship of an employment visa at this time.CoBank is an Equal Opportunity Employer.All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, national origin, disability, or status as a protected veteran.

CoBank