Director, Cloud Security Specialist

Job Description:The Cloud Security Center of Excellence within Fidelity Enterprise Cyber Security (ECS) is seeking a cloud or data platforms focused security engineer who has broad security domain knowledge including platform access models, logical perimeter, encryption, compliance, threat modeling and risk mitigation. As part of the team, they will deliver bar-raising security consultation and guidance within various cloud service providers (CSPs) and Fidelity hosted platforms. The ideal candidate should have deep understanding of at least one CSP and the unique challenges of securing cloud workloads and managing the security posture of large scale environments in a DevOps operating model.The Expertise You Have and The Skills You Bring 5+ years of experience in securing infrastructure, platforms, and complianceProven experience in consulting or advisory capacityUnderstand and promote security best practices at all levels of the organizationStrong understanding of cloud service providers: AWS, Azure, etc.Securing Data Platforms such as Kafka, Oracle, PostgreSQL, etc.Multi-tenant platform or service deliveryContinuous Compliance and Auditing methodologiesScripting automation or developing software: Python, PowerShell, NodeJS, etc.Implementing infrastructure-as-code concepts and technologiesExposure to or securing Artificial Intelligence a plusCuriosity and self-starting nature to learn how systems work and integrate; identify risks and opportunities for improvement or innovation; and relentlessly pursue implementation of scalable security solutionsPassion for security, innovation, and continuous improvementAdaptability to change and context switchingAbility to design future direction of security capabilities and controlsEmpathy and communication skills to understand and communicate complex subjects with associates of varying business and technical backgroundsAbility to work with global teamsStrong understanding of various cloud service delivery models including IaaS, SaaS, and PaaS leveraging technologies including containers; APIs; data systems; and artificial intelligenceThe Value You DeliverIdentify opportunities to improve security posture and execute or influence their implementation in collaboration with security stakeholders, platforms, and application teamsProvide thought leadership, influence, mentor and educate others to build secure applications and multi-tenant platforms in public cloudDesign, scale, and deploy cloud security controls and servicesLeverage CI/CD tooling to build security and governance capabilities into DevOps processesBridge building between security and platform teams to motivate and illuminate the 'What, Why, and How' to solve complex security requirementsProvide security guidance and support to technologists building platforms and applicationsCollaborate with audit and risk teams on risk identification and validation of controlsThe TeamFidelity Enterprise Cyber Security’s (ECS) mission is to protect the firm while enabling Fidelity innovation and application teams to go further, faster. Modern computing paradigms, cloud computing and open-source software offer tremendous potential to accelerate development and drive down costs. We bring together Architecture, Infrastructure, Development Tools, Security, Operations and Program Office functions to build/configure/sustain internal and external cloud infrastructure and platform offerings providing building blocks for application teams.Certifications:Category:Information TechnologyMost roles at Fidelity are Hybrid, requiring associates to work onsite every other week (all business days, M-F) in a Fidelity office. This does not apply to Remote or fully Onsite roles.Please be advised that Fidelity’s business is governed by the provisions of the Securities Exchange Act of 1934, the Investment Advisers Act of 1940, the Investment Company Act of 1940, ERISA, numerous state laws governing securities, investment and retirement-related financial activities and the rules and regulations of numerous self-regulatory organizations, including FINRA, among others. Those laws and regulations may restrict Fidelity from hiring and/or associating with individuals with certain Criminal Histories.

Created: 2025-10-06