Principal Security Engineer - IS06BE

We're determined to make a difference and are proud to be an insurance company that goes well beyond coverages and policies. Working here means having every opportunity to achieve your goals - and to help others accomplish theirs, too. Join our team as we help shape the future.

The Hartford's Information Protection (THIP) organization is looking for talented professionals to join a high-performing team that is charged with designing, implementing and maintaining modernized and advanced information security capabilities. As the Principal Cloud Security Architect, this position will help set direction for the company's overall cloud security approaches, including designing modernized architectures for multi-cloud deployments, assessing potential security risks, evaluating and recommending future technical solutions, and helping lead planning and implementation efforts. The role reports directly to the Chief Information Security Officer (CISO), and partners closely with other leaders within the security organization, as well as peers within Infrastructure, Enterprise Cloud Operations, Architecture, Data Services, and CIO areas.

• Engage with key stakeholders and technology partners to provide leadership direction and support for our company's continued cloud transformation, bringing a security perspective that balances with business imperatives and delivery timeframes
• Create a current-state architectural view of the existing cloud security landscape, and apply threat modelling concepts to identify and help prioritize any gaps and risks
• Develop and maintain a strategic roadmap to transition our cloud security posture to a future state that effectively enables and protects a multi-cloud deployment, including the use of AWS, Azure, Google and various Software as a Service (SaaS) providers
• Create and maintain security enablers such as technology standards, reference architecture blueprints, enterprise-level architecture decisions, technology decision trees, and a catalog of reusable security architecture patterns
• Facilitate technology selection workshops and proof-of-concept projects to assess the viability and integration of technologies into the business environment.
• Provide expert guidance and consultation on the application of new security technologies to enhance the operational effectiveness and strategic value of the IT landscape.
• Help ensure continuous compliance with enterprise standards and industry regulations (NYDFS, HIPAA, GDPR, SOx, etc.) by performing periodic threat modelling, while also supporting ongoing audit and risk assessment activities

• Minimum ten (10) years of experience as a security professional with a focus on Security Architecture responsibilities related to cloud security, threat modelling, identity management and authentication, network security, software engineering, cryptography, penetration testing, mobile security, and/or infrastructure services
• Minimum five (5) years of direct experience with and a strong technical knowledge of cloud platforms, such as Amazon Web Services (AWS), Google Cloud Provider (GCP), and Azure
• In-depth understanding of cloud security principles, best practices, and industry frameworks such as Cloud Security Alliance (CSA), Center for Internet Security (CIS), National Institute of Standards and Technology (NIST), and International Organization for Standardization (ISO)
• Proven track record of managing and leading cross-functional teams in a large organizational environment
• Strong verbal and written communications and presentation skills to interact with all levels of management and staff
• Bachelor's degree from an accredited college or university in computer science, information security, or related field
• Certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), AWS Certified Security - Specialty, AWS Certified Solutions Architect - Professional, Azure Solutions Architect - Expert, or Google Professional Cloud Architect are highly desirable and preferred