Senior Security Engineer - Cloud Security

Job Description

The Senior Security Engineer-Cloud Security reports to the SVP Security Operations, Business Resiliency & Insider Threat Management. The Senior Security Engineer will be responsible for security within UMG cloud environments, identifying risks associated with security tools, understand the business, strategy, and information security requirements, recommend secure architecture aligned to business architecture. This position handles vendors that provide incident response and services, provides network and system forensics in support of investigations and global security incident response activities. This position works closely with IT, application teams and business units. Strong technical skills for troubleshooting and problem analysis, along with the ability to clearly communicate to internal clients and teams. Working knowledge of network technologies, LAN/WAN/Wireless technologies, remote access solutions, network security, identity management, DNS, and DHCP is desired. In addition to having strong technical knowledge, engineer must be comfortable in effectively communicating with business end users, business partners, while being sensitive to a wide diversity of cultural and technical backgrounds in a global business environment. The Senior Security Engineer will support other efforts in the SecOps, Business Resiliency & Insider Threat Management team and work closely with other team members in the Global Security Office (GSO).

How you'll CREATE:
• Identify and develop monitoring to ensure compliance; and work with cloud platform owners to secure their environments according

to UMG standards.
• Automate the cloud security controls to ensure threat, vulnerabilities and risk are minimized and reduced.
• Work closely within the Security Operations team to help manage, maintain, design, configure, and document security tools,

systems, and processes including, but not limited to, the following:
• Administer security tools, technologies, and patching processes for multiple operating systems.
• Collect and analyze systems and application security logs
• Ensure compliance with internal policies, standards, and regulatory requirements
• Perform forensics activities and root cause analyses
• Review collected logs from all systems and take action to mitigate any threats based on findings.
• Participate in architecting design, development, and implementation of any new application or service
• Conduct vulnerability assessments, review, and confirm vendor suggested vulnerability remediation as needed
• Assessing and triaging potential security incidents. Coordinating and leading response to high impact security incidents.
• Lead efforts to detect and analyze malicious software and work with vendors and teams
• Lead projects, planning, controlling, executing, and closing assigned projects to produce required deliverables.
• Perform other duties as assigned.

Bring your VIBE:
• Cloud security, system administration, and support of cloud monitoring tools experience
• Logging, monitoring, tuning, and responding to detected incidents in the cloud and minimizing false positives
• Strong desire to perform as an incident responder and handle investigating, triaging, analyzing, and reporting
• Excellent analytical and problem-solving skills
• Knowledge about exploits, vulnerabilities, network attacks
• Excellent written and oral communication skills
• Self-motivated, detail-oriented with analytical and interpersonal skills
• Good working knowledge of security operations, safety practices in a business environment and enforcement of procedures.
• Ability to work under pressure and handle multiple projects with tight deadlines across a global enterprise
• Ability to lead and be proactive with training other engineers
• Work closely and develop relationships with the business to maintain security compliance

Perks Playlist:
• Be part of an entrepreneurial, global organization that values authenticity, drive, creativity, relationships, and a competitive spirit
• Comprehensive medical, dental, vision, and FSA options, as well as:
• 100% coverage for out-patient mental health services
• Wellbeing reimbursements for fitness classes, spa treatments, meal services, travel, and so much more (up to $720/year)
• A lifetime fertility support allowance of $30,000 to plan participants
• Student Loan Repayment Assistance and Tuition Reimbursement
• 100% immediately vested 401(k) match on the first 5% of your contribution on eligible compensation
• • Variety of ways to prioritize much-needed time away from work including:
• Flexible Paid Time Off (PTO) for exempt employees
• 3-weeks PTO for non-exempt employees
• 2-weeks paid Winter Break
• 10 Paid Holidays (including Juneteenth and Wellbeing Day)
• Summer Fridays (between Memorial Day and Labor Day)
• Generous paid parental leave for every type of parent

Disclaimer: This job description only provides an overview of job responsibilities that are subject to change.

All UMG employees are currently required to be fully vaccinated against COVID-19 or provide proof of a negative PCR or Antigen test before entering any Company offices unless they have been approved for an exemption or unless prohibited by applicable law.

Universal Music Group is an Equal Opportunity Employer

We are an E-Verify employer.

|

Job Category:
Technology

Salary Range:
83,835 - 165,330

The actual base salary offered depends on a variety of factors, which may include, as applicable, the qualifications of the individual applicant for the position, years of relevant experience, specific and unique skills, level of education attained, certifications or other professional licenses held, and the location in which the applicant lives and/or from which they will be performing the job. All candidates are encouraged to apply.

Jobcode: Reference SBJ-d8m079-3-139-59-149-42 in your application.