Navy Federal Credit Union
Cloud Security Engineer
Navy Federal Credit Union, Winchester, Virginia, United States, 22603
Overview
The successful candidate will be a subject matter expert with hands‑on experience with cloud technologies, tools and methodologies with a particular focus on Microsoft Azure. The role is suited for an experienced Cloud Security Engineer with proven understanding in enterprise security and will focus on building tool sets and processes to support Navy’s Cloud program.
Navy’s Cloud Organization fosters a collaborative environment and is building a best‑in‑class Cloud program that protects Navy Federal information and cloud compute environments.
Responsibilities
Support the ongoing and critical work within the Enterprise Data workstream.
Secure, manage, and optimize mission‑critical data services across our cloud infrastructure.
Contribute to the vision, strategy, and drive execution for integrated security controls across Software‑as‑a‑Service (SaaS), Platform‑as‑a‑Service (PaaS), Infrastructure‑as‑a‑Service (IaaS) for Navy’s Azure environment.
Able to demonstrate clear understanding of current risks and threats to Cloud infrastructure and/or IT infrastructures at technical and managerial audiences.
Provide security consultancy and engineering support for cloud security solutions including analysis and development of Azure and other security solutions.
Provide architecture assurance on Cloud security initiatives and compliance of existing security standards interfacing with infrastructure and development teams.
Maintain the security infrastructure tools that are built on the Cloud platform, providing stability and policies and procedures.
Develop and maintain documentation of all Security products including specific tools, technologies and processes.
Participate in Information Security Incident Response activities for the NFCU’s environment.
Respond to security vulnerabilities identified through periodic and on‑demand system audits and vulnerability assessments of Cloud services.
Monitor compliance with the organization's information security policies and procedures among employees, contractors and third parties.
Manage remediation efforts for any gaps reported in audits or recommended process improvements.
Actively monitor new and emerging cloud security technologies, trends, issues, and solutions and assess their applicability to Navy Federal’s cloud strategy.
Qualifications
Bachelor’s degree in computer science, Information Technology, or similar field of study required.
Hands‑on experience with Azure Policy and Azure initiatives management.
Experience with Azure Key Vault integration, secrets, certificate, and key management.
Hands‑on experience with access control technologies such as Azure RBAC, B2C; SAML SSO, OAuth 2.0 configuration, set‑up and operations management.
Experience with Azure Access and Privileged Identity Management PIM.
Experience with Microsoft Defender for cloud.
Experience with Microsoft Defender for cloud Apps and Defender for endpoints.
5+ years’ experience working in a technical role with a minimum of 3 years focused on cloud security and access control.
Experience with Azure DevOps permission management and overall governance.
Strong knowledge of information security and access controls.
Desired Qualifications
Industry certification (CISSP, CISA, Azure) of high interest.
Financial industry experience preferred.
Experience with other IaaS and PaaS elements such as compute services, Data Services and App Services.
Experience with Azure Purview.
Working knowledge of App registration management and enterprise Applications.
Experience with Microsoft Fabrics, FinOps, Databricks, Azure Synapse, Alation, Confluent Kafka & SCIM API configuration.
Experience with Azure Resource Management Templates and Azure Bicep.
Understanding of encryption options in Azure such as CMK with DES and TDE.
Experience with certificate management for IaaS and PaaS elements.
Hands‑on development and scripting skills in PowerShell 5.
Knowledge of Azure Policy as Code.
Experience with Azure Identity Governance.
Hours Monday - Friday, 8:00 AM - 4:30 PM.
Locations
820 Follin Lane, Vienna, VA 22180
5510 Heritage Oaks Drive, Pensacola, FL 32526
141 Security Drive, Winchester, VA 22602
About Us Navy Federal provides much more than a job. We provide a meaningful career experience, including a culture that is energized, engaged and committed; and fierce appreciation for our teams, who are rewarded with highly competitive pay and generous benefits and perks.
Our approach to careers is simple yet powerful: Make our mission your passion.
Equal Employment Opportunity All qualified applicants will receive consideration for employment without regard to age, race, sex, color, religion, national origin, disability, veteran status, pregnancy, sexual orientation, genetic information, gender identity or any other basis protected by applicable law.
Disclaimers Navy Federal reserves the right to fill this role at a higher/lower grade level based on business need. An assessment may be required to compete for this position. Job postings are subject to close early or extend out longer than the anticipated closing date at the hiring team’s discretion based on qualified applicant volume.
You are paid within the salary range, based on your experience, location and market position. For additional details regarding compensation and benefits, review the Benefits page of the Navy Federal Career Site.
Protect Yourself from Job Scams: Navy Federal Credit Union jobs are posted on our career site, jobs.navyfederal.org and reputable job boards (e.g., LinkedIn, Indeed). We do not post jobs on social media marketplaces, messaging apps or unverified websites. We will never ask candidates for payment, bank details or personal financial information during the hiring process.
Bank Secrecy Act: Remains cognizant of and adheres to Navy Federal policies and procedures, and regulations pertaining to the Bank Secrecy Act.
#J-18808-Ljbffr
Navy’s Cloud Organization fosters a collaborative environment and is building a best‑in‑class Cloud program that protects Navy Federal information and cloud compute environments.
Responsibilities
Support the ongoing and critical work within the Enterprise Data workstream.
Secure, manage, and optimize mission‑critical data services across our cloud infrastructure.
Contribute to the vision, strategy, and drive execution for integrated security controls across Software‑as‑a‑Service (SaaS), Platform‑as‑a‑Service (PaaS), Infrastructure‑as‑a‑Service (IaaS) for Navy’s Azure environment.
Able to demonstrate clear understanding of current risks and threats to Cloud infrastructure and/or IT infrastructures at technical and managerial audiences.
Provide security consultancy and engineering support for cloud security solutions including analysis and development of Azure and other security solutions.
Provide architecture assurance on Cloud security initiatives and compliance of existing security standards interfacing with infrastructure and development teams.
Maintain the security infrastructure tools that are built on the Cloud platform, providing stability and policies and procedures.
Develop and maintain documentation of all Security products including specific tools, technologies and processes.
Participate in Information Security Incident Response activities for the NFCU’s environment.
Respond to security vulnerabilities identified through periodic and on‑demand system audits and vulnerability assessments of Cloud services.
Monitor compliance with the organization's information security policies and procedures among employees, contractors and third parties.
Manage remediation efforts for any gaps reported in audits or recommended process improvements.
Actively monitor new and emerging cloud security technologies, trends, issues, and solutions and assess their applicability to Navy Federal’s cloud strategy.
Qualifications
Bachelor’s degree in computer science, Information Technology, or similar field of study required.
Hands‑on experience with Azure Policy and Azure initiatives management.
Experience with Azure Key Vault integration, secrets, certificate, and key management.
Hands‑on experience with access control technologies such as Azure RBAC, B2C; SAML SSO, OAuth 2.0 configuration, set‑up and operations management.
Experience with Azure Access and Privileged Identity Management PIM.
Experience with Microsoft Defender for cloud.
Experience with Microsoft Defender for cloud Apps and Defender for endpoints.
5+ years’ experience working in a technical role with a minimum of 3 years focused on cloud security and access control.
Experience with Azure DevOps permission management and overall governance.
Strong knowledge of information security and access controls.
Desired Qualifications
Industry certification (CISSP, CISA, Azure) of high interest.
Financial industry experience preferred.
Experience with other IaaS and PaaS elements such as compute services, Data Services and App Services.
Experience with Azure Purview.
Working knowledge of App registration management and enterprise Applications.
Experience with Microsoft Fabrics, FinOps, Databricks, Azure Synapse, Alation, Confluent Kafka & SCIM API configuration.
Experience with Azure Resource Management Templates and Azure Bicep.
Understanding of encryption options in Azure such as CMK with DES and TDE.
Experience with certificate management for IaaS and PaaS elements.
Hands‑on development and scripting skills in PowerShell 5.
Knowledge of Azure Policy as Code.
Experience with Azure Identity Governance.
Hours Monday - Friday, 8:00 AM - 4:30 PM.
Locations
820 Follin Lane, Vienna, VA 22180
5510 Heritage Oaks Drive, Pensacola, FL 32526
141 Security Drive, Winchester, VA 22602
About Us Navy Federal provides much more than a job. We provide a meaningful career experience, including a culture that is energized, engaged and committed; and fierce appreciation for our teams, who are rewarded with highly competitive pay and generous benefits and perks.
Our approach to careers is simple yet powerful: Make our mission your passion.
Equal Employment Opportunity All qualified applicants will receive consideration for employment without regard to age, race, sex, color, religion, national origin, disability, veteran status, pregnancy, sexual orientation, genetic information, gender identity or any other basis protected by applicable law.
Disclaimers Navy Federal reserves the right to fill this role at a higher/lower grade level based on business need. An assessment may be required to compete for this position. Job postings are subject to close early or extend out longer than the anticipated closing date at the hiring team’s discretion based on qualified applicant volume.
You are paid within the salary range, based on your experience, location and market position. For additional details regarding compensation and benefits, review the Benefits page of the Navy Federal Career Site.
Protect Yourself from Job Scams: Navy Federal Credit Union jobs are posted on our career site, jobs.navyfederal.org and reputable job boards (e.g., LinkedIn, Indeed). We do not post jobs on social media marketplaces, messaging apps or unverified websites. We will never ask candidates for payment, bank details or personal financial information during the hiring process.
Bank Secrecy Act: Remains cognizant of and adheres to Navy Federal policies and procedures, and regulations pertaining to the Bank Secrecy Act.
#J-18808-Ljbffr