Clearwater Analytics® is a global SaaS solution for automated investment data aggregation, reconciliation, accounting, and reporting. Clearwater helps thousands of organizations make the most of investment portfolio data with cloud-native software and client-centric servicing. Every day, investment professionals worldwide trust Clearwater to deliver timely, validated investment data and in-depth reporting.
In this role, you’ll lead a team of security analysts and engineers responsible for the infrastructure our customers use internally and externally to run the business with observability, scalability, security and capacity planning as main functions. The team you’ll lead is a talented and diverse group of engineers focused on providing a highly secure platform used by Clearwater’s engineering teams to deliver cutting-edge features.
Lead and influence multi-disciplinary teams in implementing and operating Cyber Security controls
Implement reporting on program efficacy based on program execution milestones and metrics
Provide governance of process and technical controls supporting cloud security standards.
Serves as the subject matter expert (SME) on Cloud Security
Develops standards, policies and procedures as well as best practices documentation.
Research enterprise security and privacy standards and best-practices to ensure we apply them in our cloud security design and remediation processes, justifying departures and innovations to them where appropriate
Mentor team members around security, engineering, and collaboration best practices
5+ years experience in information security and/or cloud engineering/operationsExperience leading multi-disciplinary teams
Ability to assess and appropriately prioritize risk associated with public cloud infrastructure and operations
Experience with security operations and incident response in public cloud environments (especially GCP)
Professional experience in security operations and incident response
Proficiency with at least one programming language (ex: Python)
Nice to haves
Knowledge of SDL best practices
Expertise in web application security (OWASP Top 10)