If you are a lead developer with hands-on experience working with AWS, specifically Identity and Access Management (IAM) controls, then you’re a perfect fit for this role. This is your chance to join a 100% cloud-focused security team developing automation to protect Fidelity applications, data and customers! You’ll be able to go anywhere from here, but you’ll stay at Fidelity because the role will keep expanding as you take on responsibility for engineering IAM controls for an ever-expanding set of innovative services at AWS and the same for services in Azure and Google clouds.
Bachelor's Degree in Computer Science or Engineering
8+ years overall in technology or development in a medium or large enterprise or US military
3+ years as a development lead or development manager in an enterprise or US military
2+ years in a security organization focused on identity and access controls
2+ years hands-on experience working with AWS IAM (this is a must)
AWS Architect and/or SysOps Certification
The Purpose of Your Role
Fidelity Investments is seeking a development lead / product owner with the right mix of software development, cyber security and cloud experience to lead a critically important security devops team in our Enterprise Cloud Computing division. The Cloud Security IAM team is responsible for building and managing automation that controls interactive and system access to AWS accounts, services and roles which are the heart of AWS security. Working side by side with the best technologists in the industry, you will enable Fidelity application development teams in safely deploying their applications to AWS and other public clouds. Your automation manages which individuals/teams can access which accounts and services in the cloud and brokers which applications can talk to other applications.
The Skills You Bring
Software DevOps Lead: You are an experienced full-stack developer with strong programming knowledge and experience (Java, Spring, Ansible, Python), strong Agile skills (Agile Scrum product owner role) and deep hands-on experience building/working with software lifecycle tools (Get, Stash, Sonar, JIRA, Jenkins, uDeploy). You are an experience dev lead, able to work with architects, product managers and engineers in other functions to plan work, build Epics, decompose them into Stories prioritize and work down your team backlog.
Security Engineering: You are a strong security practitioner with broad knowledge of enterprise security standards, policies, and control frameworks. You are knowledgeable about cyber security threats, both external and internal to an organization. You care deeply about protecting the firm and its customers through strong controls, process and team discipline.
IAM Engineering: You have expertise in engineering and integrating enterprise-grade IAM controls including:
Federated Identity / Single Sign-On solutions, Active Directory / LDAP
Web Services: SAML, Token, etc.
2Factor Authentication
AWS Cloud: You have hand-on experience developing applications in AWS. You have experience customizing AWS IAM roles and policies to manage interactive access and system access to AWS Cloud services.
The Value You Deliver
Developing software / automation that uses the latest software languages, cloud-native services and 3rd party tools to build security controls that are scalable, always-on and API-driven.
Rapidly digesting new cloud services released by AWS, Azure and Google and working out how to secure them.
Working shoulder-to-shoulder every day with your agile DevOps team to rapidly build, deploy and continuously improve your Cloud Security IAM product portfolio. Two weeks sprints are the norm.
Interfacing effectively with ECC senior leadership, program leads and business development leads to build and communicate your Cloud IAM roadmap and showcase your team deliverables.
Running a tight ship, following strong operational practices (change management, incident management, problem management) to ensure your cloud IAM controls are continuously available and working as intended to protect the firm.
Now submit your application online and subscribe to email or follow us on twitter to get similar jobs in the future.